I am looking for verification that my configuration is correct to police all outside interface traffic to 150mbps. We currently are on a burstable link but we want to set a hard limit at 150mbps so we don't have huge monthly bills.
Please see proposed configuration below. Device is a Cisco 5525-X ASA. The traffic i am trying to limit is heavy download traffic to the users on the inside.
access-list QOS_POLICE permit ip any any
class-map CLASS_QOS_POLICE match access-list QOS_POLICE
policy-map POLICY_QOS_POLICE class CLASS_QOS_POLICE police output 150000000 conform-action transmit exceed-action drop (can i police both directions?) police input 150000000 conform-action transmit exceed-action drop