Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1374
Views
0
Helpful
1
Replies

Police all outside interface traffic to 150mbit

Go to solution
dhittinger
Beginner
Beginner

‎02-14-2020 02:54 PM

Hello,

 

I am looking for verification that my configuration is correct to police all outside interface traffic to 150mbps. We currently are on a burstable link but we want to set a hard limit at 150mbps so we don't have huge monthly bills.

 

Please see proposed configuration below. Device is a Cisco 5525-X ASA. The traffic i am trying to limit is heavy download traffic to the users on the inside.

 


access-list QOS_POLICE permit ip any any

class-map CLASS_QOS_POLICE
match access-list QOS_POLICE

policy-map POLICY_QOS_POLICE
class CLASS_QOS_POLICE
police output 150000000 conform-action transmit exceed-action drop (can i police both directions?)
police input 150000000 conform-action transmit exceed-action drop

service-policy POLICY_QOS_POLICE interface outside

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Muhammad Awais Khan
Cisco Employee
Cisco Employee

‎02-14-2020 04:05 PM

Hi,

 

Configuration looks fine, you can apply it on both direction ( inbound + outbound )

 

 

 

 

View solution in original post

0 Helpful
1 Reply 1

Go to solution
Muhammad Awais Khan
Cisco Employee
Cisco Employee

‎02-14-2020 04:05 PM

Hi,

 

Configuration looks fine, you can apply it on both direction ( inbound + outbound )

 

 

 

 

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Recognize Your Peers
Spotlight Award Nomination
Customers Also Viewed These Support Documents