Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
298
Views
0
Helpful
1
Replies

Policing on Pix Verison 7

matt-long
Level 1
Level 1

‎09-09-2005 07:58 AM - edited ‎02-21-2020 12:23 AM

Please feel free to correct me but as I understand policing on the current version of the pix.

"Policing is applied only in the output direction."

So we can only police traffic which is leaving the pix. So in my secenario I have 150 vlans inside my pix (5 users on each) each of which needs internet access limited to 64Kb.

No I would like to police the traffic entering the inside interface to keep things simple. But I can't.

So the only solution is to police traffic leaving the Pix, which has been natted. So now I need each vlan to be natted to a different external ip address and then apply the QOS to each nat address.

Doesn't this seem a bit of an oversight, does anyone know a way of applying QOS before the nat is applied?

Thanks

Matt

0 Helpful
1 Reply 1

smahbub
Level 6
Level 6

‎09-15-2005 06:33 AM

May be if you have a router inside your pix, you can configure QoS on the rotuer before the traffic hits the inside interface of the PIX. Any other better solutions?

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card