Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1694
Views
0
Helpful
1
Replies

QoS on ASA FOR IPSEC Tunnel

francisco_1
Level 7
Level 7

‎09-18-2008 04:20 AM - edited ‎03-11-2019 06:46 AM

class-map Pol-Lon-Tunnel

match flow ip destination-address

match tunnel-group lon-newyork

policy-map Pol-Lon-Tunnel

class Pol-Lon-Tunnel

priority

service-policy Pol-Lon-Tunnel interface outside

priority-queue outside

tx-ring-limit 128

queue-limit 2048

Guys, Not sure if the above config will work for what i am trying to do. The plan is to terminate other tunnels on this firewall and the no sysopt connection permit-vpn is enable so i am permitting the tunnel traffic using an ACL applied on the inside interface. What i need to to priotize all ipsec tunnel traffic through the firewall. I dont want any tunnel traffic dropping if the ASA output queue is fill up. Will the above config work?

Francisco

Labels:
0 Helpful
1 Reply 1

Marwan ALshawi
VIP Alumni
VIP Alumni

‎09-18-2008 04:26 AM

what sugest u is to have a look at the following link will help u alot and u are on the right path in ur config :)

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_tech_note09186a008084de0c.shtml

good luck

if helpful Rate

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card