Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
9873
Views
0
Helpful
9
Replies

Traffic shaping per users , ip ,application using ASA

acharyr123
Level 3
Level 3

‎04-06-2011 05:36 AM - edited ‎03-11-2019 01:17 PM

Hi,

I hava Cisco ASA 5520 with AIP-SSM module. I would like to have the below features with ASA installed in Transparent mode.

1. Traffic shapping per user

2.  Traffic shapping per IP subnet

3.  Traffic shapping per Application

Is it possible with ASA installed in Transparent mode??

Labels:
0 Helpful
9 Replies 9

padatta
Level 1
Level 1

‎04-06-2011 05:42 AM

Hi,

Unfortunately traffic shaping is not supported in transparent mode.

Here is the reference.

http://www.cisco.com/en/US/partner/docs/security/asa/asa82/configuration/guide/conns_qos.html#wp1111709

Paps

0 Helpful

acharyr123
Level 3
Level 3
In response to padatta

‎04-13-2011 09:34 AM

Thanks for your prompt support....

Whether this feature is supported in Routed mode??

Regards,

Partha

0 Helpful

csaxena
Cisco Employee
Cisco Employee
In response to acharyr123

‎04-13-2011 10:40 AM

Hello Partha,


The feature is supported in Routed mode.

Please mark the post answered for others to refer in future.

Cheers,
Chirag

0 Helpful

Asia Hooks
Level 1
Level 1
In response to csaxena

‎05-12-2011 05:59 AM

Hello,

I have an ASA 5520 in routed mode and would like to shape based on IP address. Can anyone share any configuration examples for this?

Trent

0 Helpful

sean_evershed
Level 7
Level 7
In response to Asia Hooks

‎05-12-2011 06:46 AM

Hi, See below a QoS config example for an ASA

https://supportforums.cisco.com/docs/DOC-1230

Don't forget to rate posts that are helpful.

0 Helpful

Asia Hooks
Level 1
Level 1
In response to sean_evershed

‎05-12-2011 07:11 AM

Thanks for the link. If I apply a QoS policy, be it shaping or policing, does that affect EACH INDIVIDUAL CONNECTION (ip address) on the interface? Or does it QoS the ENTIRE interface? I am looking limit bandwitdh on a per connection/ip address basis.


Trent

0 Helpful

varrao
Level 10
Level 10
In response to Asia Hooks

‎05-12-2011 07:15 AM

Daryl,

It rate limits the connection based on ip address for traffic going from that particular interface only. It woudl not rate limit any other IP address not specified in the ACL for QoS that we have created. We specify the interface just to notify the ingress and egress point of the traffic.

Thanks,

Varun

Thanks,
Varun Rao
0 Helpful

Asia Hooks
Level 1
Level 1
In response to varrao

‎05-12-2011 07:43 AM

Just to clarify, all I would need to do is set up policing and it will be done on a per IP basis (kinda new at this ASA)? Also, can shaping be done in the ASDM or can I only police?

Trent

0 Helpful

varrao
Level 10
Level 10
In response to Asia Hooks

‎05-12-2011 08:57 AM

FOr shaping you can follow this doc:

http://www.cisco.com/en/US/partner/docs/security/asdm/6_2/user/guide/qos.html#wp1065249

Plicing would b done as per IP basis, through ACL

Thanks,

Varun

Thanks,
Varun Rao
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card