Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
568
Views
0
Helpful
4
Replies

QoS for tunnels

Priyank Ghedia
Level 1
Level 1

‎12-05-2013 11:08 AM - edited ‎03-04-2019 09:46 PM

Scenario: My client has multiple sites that connect to a single POP via IPSEC tunnels over the internet. Each site has two tunnels to the POP, one for internet traffic and other for production traffic. The internet traffic breaks out from the FW at the POP and the production traffic rides the MPLS. Both the CE and PE devices are Cisco. CE devices are Cisco 1921-SEC/K9 or higher. PE device is Cisco 3925-SEC/K9.

Question: The client wants us to implement Queing for both types of traffic. It is easy to do so at the CE side as the 2 tunnels originate from a single interface and BW shaping can be implemented using Parent-Child MQC for each of the 2 tunnels. The idea here is not to dedicate or 'Police' the BW per tunnel. Rather if one tunnel is not using the assigned BW then the other tunnel should be able to use the available BW. The problem I am facing is on the PE side where multiple tunnels will terminate on a single public facing interface. I want to apply similar QoS policy on PE for CE bound traffic (return traffic), where the BW is shared by the 2 tunnels/site.

Your input will be very much appreciated.

Labels:
0 Helpful
4 Replies 4

Joseph W. Doherty
Hall of Fame
Hall of Fame

‎12-05-2013 06:42 PM

Bottleneck is PE<>CE link?  You'll be able to set QoS on PE side to CE side (for inbound traffic)?

0 Helpful

Priyank Ghedia
Level 1
Level 1
In response to Joseph W. Doherty

‎12-06-2013 08:53 AM

Yes the bottleneck is PE to CE bound traffic. I am able to set QoS on PE side for outbound traffic towards the CE.

0 Helpful

Joseph W. Doherty
Hall of Fame
Hall of Fame
In response to Priyank Ghedia

‎12-06-2013 09:00 AM

Ok, then it's unclear to me what's the problem.  Why can't you configure QoS on the PE to CE interface?

0 Helpful

Priyank Ghedia
Level 1
Level 1
In response to Joseph W. Doherty

‎12-06-2013 09:24 AM

Yes I can configure QoS on the PE to CE bound interface but I am want to implement 3 levels of hierarchy. 1st at the interface level for BW shaping. 2nd at the tunnel level where I am shaping the BW for a pair of tunnels and 3rd at each tunnel level where I am implementing a queing related policy. I am skpeptical that this is possible, but I am looking for a way to implement this design. I have attached a image of what I am trying to do, let me know if that makes sense.

Preview file
57 KB
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card