QoS design question \ options?

Tim Glen · ‎09-27-2012

Hello,

I have had a repeating problem that I need to come up with some ideas for.

On occasion employees are downloading large files for business purposes, at very fast speeds. This has the potential to overwhelming our Internet circuits which causes our Customers problems accessing our Web Hosting services.

Our network is comprised mostly of 2960S switches for the employees. Webservers are connected to other 2960(nonS) switches and directly into the 6509 VSS.

Customer’s traffic comes in through one pair of ASA’s.

Employee’s traffic is handled by another pair of ASA’s.

Employee traffic flows from the 2960’s, past an L3 SVI on the 6509, then through the Employee ASA’s, then to the ASR’s, then out to the ISP#1 or ISP#2

Web Server traffic flows from the 2960’s or 6509, to the Customer ASA, then to the ASR’s then out to ISP#1 or ISP#2. Web server traffic does not flow through an L3 SVI.

The goal is to allow employees the ability to have the most bandwidth they can, however customer traffic always has to be preferred in the event of a ISP circuit approaching its limit.

Any suggestions would be very helpful. Thanks!

singhaam007 · ‎09-27-2012

Hello,

Why dot you use rate limit for this. Mean you can rate limit 70% traffic for employees and 30 % for public. Allow burst to each other. So if no public member is using it then it will 100 % available for staff but if circuit is getting over utilizing then staff can’t use more that 70 % leaving 30 % for staff.

I was in same scenario and its working perfectly now after applying rate limit.

Please rate if this helps

thanks