cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

1041
Views
0
Helpful
3
Replies
Beginner

Limit an IPSec user's traffic volume

Is there anyway to limit a user's traffic volume on ASA8.4? if there is, how?

Thanks,

Han

Everyone's tags (4)
3 REPLIES 3
Highlighted
Cisco Employee

Re: Limit an IPSec user's traffic volume

You can use match tunnel-group in MPF on ASA.

Please refer to configuration guide:

http://www.cisco.com/en/US/docs/security/asa/asa84/configuration/guide/conns_qos.html

Beginner

Re: Limit an IPSec user's traffic volume

Sorry to the late reply.

My question is like, set a maximum number of traffic a IPsec user can use from the tunnel. For instance, 10 G a week.

I didnt find your document has a relavent part to it. Correct me if I am wrong.

thanks,

Han

Cisco Employee

Re: Limit an IPSec user's traffic volume

Hi Han,

I don't see myself possibility to do that.

You can limit data transferred in one IPSEC SPI before renegotiation using

crypto ipsec security-association 

but this is not what you are looking for.

I guess if you really want to achieve it you would need to use some external script going to ASA periodically through SSH and parsing output of some show commands.