Solved: Limit bandwidth For VPN users

cisconell · ‎11-18-2012

Hi Guys,

I am using ASA Version 8.2(1) , I want to limit the vpn users to use less bandwidth of my Interlink to access something on inside network

example : source vpn pool

Destn : inside network

Please let me know how can achive this with QOS config.

pkupisie · ‎11-18-2012

Hello,

Probably the best would be to match tunnel-groups.

class-map TG1-best-effort

match tunnel-group Tunnel-Group-1

match flow ip destination-address

Then in policy-map police this traffic and apply this service-policy to outside interface (since you want to police traffic going from your inside). You can also use access-lists with the vpn pool.

For details please refer to:

http://www.cisco.com/en/US/docs/security/asa/asa80/configuration/guide/qos.html

View solution in original post

pkupisie · ‎11-18-2012

Hello,

Probably the best would be to match tunnel-groups.

class-map TG1-best-effort

match tunnel-group Tunnel-Group-1

match flow ip destination-address

Then in policy-map police this traffic and apply this service-policy to outside interface (since you want to police traffic going from your inside). You can also use access-lists with the vpn pool.

For details please refer to:

http://www.cisco.com/en/US/docs/security/asa/asa80/configuration/guide/qos.html

cisconell · ‎12-24-2012

Thanks Piotr