Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
508
Views
0
Helpful
2
Replies

Fixed bandwidth for VPN tunnel

adrianamh
Level 1
Level 1

‎08-02-2016 07:04 AM

Hi Everybody:

I have an IPSec tunnel configured into my ASA5525X firewall. The outside interface has a 70 Mbps channel. At this moment, the outside channel is getting satured due to a large number of new users.

Is there any way to configure a fixed bandwidth for the tunnel, so that its traffic does not compete with the normal user traffic?

Than you.

Labels:
0 Helpful
2 Replies 2

Karsten Iwen
VIP
VIP

‎08-02-2016 07:24 AM

That is not possible on the ASA itself. If you control the upstream-router, that would be the place to do it.

What would work, but is far from being optimal, is to police all other traffic down to a usable rate.

0 Helpful

Cristian Nilsson
Level 1
Level 1
In response to Karsten Iwen

‎08-03-2016 12:13 AM

Not sure if this works on ingress also but works for me with egress on VPN.

Example polices outgoing traffic to ~50Mbit/s outgoing.

access-list VPN-TRAFFIC extended permit ip 10.0.0.0 255.255.255.0 10.0.0.0 255.255.255.0
class-map MATCH-VPN-TRAFFIC
 match access-list VPN-TRAFFIC
policy-map POLICE-VPN-OUT
 class MATCH-VPN-TRAFFIC
 police output 52400000
service-policy POLICE-VPN-OUT interface OUTSIDE

//Cristian

0 Helpful
Customers Also Viewed These Support Documents