05-11-2006 10:11 AM - edited 02-21-2020 02:24 PM
I wonder if there's a IPSec deployment where the IPSec header would preserve
the information contained at the byte ToS of the IP packet header, so it would be feasible confront this value against a match statement at a service-police.
05-11-2006 10:49 PM
I think only IPsec in transport mode doesnt encrypt original IP header
If you need QoS through IPsec
Have a look at "Configuring QoS for Virtual Private Networks"
http://www.cisco.com/en/US/products/sw/iosswrel/ps1835/products_configuration_guide_chapter09186a00800c75d3.html
M.
Hope that helps, rate if it does
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Log in to Community