11-18-2012 12:02 AM
Hi Guys,
I am using ASA Version 8.2(1) , I want to limit the vpn users to use less bandwidth of my Interlink to access something on inside network
example : source vpn pool
Destn : inside network
Please let me know how can achive this with QOS config.
Solved! Go to Solution.
11-18-2012 09:56 AM
Hello,
Probably the best would be to match tunnel-groups.
class-map TG1-best-effort
match tunnel-group Tunnel-Group-1
match flow ip destination-address
Then in policy-map police this traffic and apply this service-policy to outside interface (since you want to police traffic going from your inside). You can also use access-lists with the vpn pool.
For details please refer to:
http://www.cisco.com/en/US/docs/security/asa/asa80/configuration/guide/qos.html
11-18-2012 09:56 AM
Hello,
Probably the best would be to match tunnel-groups.
class-map TG1-best-effort
match tunnel-group Tunnel-Group-1
match flow ip destination-address
Then in policy-map police this traffic and apply this service-policy to outside interface (since you want to police traffic going from your inside). You can also use access-lists with the vpn pool.
For details please refer to:
http://www.cisco.com/en/US/docs/security/asa/asa80/configuration/guide/qos.html
12-24-2012 11:57 PM
Thanks Piotr
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide