Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
276
Views
0
Helpful
1
Replies

QoS en ASA with VPN hub-spoke

jphvpichi
Level 1
Level 1

‎05-21-2015 10:15 AM

Hi,

I have an ASA 5515X (9.1.5), and a four 5505 (9.1.5) installed at different sites, i have configured a vpn from each of this 5505 to the 5515X,

but i did a dynamic configuration, so there is not a tunnel group config.. and no IP address for each site.

So my question is how i could configure QoS in the 5515X for the vpn traffic (all the traffic), so this traffic have priority over other Internet traffic, i must use an acl match for the QoS class?.

or there is another way?. (i only want to configure QoS on the 5515X)

Regards,

 

Juan Pablo

Labels:
0 Helpful
1 Reply 1

Santhosha Shetty
Cisco Employee
Cisco Employee

‎05-21-2015 09:27 PM

Hi,

 

Irrespective of kind of vpn( RA, Site to site) vpn connection has to pick a tunnel-group if its has to succeed.

If there is no specific group configured for either for IP or a string , the connection will always fall under default group. ASA has default group for RA-vpn and l2l-vpn. You can use those group as base for Qos.

 

HTH.

Santhosh

0 Helpful
Customers Also Viewed These Support Documents