If I have a gigabit ethernet router connection to a WAN service that's rate limited to 200 Mbps in the cloud, and I'm running a GRE tunnel that's encrypted with IPSEC, how can I configure my router to
1) shape all outbound traffic to 200 Mbps on the Gig interface that connects to the WAN provider
2) within the shaped traffic prioritize a particular class and give it up to 50 Mbps bandwidth
3) allow all the other traffic to fall into the default class with best effort delivery
I'm thinking that I first need to create a parent policy for the shaping, and a child policy under that for the priority, but am not really sure.
Also, does the plicy get applied to the physical gigabit ethernet interface or to the Tunnel interface ?
Any thoughts or suggestions would be very greatly appreciated.