Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
New Member

ASA 9.1: QOS for RDP over VPN Tunnel

Hi Community.

I've setup in my Lap a QOS trough the VPN Tunnel with prioritization for RDP. I've a DSL Line with 10000KBs / 1000KBs.

Do you see any error?

Below is the relevant config lines:

 

access-list tcp-traffic-acl extended permit tcp any any eq 3389

 

class-map VPN-RDP-class
 match tunnel-group ***************


class-map tcp-traffic-class
 match access-list tcp-traffic-acl


class-map VPN-rest-class
 match flow ip destination-address
 match tunnel-group ********************
 

policy-map police-priority-policy
 class tcp-traffic-class
  police output 10000000
 class VPN-RDP-class
  priority
 class VPN-rest-class
  police output 1000000
 class class-default
  police output 1000000
 

service-policy police-priority-policy interface outside

 

Thanks for your help, Patrick

 

1 ACCEPTED SOLUTION

Accepted Solutions

Hi Patrick,You can add one

Hi Patrick,

You can add one more command to enable the service priority Queue on the required interface.

ASA(Config)#priority-queue outside

 

Also if you have 10000 Kb bandwidth in the sense it can be considered as 10 Mb.

If so then you can lesser BW for RDP than utilizing whole bandwidth

 

say you can utilize 6 MB and  the rest you can leave as VPN & Default. But its up to your requirement.

If so 6144000 for RDP over VPN - 6 Mb

3072000 for rest of VPN - 3 Mb

1048576 for default traffic - 1 Mb

 

HTH

 

Regards

Karthik

 

 

 

 

4 REPLIES

Hi Patrick,You can add one

Hi Patrick,

You can add one more command to enable the service priority Queue on the required interface.

ASA(Config)#priority-queue outside

 

Also if you have 10000 Kb bandwidth in the sense it can be considered as 10 Mb.

If so then you can lesser BW for RDP than utilizing whole bandwidth

 

say you can utilize 6 MB and  the rest you can leave as VPN & Default. But its up to your requirement.

If so 6144000 for RDP over VPN - 6 Mb

3072000 for rest of VPN - 3 Mb

1048576 for default traffic - 1 Mb

 

HTH

 

Regards

Karthik

 

 

 

 

New Member

Hi Karthik. Your setup means

Hi Karthik.

 

Your setup means that the RDP over VPN Traffic never goes below 6MB. So RDP over VPN has a dedicated Bandwidth of 6MB, right?

Best Regards Patrick

Hi Patrick, Nope... Not like

Hi Patrick,

 

Nope... Not like that.... I was intended to say allocating major bandwidth to rdp alone might impact the other VPN traffic.... You can configure as you want and tweak as you need.

HTH

 

Regards

Karthik

New Member

Just to clarify. My setup

Just to clarify. My setup means:

policy-map police-priority-policy
 class tcp-traffic-class
  police output 10000000
 class VPN-RDP-class
  priority
 class VPN-rest-class
  police output 1000000
 class class-default
  police output 1000000

 

The RDP over VPN can use 8MB traffic. The other Traffic goes no higher then 2MB if RDP over VPN uses the whole 8MB,right ?

 

Regards Patrick

604
Views
0
Helpful
4
Replies
CreatePlease to create content