Over the past couple of days I have read numerous articles and threads on QoS for the ASA 5510. Here is my scenario that I am looking for information about. My management will not allow me to block certain websites such as facebook, youtube, myspace etc. Is there a way in the ASA 5510 running Software 8.0(2) to limit the about of bandwidth these users receive while visiting these websites? ie If a set of users visit facebook, can I limit their bandwidth to 512k instead of letting them eat up all 5 of my t1's?
Federico had the first correct answer to this solution. I have spent the last couple of days deciphering the instructions and laying out the command structure to implement this solution. I really apprecaite everyones help and new the community would not let me down.
Define class-map for the traffic that you wish to limit.
You can fix YouTube, MySpace etc by doing a class map on the URL
BitTorrent & SkyPe requires a bit more native cunning, You need to look for the TCP ports. Blocking the TCP ports doesn't work, as they then jump onto port 80 and give you even more headache.
Then define the policy-map.
In preference to most of the examples, you need to SHAPE the traffic rather than Policing. Shaping allows the application to gracefully throttle the traffic, rather than policing which just kills the session.
Apply the policy to the inside interface of the ASA for traffic going into your network.
Try to keep the class map as simple as possible to avoid potential loading problems. Please tell me how you get on.
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...