cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
865
Views
0
Helpful
5
Replies

QoS Question ASA 5505

mmedwid
Level 3
Level 3

I have a Cisco 5505 with a 12Mbps feed.  I want to reserve 2Mbps for RTP traffic. 

I followed the QoS guide here:

http://www.cisco.com/en/US/docs/security/asa/asa80/asdm60/user/guide/qos.html.

Could someone please look at the attached resultant service policy and tell me

if that should achieve the objective?  The goal would be that any traffic destined

for port 5000 through 5100 UDP or TCP from any IP to any IP on any interface

should always have 2Mbps available to it. 

Thank you.

1 Accepted Solution

Accepted Solutions

Hello,

100% agree, you are doing police rating policy. Now if you are looking to give priority to that traffic then you should change from policing to priority.

Now remember that the QoS for priority purposes will start working only when the ASA gets oversubscrided or gets  a lot of traffic, then he will start to prioritize those packets (rtp) first.

Regards,

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC

View solution in original post

5 Replies 5

Julio Carvajal
VIP Alumni
VIP Alumni

Hello,

Change the direction from input to output as Policing actions are only applied on output directions!

Regards,

Julio

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC

Thank you for the direction on which to apply.  Reading through the docs a bit more it seems that policing is more synominous with throttling/limiting of traffic.  Whereas what I really want to do is assure that the RTP traffic always has first dibs on 2Mbps of the 12Mbps of available bandwidth.  Perhaps I should be looking more at Priority queing even if that takes away from the potential available bandwidth of all other apps.  ?

Hello,

100% agree, you are doing police rating policy. Now if you are looking to give priority to that traffic then you should change from policing to priority.

Now remember that the QoS for priority purposes will start working only when the ASA gets oversubscrided or gets  a lot of traffic, then he will start to prioritize those packets (rtp) first.

Regards,

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC

Great - thank you.  When I created the priority queues on the inside interface it suggested/defaulted queue limit 2048 and transmission ring 512.  With the 12Mbps of bandwidth to the Internet do you think these values are appropriate.  There is nothing in the documentation which puts the figures in context. 

Hello,

Yes, you will be more than fine using those values

Set that up, clear the local-host table with the  "clear local-host" command and let us know the result,

Regards,

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: