Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

PIX ver 7 rate limiting

We need to split a 100M ISP ethernet connection into 10Meg for Internet access and 90Meg for a DR site-to-site vpn

Was thinking along the lines of this config...

class-map vpnsite-site

match tunnel-group xxx.xxx.xxx.xxx

policy map qos

class vpnsite-site

police outside 90000 0

class class-default

police outside 10000 0

service-policy qos interface outside

Is this a feasible solution?

Can I also apply the QOS policy to the inside interface aswell?

Thanks,

2 REPLIES

Re: PIX ver 7 rate limiting

Hi

As you have mentioned in your post you are trying to police 90Kbps in the first class map and 10Kbps in the second class map.

Do check out the values being configured for both allowed b/w and the burstable b/w.

As per ther supporting doc it does says that you can apply service policies to any of the interfaces which are configured using nameif command.

so i dont see much of problems in applying the service policy to the inside interface.

For more info and help do refer these links..

http://cisco.com/en/US/products/sw/secursw/ps2120/products_configuration_guide_chapter09186a0080450b9a.html#wp1055789

http://cisco.com/en/US/products/sw/secursw/ps2120/products_configuration_guide_chapter09186a0080450b9a.html#wp1045477

regds

New Member

Re: PIX ver 7 rate limiting

Thanks for the feedback, very helpful.

Best regards,

Mark

106
Views
0
Helpful
2
Replies