I have two sites connected over the Internet via a VPN Tunnell terminated on PIXs at bothe ends. I want to implement QOS on the tunnel. I can mark the packets on the inside of each network and then implemet QOS on the router that connects to the Internet. My concern is that I may loose the setting in the TOS byte when the packet is being encrypted by the PIX. Will the TOS byte be copied to the IPSEC packet even though the tunnel is terminated on the PIX?
[inside net]-PIX- --2620 --- INTERNET ---2620 ---PIX- -- [inside net]