Re: How to prioritize my vpn traffic passing through my router
If I understand correctly you'd like to prioritize business critical traffic on the WAN router that's inside an IPSEC tunnel? For example SAP traffic may be queued more favorably than Exchange traffic?
If this IPSEC tunnel is terminated on a downstream PIX such as the diagram then the router will have no awareness of the difference of packets within the tunnel. Once the IPSEC traffic gets to the router the layer 4 infomation isn't visible and has the same source/destination IP addresses.
If the tunnel termination point is moved to the WAN router than the teqnique described by Lei Tian would be optimal. Consider terminating WAN tunnels on a routers in order to have dynamic routing and powerful queuing options.
You may be able to be creative with what's available to achieve your goals. Keep in mind that the single priority queue was specifically designed for voice traffic.
In regard to queuing ESP traffic on the router this is possible. Tunnel traffic can be queued based on tunnel endpoint addresses; queuing traffic within the tunnel would not be possible. I know the following link is generally not exciting material for humans; but this guide will be very valuable to you. You'll notice how much more powerful a router is in regard to QoS.
This is actually a pretty cool feature, i didn't even know it existed until I was looking for a solution to advertise a subnet (prefix in BGP talk), only if a certain condition existed. This is exactly what conditional advertisements does
j ai une question j ai achete un routeur cisco 887VA-k9 , je le configuré avec la configuration ci- dessous
si je le lier avec mon pc portable sur l un de ses ports directement ça marche toute est bien ( la connexion internet + m...
Attached policy provides CLI access to the Cisco 4G router over text messaging. Two files are in the attached .tar file:
2. PDF with instructions on how to load and use the .tcl file.