Avatar of nevesis
nevesis asked on

Prioritizing outbound traffic to give precendence to VPN on a Cisco 1800 device

I have a Cisco 1800 device terminating a T1, providing firewall, routing, and acting as a VPN server.

I need to prioritize traffic from the inside network to the VPN clients over all other outbound traffic.

Our ISP is going to prioritize incoming traffic accordingly, on their end of the T1.

Which method best accomplishes this? How do I go about implementing this? Is there any way to simply dequeue traffic based on destination IP?

RoutersHardware FirewallsNetwork Architecture

Avatar of undefined
Last Comment
nevesis

8/22/2022 - Mon
ASKER CERTIFIED SOLUTION
harbor235

Log in or sign up to see answer
Become an EE member today7-DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform
Sign up - Free for 7 days
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
See how we're fighting big data
Not exactly the question you had in mind?
Sign up for an EE membership and get your own personalized solution. With an EE membership, you can ask unlimited troubleshooting, research, or opinion questions.
ask a question
ASKER
nevesis

We're using netbios for file sharing over the VPN.

The bottleneck is our T1. Our ISP promised to dequeue the VPN packets before they hit our T1, and let the web browsing and such pile up in queue during times of high utilization.

I wanted to do the same outbound, although it's less of a problem there.

I don't see any way to do this via dest IP, however. I can use WFQ by port, which I may resort to.
ASKER
nevesis

We're using netbios for file sharing over the VPN.

The bottleneck is our T1. Our ISP promised to dequeue the VPN packets before they hit our T1, and let the web browsing and such pile up in queue during times of high utilization.

I wanted to do the same outbound, although it's less of a problem there.

I don't see any way to do this via dest IP, however. I can use WFQ by port, which I may resort to.
ASKER
nevesis

I'm looking into the CAR link a little bit more.
This is the best money I have ever spent. I cannot not tell you how many times these folks have saved my bacon. I learn so much from the contributors.
rwheeler23
ASKER
nevesis

Went with WFQ by protocol, which wasn't a perfect solution.