Link to home
Start Free TrialLog in
Avatar of PerimeterIT
PerimeterIT

asked on

QoS for ASA for http/https

I need some help with QoS commands for the ASA platform.

I'm trying to setup QoS on our router to give priority to all http and https traffic, we have alot of bit torrent traffic moving through that perticular connection and it would be nice to speed up our surfing.

I've tried reading a number of QoS guides from Cisco but they're all for voip and I'm lost.
Avatar of Jimmy Larsson, CISSP, CEH
Jimmy Larsson, CISSP, CEH
Flag of Sweden image

It is more effective to police your bittorrent traffic.

It can be done like this:


access-list BT extended permit tcp any any range 6950 6999
access-list BT extended permit udp any any range 6950 6999


class-map BT
 match access-list BT
!
ciscoasa(config)# sh run policy-map
!
policy-map QoS
 class BT
  police input 2000000
!
service-policy QoS interface outside
service-policy QoS interface inside

this will force traffic specified in the ACL to not use more than 2Mbps inbound on each interface. Depending on your existant policy-maps and your needs you can apply this in on direction/interface only or on the global_policy.

/Kvistofta
Avatar of PerimeterIT
PerimeterIT

ASKER

thanks, and if we're using non-std ports I just need to note them in the policy map?
ASKER CERTIFIED SOLUTION
Avatar of Jimmy Larsson, CISSP, CEH
Jimmy Larsson, CISSP, CEH
Flag of Sweden image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial