Solved

QoS for ASA for http/https

Posted on 2010-08-17
3
815 Views
Last Modified: 2012-05-10
I need some help with QoS commands for the ASA platform.

I'm trying to setup QoS on our router to give priority to all http and https traffic, we have alot of bit torrent traffic moving through that perticular connection and it would be nice to speed up our surfing.

I've tried reading a number of QoS guides from Cisco but they're all for voip and I'm lost.
0
Comment
Question by:PerimeterIT
  • 2
3 Comments
 
LVL 17

Expert Comment

by:Kvistofta
ID: 33457876
It is more effective to police your bittorrent traffic.

It can be done like this:


access-list BT extended permit tcp any any range 6950 6999
access-list BT extended permit udp any any range 6950 6999


class-map BT
 match access-list BT
!
ciscoasa(config)# sh run policy-map
!
policy-map QoS
 class BT
  police input 2000000
!
service-policy QoS interface outside
service-policy QoS interface inside

this will force traffic specified in the ACL to not use more than 2Mbps inbound on each interface. Depending on your existant policy-maps and your needs you can apply this in on direction/interface only or on the global_policy.

/Kvistofta
0
 
LVL 1

Author Comment

by:PerimeterIT
ID: 33458472
thanks, and if we're using non-std ports I just need to note them in the policy map?
0
 
LVL 17

Accepted Solution

by:
Kvistofta earned 125 total points
ID: 33458507
Then just modify the range of ports specified in the acl above.

/Kvistofta
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Cisco NBAR 6 31
CCNA Data center exam questions 8 77
Connecting two physical networks that reside in the same building 6 36
WAN Site Edge Routers 15 49
I recently updated from an old PIX platform to the new ASA platform.  While upgrading, I was tremendously confused about how the VPN and AnyConnect licensing works.  It turns out that the ASA has 3 different VPN licensing schemes. "site-to-site" …
From Cisco ASA version 8.3, the Network Address Translation (NAT) configuration has been completely redesigned and it may be helpful to have the syntax configuration for both at a glance. You may as well want to read official Cisco published AS…
When you create an app prototype with Adobe XD, you can insert system screens -- sharing or Control Center, for example -- with just a few clicks. This video shows you how. You can take the full course on Experts Exchange at http://bit.ly/XDcourse.
This is a video that shows how the OnPage alerts system integrates into ConnectWise, how a trigger is set, how a page is sent via the trigger, and how the SENT, DELIVERED, READ & REPLIED receipts get entered into the internal tab of the ConnectWise …

929 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now