Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 829
  • Last Modified:

QoS for ASA for http/https

I need some help with QoS commands for the ASA platform.

I'm trying to setup QoS on our router to give priority to all http and https traffic, we have alot of bit torrent traffic moving through that perticular connection and it would be nice to speed up our surfing.

I've tried reading a number of QoS guides from Cisco but they're all for voip and I'm lost.
0
PerimeterIT
Asked:
PerimeterIT
  • 2
1 Solution
 
Jimmy Larsson, CISSP, CEHNetwork and Security consultantCommented:
It is more effective to police your bittorrent traffic.

It can be done like this:


access-list BT extended permit tcp any any range 6950 6999
access-list BT extended permit udp any any range 6950 6999


class-map BT
 match access-list BT
!
ciscoasa(config)# sh run policy-map
!
policy-map QoS
 class BT
  police input 2000000
!
service-policy QoS interface outside
service-policy QoS interface inside

this will force traffic specified in the ACL to not use more than 2Mbps inbound on each interface. Depending on your existant policy-maps and your needs you can apply this in on direction/interface only or on the global_policy.

/Kvistofta
0
 
PerimeterITAuthor Commented:
thanks, and if we're using non-std ports I just need to note them in the policy map?
0
 
Jimmy Larsson, CISSP, CEHNetwork and Security consultantCommented:
Then just modify the range of ports specified in the acl above.

/Kvistofta
0

Featured Post

VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now