ndoorsinteractive
asked on
Congifuring QoS on ASA 5505
Hi,
Recently our company order AT&T 50m internet service, and I need help on setting up QoS on ASA 5505. Also, I'm not sure it's good to connect 50m internet connection directly to ASA 5505. If anyone could help me on this I would greatly appciate it.
Recently our company order AT&T 50m internet service, and I need help on setting up QoS on ASA 5505. Also, I'm not sure it's good to connect 50m internet connection directly to ASA 5505. If anyone could help me on this I would greatly appciate it.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Above example worked for me, did this several times. It´s using LLQ, the best option for VoIP-Traffic. You can use this with 7.x and 8.x.
It´s not from me, i found it on a website.
It´s not from me, i found it on a website.
ASKER
Hi t509 and tiago_aviz,
First of all thank you so much for the reply. However, I would like to ask you is there way to configure QoS to divide bandwidth for each department? So we prevent from one department to use all of the bandwidth. If that is possible can you tell me how? I'm really sorry for the bother.
Thanks!
First of all thank you so much for the reply. However, I would like to ask you is there way to configure QoS to divide bandwidth for each department? So we prevent from one department to use all of the bandwidth. If that is possible can you tell me how? I'm really sorry for the bother.
Thanks!
ASKER
Thank you for the tip!
However, I need to setup each department to share 50m, is there way to split the 50m for each department? If you can answer my question I would greatly appreicate it.
Thanks!
However, I need to setup each department to share 50m, is there way to split the 50m for each department? If you can answer my question I would greatly appreicate it.
Thanks!
! Enable a priority queue on the outside interface
ASA1(config)# priority-queue outside
ASA1(config-priority-queue
! Select VoIP traffic for prioritization
ASA1(config)#access-list VoIP-Traffic-OUT extended permit tcp 192.168.1.0 255.255.255.0 192.168.2.0 255.255.255.0 eq h323
ASA1(config)#access-list VoIP-Traffic-OUT extended permit tcp 192.168.1.0 255.255.255.0 192.168.2.0 255.255.255.0 eq sip
ASA1(config)#access-list VoIP-Traffic-OUT extended permit tcp 192.168.1.0 255.255.255.0 192.168.2.0 255.255.255.0 eq 2000
ASA1(config)#access-list VoIP-Traffic-IN extended permit tcp 192.168.2.0 255.255.255.0 192.168.1.0 255.255.255.0 eq h323
ASA1(config)#access-list VoIP-Traffic-IN extended permit tcp 192.168.2.0 255.255.255.0 192.168.1.0 255.255.255.0 eq sip
ASA1(config)#access-list VoIP-Traffic-IN extended permit tcp 192.168.2.0 255.255.255.0 192.168.1.0 255.255.255.0 eq 2000
! Match the ACL and traffic with Expedited Forwarding (EF)
ASA1(config)# class-map Voice-OUT
ASA1(config-cmap)#match dscp ef
ASA1(config-cmap)#match access-list VoIP-Traffic-OUT
ASA1(config-cmap)#exit
! Match the ACL and traffic with Expedited Forwarding (EF)
ASA1(config)# class-map Voice-OUT
ASA1(config-cmap)#match dscp ef
ASA1(config-cmap)#match access-list VoIP-Traffic-OUT
ASA1(config-cmap)#exit
ASA1(config)#class-map Voice-IN
ASA1(config-cmap)#match dscp ef
ASA1(configcmap)#match access-list VoIP-Traffic-IN
ASA1(config-cmap)#exit
! Configure the actual policy that will be applied to the interface
ASA1(config)# policy-map Voice-Policy
ASA1(config-pmap)#class Voice-OUT
ASA1(config-pmapc)#priorit
ASA1(config-pmapc)#exit
ASA1(config-pmap)#class Voice-IN
ASA1(config-pmapc)#priorit
ASA1(config-pmapc)#exit
ASA1(config-pmap)#exit
! Apply the policy to the outside interface
ASA1(config)# service-policy Voice-Policy interface outside