Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1043
  • Last Modified:

Cisco QoS config w/ ASA 5510, Catalyst 3560, and 2960G

Hi Cisco Gurus,

Here's my current network config:

10x10MB internet connection <==> ASA 5510 <==> Catalyst 3560 48-Port Switch (LAN) <==>  Catalyst 2960G (Servers)

I'm doing extensive research on implementing QoS to maximize my network bandwidth efficiency since I have many remote users doing file share, VPN, and VOIP while my LAN users require heavy internet and media streaming.

As I'm doing my research, I'm a bit confused on the following:

1) Do I need to set QoS Policies only on the ASA or on the ASA and switch(es) -- what's the best practice?
2) I'm unsure on how to calculate the following to configure:  
    a) For Priority Queing: tx-ring limit size & priority queue size - provide example for voip requiring 1000K worth of bandwidth
    b) For Policing:  Maximum Rate limit & Maximum burst size - provide example of restricting http/https traffic to max 50% of bandwidth

Please elaborate on how to calculate, cli command, and the rhyme and reason to it...thanks!
0
jetli87
Asked:
jetli87
  • 2
  • 2
1 Solution
 
asavenerCommented:
QoS policy should be end-to-end.  (ASA and the switches, in your case.)

2.  b) I would recommend that you use shaping and not policing.  Policing will drop all sessions if you get above the limit (because the router just stops transmitting).  Shaping will start dropping a few packets in order to slow the flow of data, without dropping everything all at once.

I'll have to get back with you on exact commands.  Can you show me what you have so far?
0
 
jetli87Author Commented:
Hi thanks for the response.

I've actually done more reading and research so I understand the logic a bit better then when I originally posted this question.

With that said though, I just need a bit more clarification on Tx-ring limit and priority queue size and how to calculate what's the approriate setting for a specific scenario.

0
 
asavenerCommented:
I'm not familiar with the TX-ring limit.... what is the command to which you are referring?

As for VoIP, since you're unlikely to use up the entire bandwidth with VoIP, I'd suggest just setting up a priority queue for voice.
0
 
jetli87Author Commented:
Did not provide indepth analysis on the question.
0

Featured Post

Big Data Means Big Business

In data-dependent industries like IT, finance, and healthcare, there’s a growing demand for qualified analysts to fill leadership roles. WGU’s MS in Data Analytics has IT certifications from Oracle and SAS built into its curriculum at a flat fee that could save you money.

  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now