Solved

Bandwidth QoS per IP / Host on PIX 515e

Posted on 2011-09-04
10
1,889 Views
Last Modified: 2013-11-16
Device description:
Cisco PIX 515e URBUN
Pix version 7.1(2)
ASDM version 5.1(2)

Objective:
Give IP's 10.0.0.170 through 10.0.0.180 on the inside interface as much bandwidth as they need, then let all the other hosts on the inside interface use the bandwidth remaining.

Problem description:
10 of our host devices on the PIX inside interface each with a static IP (10.0.0.170 - 10.0.0.180) need to have priority bandwidth over all other hosts on the inside interface of the PIX. These devices are barix exstreamer units used for downloading internet radio streams. We use these as part of our radio station downlink sources. Currently when any other host on the inside interface downloads something (i.e. a PC downloading youtube video), said download hogs the bandwidth and the barix devices almost immediately stop, waiting for available bandwidth. For obvious reasons this is not desirable during live radio broadcasting since the program audio stops and we get "dead-air". Each barix device currently consumes ~64kbps constantly.

Commentary:
I use ASDM to access the PIX device. I've learned that QoS / Rate Limiting is supported by our PIX device. I found a configuration screen for QoS in ASDM, but have no clue as to how to add and configure for our needs.

Please provide easy to understand steps as how to do this in ASDM. Thank you.
0
Comment
Question by:OctoberCat
  • 7
10 Comments
 

Author Comment

by:OctoberCat
ID: 36482152
I forgot to mention that the priority devices use TCP/IP and HTTP with varying ports.
0
 
LVL 3

Expert Comment

by:sudeep_mib
ID: 36485240
http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_tech_note09186a008084de0c.shtml
Go through this doc. This will help you understand qos in pix
0
 

Assisted Solution

by:OctoberCat
OctoberCat earned 0 total points
ID: 36485481
I browsed through that document weeks before coming here with the question. Thanks, but that helps me 0%.

I am looking for an expert that can instruct me the procedure in ASDM, *not* CLI.

In ASDM I  think I go to Configuration>Security>Inside interface and then add a new service policy (providing a ton of options, at which point I get lost).

Again, thank you, but as my original question states, I need help doing this in ASDM.
0
 

Author Comment

by:OctoberCat
ID: 36493105
Help please.
0
Better Security Awareness With Threat Intelligence

See how one of the leading financial services organizations uses Recorded Future as part of a holistic threat intelligence program to promote security awareness and proactively and efficiently identify threats.

 

Author Comment

by:OctoberCat
ID: 36500456
Is this question outside the knowledge base of the cisco "experts" here or something? Come on guys, why is this going unanswered?
0
 

Author Comment

by:OctoberCat
ID: 36520064
Here are 3 screen shots of what I've tried so far.

1. Didn't work.
2. Didn't work.
3. Worked, but was basically rate-limiting all hosts, when instead I am trying to give the "barix" group bandwidth priority and let the rest of the hosts on the interface compete for remaining bandwidth.

Please? Anyone?


not-working1.jpg
not-working2.jpg
works-sorta.jpg
0
 

Accepted Solution

by:
OctoberCat earned 0 total points
ID: 36524470
Thanks for all the help.

Son, am disappoint.
0
 

Author Closing Comment

by:OctoberCat
ID: 36553557
Lazy "experts" not worth a damn. Do you remember when you stopped caring? Because I just did.
0

Featured Post

What Should I Do With This Threat Intelligence?

Are you wondering if you actually need threat intelligence? The answer is yes. We explain the basics for creating useful threat intelligence.

Join & Write a Comment

Suggested Solutions

Even if you have implemented a Mobile Device Management solution company wide, it is a good idea to make sure you are taking into account all of the major risks to your electronic protected health information (ePHI).
Join Greg Farro and Ethan Banks from Packet Pushers (http://packetpushers.net/podcast/podcasts/pq-show-93-smart-network-monitoring-paessler-sponsored/) and Greg Ross from Paessler (https://www.paessler.com/prtg) for a discussion about smart network …
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

747 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now