Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

QOS on cisco ASA5505

Posted on 2012-03-14
3
719 Views
Last Modified: 2012-04-10
Hi guys;
We just upgraded our intenet line to a full 100mbps line and we purchased a Cisco ASA5505 firewall to do the job.
As i'm not a big savvy of Cisco, i was trying to apply some QOS rules for no avail. So let me explain what i want to do with it.

Assure 10mbps bandwidth for L2TP traffic in both directions
Assure 5mbps bandwidth for smtp traffic in both directions
Assure 10mbps bandwidth ftp traffic in both directions
Assure 20mbps bandwidth for HTTP/HTTPS traffic in both directions
Assure 10mbps bandwidth for skype traffic in both directions

Let the rest of protocols fight on the remaining.
How can i do this?

ALso, i will need to understand how the QOS works on ASA. Let's say, when i give 20mb to my http, is it equally shared between all clients, or first come first served?

Will the ASA 5505 do the things i'm expecting or is it better for me to go with a hardware based packet shaper?
Thanks in advance.
0
Comment
Question by:isaman07
  • 2
3 Comments
 
LVL 12

Accepted Solution

by:
Henk van Achterberg earned 500 total points
ID: 37722001
QOS on Both sides is not possible as you are not responsible for the other side of the line.

If you want to assure bandwidth it means you need to limit everything else. I think that aint such a good idea and you should use prioritizing traffic.

Take a good look at the following url to understand how QOS works on a cisco ASA.

http://www.cisco.com/en/US/docs/security/asa/asa80/configuration/guide/qos.html
0
 
LVL 14

Author Comment

by:isaman07
ID: 37722987
Thanks for your reply. So I can't avoid users taking the whole bandwidth downloading stuff from the Internet? Because all the policing policies were being applied on the uploads, while I want to apply them the other way around. Will prioritizing do any better and how?
0
 
LVL 12

Expert Comment

by:Henk van Achterberg
ID: 37723675
You are not in control of the "download" portion because that is your ISP. You should contact your ISP about QOS if you want to control the download portion.
0

Featured Post

Simplifying Server Workload Migrations

This use case outlines the migration challenges that organizations face and how the Acronis AnyData Engine supports physical-to-physical (P2P), physical-to-virtual (P2V), virtual to physical (V2P), and cross-virtual (V2V) migration scenarios to address these challenges.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

A safe way to clean winsxs folder from your windows server 2008 R2 editions
This article will inform Clients about common and important expectations from the freelancers (Experts) who are looking at your Gig.
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
Internet Business Fax to Email Made Easy - With  eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, f…

861 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question