Solved

QOS on cisco ASA5505

Posted on 2012-03-14
3
716 Views
Last Modified: 2012-04-10
Hi guys;
We just upgraded our intenet line to a full 100mbps line and we purchased a Cisco ASA5505 firewall to do the job.
As i'm not a big savvy of Cisco, i was trying to apply some QOS rules for no avail. So let me explain what i want to do with it.

Assure 10mbps bandwidth for L2TP traffic in both directions
Assure 5mbps bandwidth for smtp traffic in both directions
Assure 10mbps bandwidth ftp traffic in both directions
Assure 20mbps bandwidth for HTTP/HTTPS traffic in both directions
Assure 10mbps bandwidth for skype traffic in both directions

Let the rest of protocols fight on the remaining.
How can i do this?

ALso, i will need to understand how the QOS works on ASA. Let's say, when i give 20mb to my http, is it equally shared between all clients, or first come first served?

Will the ASA 5505 do the things i'm expecting or is it better for me to go with a hardware based packet shaper?
Thanks in advance.
0
Comment
Question by:isaman07
  • 2
3 Comments
 
LVL 12

Accepted Solution

by:
Henk van Achterberg earned 500 total points
ID: 37722001
QOS on Both sides is not possible as you are not responsible for the other side of the line.

If you want to assure bandwidth it means you need to limit everything else. I think that aint such a good idea and you should use prioritizing traffic.

Take a good look at the following url to understand how QOS works on a cisco ASA.

http://www.cisco.com/en/US/docs/security/asa/asa80/configuration/guide/qos.html
0
 
LVL 14

Author Comment

by:isaman07
ID: 37722987
Thanks for your reply. So I can't avoid users taking the whole bandwidth downloading stuff from the Internet? Because all the policing policies were being applied on the uploads, while I want to apply them the other way around. Will prioritizing do any better and how?
0
 
LVL 12

Expert Comment

by:Henk van Achterberg
ID: 37723675
You are not in control of the "download" portion because that is your ISP. You should contact your ISP about QOS if you want to control the download portion.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
forward schedule of change 1 11
The purpose of using BGP 33 69
network error 8 32
Using VLAN Interface in ASA 5 17
#Citrix #Citrix Netscaler #HTTP Compression #Load Balance
In this article, I am going to show you how to simulate a multi-site Lab environment on a single Hyper-V host. I use this method successfully in my own lab to simulate three fully routed global AD Sites on a Windows 10 Hyper-V host.
This tutorial will walk an individual through configuring a drive on a Windows Server 2008 to perform shadow copies in order to quickly recover deleted files and folders. Click on Start and then select Computer to view the available drives on the se…
This tutorial will show how to configure a single USB drive with a separate folder for each day of the week. This will allow each of the backups to be kept separate preventing the previous day’s backup from being overwritten. The USB drive must be s…

932 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now