Solved

QOS on cisco ASA5505

Posted on 2012-03-14
3
714 Views
Last Modified: 2012-04-10
Hi guys;
We just upgraded our intenet line to a full 100mbps line and we purchased a Cisco ASA5505 firewall to do the job.
As i'm not a big savvy of Cisco, i was trying to apply some QOS rules for no avail. So let me explain what i want to do with it.

Assure 10mbps bandwidth for L2TP traffic in both directions
Assure 5mbps bandwidth for smtp traffic in both directions
Assure 10mbps bandwidth ftp traffic in both directions
Assure 20mbps bandwidth for HTTP/HTTPS traffic in both directions
Assure 10mbps bandwidth for skype traffic in both directions

Let the rest of protocols fight on the remaining.
How can i do this?

ALso, i will need to understand how the QOS works on ASA. Let's say, when i give 20mb to my http, is it equally shared between all clients, or first come first served?

Will the ASA 5505 do the things i'm expecting or is it better for me to go with a hardware based packet shaper?
Thanks in advance.
0
Comment
Question by:isaman07
  • 2
3 Comments
 
LVL 12

Accepted Solution

by:
Henk van Achterberg earned 500 total points
ID: 37722001
QOS on Both sides is not possible as you are not responsible for the other side of the line.

If you want to assure bandwidth it means you need to limit everything else. I think that aint such a good idea and you should use prioritizing traffic.

Take a good look at the following url to understand how QOS works on a cisco ASA.

http://www.cisco.com/en/US/docs/security/asa/asa80/configuration/guide/qos.html
0
 
LVL 14

Author Comment

by:isaman07
ID: 37722987
Thanks for your reply. So I can't avoid users taking the whole bandwidth downloading stuff from the Internet? Because all the policing policies were being applied on the uploads, while I want to apply them the other way around. Will prioritizing do any better and how?
0
 
LVL 12

Expert Comment

by:Henk van Achterberg
ID: 37723675
You are not in control of the "download" portion because that is your ISP. You should contact your ISP about QOS if you want to control the download portion.
0

Featured Post

Enabling OSINT in Activity Based Intelligence

Activity based intelligence (ABI) requires access to all available sources of data. Recorded Future allows analysts to observe structured data on the open, deep, and dark web.

Join & Write a Comment

Suggested Solutions

Meet the world's only “Transparent Cloud™” from Superb Internet Corporation. Now, you can experience firsthand a cloud platform that consistently outperforms Amazon Web Services (AWS), IBM’s Softlayer, and Microsoft’s Azure when it comes to CPU and …
Use of TCL script on Cisco devices:  - create file and merge it with running configuration to apply configuration changes
To efficiently enable the rotation of USB drives for backups, storage pools need to be created. This way no matter which USB drive is installed, the backups will successfully write without any administrative intervention. Multiple USB devices need t…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now