<div>
I suspect that the Rate-Limit speed has been set at around the 1.5 mps &nbsp;limit - &nbsp;<br />
<br />
Here's some info on that<br />
<br />
<a href="http://www.cisco.com/c/en/us/td/docs/ios/12_2/qos/command/reference/fqos_r/qrfcmd8.html" rel="ugc">http://www.cisco.com/c/en/us/td/docs/ios/12_2/qos/command/reference/fqos_r/qrfcmd8.html</a>
</div>


<div>
Did you look at the configuration? &nbsp;I don't have rate limiting configured.
</div>


<div>
I can't see where you're sending ports 80 and 81 out via the cable modem.<br />
<br />
You have these NAT statements...<br />
<br />

<pre><code class="code-1 nolinks" id="code-20-39910146-1"><span>ip nat inside source route-map CABLE interface GigabitEthernet0/0 overload</span>
<span>ip nat inside source route-map NAT interface Serial0/0/0.1 overload</span>
</code></pre>
<br />
...and these ACLs and route-maps...<br />
<br />

<pre><code class="code-10 nolinks" id="code-20-39910146-2"><span>ip access-list extended NAT</span>
<span> deny   ip 172.18.106.0 0.0.0.255 10.11.0.0 0.0.255.255</span>
<span> deny   ip 172.18.106.0 0.0.0.255 10.15.1.0 0.0.0.255</span>
<span> deny   ip 172.18.106.0 0.0.0.255 10.41.0.0 0.0.255.255</span>
<span> deny   ip 172.18.106.0 0.0.0.255 10.52.0.0 0.0.255.255</span>
<span> deny   ip 172.18.106.0 0.0.0.255 10.253.1.0 0.0.0.255</span>
<span> deny   ip 172.18.106.0 0.0.0.255 10.254.1.0 0.0.0.255</span>
<span> deny   ip 172.18.106.0 0.0.0.255 10.0.0.0 0.0.15.255</span>
<span> deny   ip 172.18.106.0 0.0.0.255 172.31.252.0 0.0.3.255</span>
<span> permit ip 172.18.106.0 0.0.0.255 any</span>
<span>!</span>
<span>access-list 141 deny   ip 172.18.106.0 0.0.0.255 10.0.0.0 0.0.15.255</span>
<span>access-list 141 deny   ip 172.18.106.0 0.0.0.255 172.31.252.0 0.0.3.255</span>
<span>access-list 141 deny   ip 172.18.106.0 0.0.0.255 10.11.0.0 0.0.255.255</span>
<span>access-list 141 deny   ip 172.18.106.0 0.0.0.255 10.15.1.0 0.0.0.255</span>
<span>access-list 141 permit ip 172.18.106.0 0.0.0.255 any</span>
<span>!</span>
<span>!</span>
<span>!</span>
<span>!</span>
<span>route-map CABLE permit 10</span>
<span> match ip address 141</span>
<span> match interface GigabitEthernet0/0</span>
<span>!</span>
<span>route-map NAT permit 10</span>
<span> match ip address NAT</span>
</code></pre>
<br />
So, based on that NAT statement configuration it looks to me like you're not sending 80 and 81 out of the cable link specifically.<br />
<br />
You need to be using the CABLE-WEB route-map to send traffic over the cable link.<br />
<br />
I know that you say you're seeing the correct IP when you go to IPChicken, but I think that's probably a cached result.<br />
<br />
As I say, that's what it looks like.
</div>


<div>
I'm sending port 80 and port 81 out the cable modem via the following:<br />
<br />
route-map CABLE-WEB permit 10<br />
&nbsp;match ip address 180<br />
&nbsp;set ip next-hop verify-availability x.x.20.73 50 track 101<br />
<br />
access-list 180 permit tcp 172.18.106.0 0.0.0.255 any eq www<br />
access-list 180 permit tcp 172.18.106.0 0.0.0.255 any eq 81<br />
<br />
interface GigabitEthernet0/1<br />
&nbsp;description LAN<br />
&nbsp;ip address 172.18.106.1 255.255.255.0<br />
&nbsp;ip nat inside<br />
&nbsp;ip virtual-reassembly<br />
&nbsp;ip tcp adjust-mss 1360<br />
&nbsp;ip policy route-map CABLE-WEB<br />
&nbsp;duplex auto<br />
&nbsp;speed auto<br />
<br />
I don't think the ipchicken ip is cached. &nbsp;If I unplug the cable modem and go to ipchicken.com the ip of the T1 comes up as it should. &nbsp;If I plug the cable modem back in, wait for the track to come back up, and then go to ipchicken.com the IP changes to the cable modem.
</div>


<div>
Ok fair enough.<br />
<br />
If you're using NAT statements you don't need to do it at the interface. &nbsp;I'm struggling to work out how your web traffic is going over the cable-modem but only at the Serial line speed - the interface statement is what must be causing this.
</div>


<div>
Yeah that's where I'm at with it too. &nbsp;So you think it has to do with the NAT overload on the cable modem interface?
</div>


<div>
I think it's being NAT'ed by both policies, ending up on the Serial NAT. &nbsp;I can't explain why you get the right IP though.
</div>


<div>
I can try and remove that NAT statement early tomorrow morning and see what the outcome is? &nbsp;I'll keep you updated.
</div>


<div>
I removed that NAT statement, but couldn't get out to the internet so I added it back. &nbsp;Still having the same speed problem.
</div>


<div>
I opened up a TAC case, they seem stumped as well. &nbsp;I will post an update when I have something. &nbsp;In the mean time, if anyone has any ideas, please share. &nbsp;Thanks.
</div>


<div>
TAC seems to be stumped as well. &nbsp;They want me to be onsite for further testing, but that is just not feasible right now because the location this router is at is 4 hours away. &nbsp;Here's what I know so far. &nbsp;Again this morning, I had a user plug a laptop directly into cable modem, and I do get 50mbps. &nbsp;I have the user plug the cable modem back into the router, I only get only 1.5mbps. &nbsp;I'm thinking there may be some asymmetric routing going on. &nbsp;Maybe its going on one path, but coming back in over the T1? &nbsp;I guess that could be possible.
</div>


<div>
I figured so. &nbsp;If I go to <a href="http://www.whatismyip.com" rel="ugc">www.whatismyip.com</a>, I get the same result. &nbsp;I thought about it being a speed,duplex, or cable issue, but I have no interface errors. &nbsp;I called the ISP just to be sure of their speed and duplex, so that matches. &nbsp;I will try pushing all traffic over the cable modem and see what happens during a maintenance window.
</div>


<div>
Turns out my configuration was working properly all along. &nbsp;I figured all speed test sites use port 80, but I was wrong. &nbsp;I was only pushing port 80 and 81 out of the cable modem, so if I ran a speed test that used a different destination port, I of course would get the speed of the T1. &nbsp;To prove this, I found a speed test website that uses one single destination port, I added this port to the access-list 180, and speed tests came back at 50Mbps on the cable modem like they should.
</div>


<div>
<div class="content wysiwyg-content">
I have a Cisco 2911 router that has two internet circuits. &nbsp;The serial interface is the T1, and interface gi0/0 is the cable modem. &nbsp;I use PBR to push port 80 and port 81 out of the cable modem. &nbsp;It seems to be working, if I go to <a href="http://www.ipchicken.com" rel="ugc">www.ipchicken.com</a>&nbsp;the ip address of the cable modem shows up, so I know port 80 is going out the right circuit. &nbsp;Here's the problem, the cable modem is a 50 Mbps circuit. &nbsp;If I connect my laptop directly to the cable modem, all day every day I can achieve 50Mbps downloads. &nbsp;When the router is connected to the cable modem, with port 80 traffic going through it, I can't get more than 1.5mbps speeds. &nbsp;I don't understand what is happening. &nbsp;I have this same exact setup at other locations but using 2800 series routers. &nbsp;This setup the only difference is its a 2900 series. &nbsp;I will attach the configurations. &nbsp;Any assistance would be greatly appreciated. &nbsp;Thanks.<br />
<a href="https://filedb.experts-exchange.com/incoming/2014/03_w10/838540/2911-Configuration.txt" target="_blank" class="file-inline" title="Configuration (5 KB)"><svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 512 512"><path d="M67.508 468.467c-58.005-58.013-58.016-151.92 0-209.943l225.011-225.04c44.643-44.645 117.279-44.645 161.92 0 44.743 44.749 44.753 117.186 0 161.944l-189.465 189.49c-31.41 31.413-82.518 31.412-113.926.001-31.479-31.482-31.49-82.453 0-113.944L311.51 110.491c4.687-4.687 12.286-4.687 16.972 0l16.967 16.971c4.685 4.686 4.685 12.283 0 16.969L184.983 304.917c-12.724 12.724-12.73 33.328 0 46.058 12.696 12.697 33.356 12.699 46.054-.001l189.465-189.489c25.987-25.989 25.994-68.06.001-94.056-25.931-25.934-68.119-25.932-94.049 0l-225.01 225.039c-39.249 39.252-39.258 102.795-.001 142.057 39.285 39.29 102.885 39.287 142.162-.028A739446.174 739446.174 0 0 1 439.497 238.49c4.686-4.687 12.282-4.684 16.969.004l16.967 16.971c4.685 4.686 4.689 12.279.004 16.965a755654.128 755654.128 0 0 0-195.881 195.996c-58.034 58.092-152.004 58.093-210.048.041z"/></svg>2911-Configuration.txt</a>
</div>
</div>


2911-Configuration.txt

I have a Cisco 2911 router that has two internet circuits.  The serial interface is the T1, and interface gi0/0 is the cable modem.  I use PBR to push port 80 and port 81 out of the cable modem.  It seems to be working, if I go to www.ipchicken.com the ip address of the cable modem shows up, so I know port 80 is going out the right circuit.  Here's the problem, the cable modem is a 50 Mbps circuit.  If I connect my laptop directly to the cable modem, all day every day I can achieve 50Mbps downloads.  When the router is connected to the cable modem, with port 80 traffic going through it, I can't get more than 1.5mbps speeds.  I don't understand what is happening.  I have this same exact setup at other locations but using 2800 series routers.  This setup the only difference is its a 2900 series.  I will attach the configurations.  Any assistance would be greatly appreciated.  Thanks.

Using Policy Based Routing to route port 80 traffic out of secondary internet circuit on Cisco Router

A router is a networking device that forwards data packets between computer networks. Routers perform the "traffic directing" functions on the Internet. The most familiar type of routers are home and small office cable or DSL routers that simply pass data, such as web pages, email, IM, and videos between computers and the Internet. More sophisticated routers, such as enterprise routers, connect large business or ISP networks up to the powerful core routers that forward data at high speed along the optical fiber lines of the Internet backbone. Though routers are typically dedicated hardware devices, use of software-based routers has grown increasingly common.

Routers

Cisco PIX is a dedicated hardware firewall appliance; the Cisco Adaptive Security Appliance (ASA) is a firewall and anti-malware security appliance that provides unified threat management and protection the PIX does not. Other Cisco devices and systems include routers, switches, storage networking, wireless and the software and hardware for PIX Firewall Manager (PFM), PIX Device Manager (PDM) and Adaptive Security Device Manager (ASDM).

Cisco

Networking software modules are interfaced with a framework implemented on the machine's operating system that implements the networking functionality of the operating system. The best known frameworks are the TCP/IP model and the OSI model. Systems typically do not use a single protocol to handle a transmission. Instead they use a set of cooperating protocols, sometimes called a protocol family or protocol suite.[9] Some of the best known protocol suites include: IPX/SPX, X.25, AX.25, AppleTalk and TCP/IP. Other protocols indirectly related to networking include the hypertext transfer protocol (HTTP) and its related technologies, Dynamic Host Configuration Protocol (DHCP), Domain Name Server (DNS) and other Internet protocols.