Re: QOS on VPN Server router for ip communicator

RTP uses same ports if hard or soft phone. That is why I was recommending
ACL that ID's RTP based on port and not source, destination IP, or markings.

As far as inbound. There isn't any way to restrict incoming traffic from
internet. If it is all sourced from router, then egress on the router is
the best option. And since there is crypto involved before or at encryption
point.

On Sun, Sep 16, 2012 at 1:47 PM, Iam Here <go_soon2010_at_hotmail.com> wrote:

> Do I match the Softphone by using RTP protocol too or what ?
>
> ------------------------------
> Date: Sun, 16 Sep 2012 13:38:23 -0700
>
> Subject: Re: QOS on VPN Server router for ip communicator
> From: renorider_at_gmail.com
> To: go_soon2010_at_hotmail.com
>
> So now we are discussing a few things and that is a great question. My
> examples all are under the assumption that pc is only talking to router
> (voice, and otherwise).
>
> Fact is, if you are downloading large files on PC and also using IP phone,
> the endpoint will also need some type of QoS. I am not sure if end
> point prioritizing/policing exists but sounds like a good pet project.
>
>
>
> On Sun, Sep 16, 2012 at 1:22 PM, Iam Here <go_soon2010_at_hotmail.com> wrote:
>
> but how can i match the traffic that coming from the softphone which exit
> from the laptop not the IP phone
>
> ------------------------------
> Date: Sun, 16 Sep 2012 13:18:51 -0700
>
> Subject: Re: QOS on VPN Server router for ip communicator
> From: renorider_at_gmail.com
> To: go_soon2010_at_hotmail.com
>
> I would apply that service policy on dialer interface and test...
>
> On Sun, Sep 16, 2012 at 1:15 PM, Iam Here <go_soon2010_at_hotmail.com> wrote:
>
> The encryption will will on the outside (Dialer interface)
>
> ------------------------------
> Date: Sun, 16 Sep 2012 13:13:47 -0700
>
> Subject: Re: QOS on VPN Server router for ip communicator
> From: renorider_at_gmail.com
> To: go_soon2010_at_hotmail.com
>
> The short answer is to apply the service-policy on interface prior to
> where encryption is happening. I would have to see relevant crypto config
> to make a call if this would work or not.
>
>
>
> On Sun, Sep 16, 2012 at 1:06 PM, Iam Here <go_soon2010_at_hotmail.com> wrote:
>
> but the traffic is encrypted so I think the matching will not work properly
>
> ------------------------------
> Date: Sun, 16 Sep 2012 12:55:33 -0700
>
> Subject: Re: QOS on VPN Server router for ip communicator
> From: renorider_at_gmail.com
> To: go_soon2010_at_hotmail.com
>
>
> Example of what to use for RTP traffic w/sip call control would be like
> this:
>
> ip access-list extended RTP
> permit udp any any eq 24576 32767
> ip access-list extended CONTROL
> permit udp any any eq 5060
> !
> class-map GOLD
> match access-group name RTP
> class-map SILVER
> match access-group name CONTROL
> !
> policy-map PRIORITIZE
> class GOLD
> priority 100
> class SILVER
> bandwidth 100
> !
> interface Dialer 0
> service-policy output PRIORITIZE
>
> Something to that effect will put RTP traffic in strict priority queue and
> allocate 100kb/s for call control. Everything else will be in class default
>
> HTH
>
> Marc
>
> On Sun, Sep 16, 2012 at 11:48 AM, Iam Here <go_soon2010_at_hotmail.com>wrote:
>
> yes all the GW are FXO
>
> > Date: Sun, 16 Sep 2012 11:43:06 -0700
> > Subject: Re: QOS on VPN Server router for ip communicator
> > From: renorider_at_gmail.com
> > To: go_soon2010_at_hotmail.com
> > CC: joe_at_affirmedsystems.com; ccielab_at_groupstudy.com
>
> >
> > Is voice gateway off FXO interface?
> >
> > On Sunday, September 16, 2012, Iam Here wrote:
> >
> > > the Sever is at the 2911 side and my laptop has the VPN clinet + the IP
> > > communicator
> > >
> > > > From: joe_at_affirmedsystems.com <javascript:;>
> > > > To: go_soon2010_at_hotmail.com <javascript:;>; ccielab_at_groupstudy.com
> <javascript:;>
>
> > > > Subject: RE: QOS on VPN Server router for ip communicator
> > > > Date: Sun, 16 Sep 2012 17:14:10 +0000
> > > >
> > > > Where are you uploading large files? At the 2911 side or on your home
> > > laptop?
> > > >
> > > > -----Original Message-----
> > > > From: nobody_at_groupstudy.com <javascript:;> [mailto:
> nobody_at_groupstudy.com<javascript:;>]
> > > On Behalf Of Iam Here
> > > > Sent: Sunday, September 16, 2012 9:53 AM
> > > > To: ccielab_at_groupstudy.com <javascript:;>
> > > > Subject: QOS on VPN Server router for ip communicator
> > > >
> > > > I have a Cisco CUCME 2911 with Voice and Data and configured as VPN
> > > Server to the internet over a 1mbit connection.
> > > > I installed Ip communicator and VPN client on my laptop to access the
> > > site remotely by VPN Client.The problem is that The Voice traffic gets
> > > degraded when I upload large files. Pings time out as well.
> > > >
> > > > I need to configure QOS policy on the router but i don't know how
> can i
> > > match the voice traffic of the IP communicator to give it the priority
> . I
> > > appreciate if there is a template config I have a dialer interface for
> the
> > > Internet
> > > >
> > > >
> > > > Blogs and organic groups at http://www.ccie.net
> > > >
> > > >
> _______________________________________________________________________
> > > > Subscription information may be found at:
> > > > http://www.groupstudy.com/list/CCIELab.html
> > > >
> > > >
> > > > Blogs and organic groups at http://www.ccie.net
> > > >
> > > >
> _______________________________________________________________________
> > > > Subscription information may be found at:
> > > > http://www.groupstudy.com/list/CCIELab.html
> > >
> > >
> > > Blogs and organic groups at http://www.ccie.net
> > >
> > > _______________________________________________________________________
> > > Subscription information may be found at:
> > > http://www.groupstudy.com/list/CCIELab.html
> >
> >
> > Blogs and organic groups at http://www.ccie.net
> >
> > _______________________________________________________________________
> > Subscription information may be found at:
> > http://www.groupstudy.com/list/CCIELab.html

Blogs and organic groups at http://www.ccie.net
Received on Sun Sep 16 2012 - 14:11:44 ART