Re: QOS on VPN Server router for ip communicator

clarification. I didn't mean restrict but hard to
or impossible to prioritize inbound from internet. I guess things may have
changed but hard to queue up traffic when we don't know who,what,where it
might be coming from.

On Sun, Sep 16, 2012 at 2:11 PM, marc edwards <renorider_at_gmail.com> wrote:

> RTP uses same ports if hard or soft phone. That is why I was recommending
> ACL that ID's RTP based on port and not source, destination IP, or markings.
>
> As far as inbound. There isn't any way to restrict incoming traffic from
> internet. If it is all sourced from router, then egress on the router is
> the best option. And since there is crypto involved before or at encryption
> point.
>
>
> On Sun, Sep 16, 2012 at 1:47 PM, Iam Here <go_soon2010_at_hotmail.com> wrote:
>
>> Do I match the Softphone by using RTP protocol too or what ?
>>
>> ------------------------------
>> Date: Sun, 16 Sep 2012 13:38:23 -0700
>>
>> Subject: Re: QOS on VPN Server router for ip communicator
>> From: renorider_at_gmail.com
>> To: go_soon2010_at_hotmail.com
>>
>> So now we are discussing a few things and that is a great question. My
>> examples all are under the assumption that pc is only talking to router
>> (voice, and otherwise).
>>
>> Fact is, if you are downloading large files on PC and also using IP
>> phone, the endpoint will also need some type of QoS. I am not sure if end
>> point prioritizing/policing exists but sounds like a good pet project.
>>
>>
>>
>> On Sun, Sep 16, 2012 at 1:22 PM, Iam Here <go_soon2010_at_hotmail.com>wrote:
>>
>> but how can i match the traffic that coming from the softphone which exit
>> from the laptop not the IP phone
>>
>> ------------------------------
>> Date: Sun, 16 Sep 2012 13:18:51 -0700
>>
>> Subject: Re: QOS on VPN Server router for ip communicator
>> From: renorider_at_gmail.com
>> To: go_soon2010_at_hotmail.com
>>
>> I would apply that service policy on dialer interface and test...
>>
>> On Sun, Sep 16, 2012 at 1:15 PM, Iam Here <go_soon2010_at_hotmail.com>wrote:
>>
>> The encryption will will on the outside (Dialer interface)
>>
>> ------------------------------
>> Date: Sun, 16 Sep 2012 13:13:47 -0700
>>
>> Subject: Re: QOS on VPN Server router for ip communicator
>> From: renorider_at_gmail.com
>> To: go_soon2010_at_hotmail.com
>>
>> The short answer is to apply the service-policy on interface prior to
>> where encryption is happening. I would have to see relevant crypto config
>> to make a call if this would work or not.
>>
>>
>>
>> On Sun, Sep 16, 2012 at 1:06 PM, Iam Here <go_soon2010_at_hotmail.com>wrote:
>>
>> but the traffic is encrypted so I think the matching will not work
>> properly
>>
>> ------------------------------
>> Date: Sun, 16 Sep 2012 12:55:33 -0700
>>
>> Subject: Re: QOS on VPN Server router for ip communicator
>> From: renorider_at_gmail.com
>> To: go_soon2010_at_hotmail.com
>>
>>
>> Example of what to use for RTP traffic w/sip call control would be like
>> this:
>>
>> ip access-list extended RTP
>> permit udp any any eq 24576 32767
>> ip access-list extended CONTROL
>> permit udp any any eq 5060
>> !
>> class-map GOLD
>> match access-group name RTP
>> class-map SILVER
>> match access-group name CONTROL
>> !
>> policy-map PRIORITIZE
>> class GOLD
>> priority 100
>> class SILVER
>> bandwidth 100
>> !
>> interface Dialer 0
>> service-policy output PRIORITIZE
>>
>> Something to that effect will put RTP traffic in strict priority queue
>> and allocate 100kb/s for call control. Everything else will be in class
>> default
>>
>> HTH
>>
>> Marc
>>
>> On Sun, Sep 16, 2012 at 11:48 AM, Iam Here <go_soon2010_at_hotmail.com>wrote:
>>
>> yes all the GW are FXO
>>
>> > Date: Sun, 16 Sep 2012 11:43:06 -0700
>> > Subject: Re: QOS on VPN Server router for ip communicator
>> > From: renorider_at_gmail.com
>> > To: go_soon2010_at_hotmail.com
>> > CC: joe_at_affirmedsystems.com; ccielab_at_groupstudy.com
>>
>> >
>> > Is voice gateway off FXO interface?
>> >
>> > On Sunday, September 16, 2012, Iam Here wrote:
>> >
>> > > the Sever is at the 2911 side and my laptop has the VPN clinet + the
>> IP
>> > > communicator
>> > >
>> > > > From: joe_at_affirmedsystems.com <javascript:;>
>> > > > To: go_soon2010_at_hotmail.com <javascript:;>; ccielab_at_groupstudy.com
>> <javascript:;>
>>
>> > > > Subject: RE: QOS on VPN Server router for ip communicator
>> > > > Date: Sun, 16 Sep 2012 17:14:10 +0000
>> > > >
>> > > > Where are you uploading large files? At the 2911 side or on your
>> home
>> > > laptop?
>> > > >
>> > > > -----Original Message-----
>> > > > From: nobody_at_groupstudy.com <javascript:;> [mailto:
>> nobody_at_groupstudy.com<javascript:;>]
>> > > On Behalf Of Iam Here
>> > > > Sent: Sunday, September 16, 2012 9:53 AM
>> > > > To: ccielab_at_groupstudy.com <javascript:;>
>> > > > Subject: QOS on VPN Server router for ip communicator
>> > > >
>> > > > I have a Cisco CUCME 2911 with Voice and Data and configured as VPN
>> > > Server to the internet over a 1mbit connection.
>> > > > I installed Ip communicator and VPN client on my laptop to access
>> the
>> > > site remotely by VPN Client.The problem is that The Voice traffic gets
>> > > degraded when I upload large files. Pings time out as well.
>> > > >
>> > > > I need to configure QOS policy on the router but i don't know how
>> can i
>> > > match the voice traffic of the IP communicator to give it the
>> priority . I
>> > > appreciate if there is a template config I have a dialer interface
>> for the
>> > > Internet
>> > > >
>> > > >
>> > > > Blogs and organic groups at http://www.ccie.net
>> > > >
>> > > >
>> _______________________________________________________________________
>> > > > Subscription information may be found at:
>> > > > http://www.groupstudy.com/list/CCIELab.html
>> > > >
>> > > >
>> > > > Blogs and organic groups at http://www.ccie.net
>> > > >
>> > > >
>> _______________________________________________________________________
>> > > > Subscription information may be found at:
>> > > > http://www.groupstudy.com/list/CCIELab.html
>> > >
>> > >
>> > > Blogs and organic groups at http://www.ccie.net
>> > >
>> > >
>> _______________________________________________________________________
>> > > Subscription information may be found at:
>> > > http://www.groupstudy.com/list/CCIELab.html
>> >
>> >
>> > Blogs and organic groups at http://www.ccie.net
>> >
>> > _______________________________________________________________________
>> > Subscription information may be found at:
>> > http://www.groupstudy.com/list/CCIELab.html

Blogs and organic groups at http://www.ccie.net
Received on Sun Sep 16 2012 - 14:14:29 ART