Task 4.5 VPN QoS solution in sol.-guide is wrong

Hi,

another configuration in the solution guide, which to my mind is not correct. Of course I'll stand corrected if anyone explains otherwise! :)

This is the configuration given to limit the VPN traffic to not overwhelm the network, which has a capacity of 2Mbit. The problem here is, that the policy is applied to each flow (because of the "match ip flow destination" command), so two flows get 4Mbit together.
 Code:

class-map VPN_VOICE
match dscp ef
match tunnel-group 183.1.119.5
!
! Class map to match traffic inside a tunnel group
!
class-map VPN_DATA
match flow ip destination-address
match tunnel-group 183.1.119.5
!
! Add policy actions to the policy map
!
policy-map OUTSIDE
class VPN_DATA
police output 2000000
class VPN_VOICE
priority


I would configure it without the "match flow ip destination-address"-command.

Any comments appreciated,
airflow
Sign In or Register to comment.