Dario Lesca <[email protected]> wrote: > Hi, I must enable QoS in shorewall-4.5.4 on a Centos 6 > > I have setup a IPSEC tunnell with provider, in which must transit only > VoIP traffic. > Now I can Ping and access to the contact center, and it can access the > local phone, all now work fine, but I must enable the QoS because the > provider have asked to me 500kbps to reserve to VoIP traffic
OK, so the tunnel is dedicated for VoIP traffic - in that case I'd enable traffic shaping on the interface that the tunnel goes out through and simply reserve the required bandwidth for the tunnel traffic. Note that you cannot traffic shape incoming traffic - but if the firewall is a 2 port router and all the traffic passes to other devices in your network then you can do a fairly good approximation by traffic shaping egress traffic on the internal interface. In my case I've done this where I've got public IPs on the inside - if you are doing NAT then it's more complicated ! ------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, Slashdot.org! http://sdm.link/slashdot _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
