<div>Hi All,</div>
<div> </div>
<div> I working on a configuration for Qos for a site to site ipsec vpn tunnel on which we run voice,The link is 512 kbps and also supports nat traffic to the internet.I have gone thorugh the QOS srnd for V3PN and have put together a config,please let me know if there is any gotcha to be aware
of.This remote site currently uses around 6 ipphones registered to a central site callmanager and there are no gateways at this site.I am doing this Qos configuration as Occassionly I see email traffic overwhelming my voice
traffic.Please share your experience with the same scenario.</div>
<div> </div>
<div>1. Classify traffic using ACL</div>
<div> </div>
<div>ip access-list extended Voice-bearer<br>remark Match the UDP ports that VoIP Uses for Bearer Traffic<br>permit udp any any range 16384 32767</div>
<div> </div>
<div>ip access-list extended Voice-signalling<br>remark SCCP<br>permit tcp any any range 2000 2002</div>
<div> </div>
<div>2.Make class map </div>
<div> </div>
<div>class-map match-all Voice-rtp<br>description Bearer Traffic<br>match access-group name Voice-bearer</div>
<p>class-map match-all Voice-control<br>description Control Traffic (SCCP)<br>match access-group name Voice-signalling</p>
<div>3.policy-map encr-traffic<br>class Voice-rtp<br>priority 256</div>
<div>class Voice-control<br>bandwidth 128</div>
<div> </div>
<div>4.Apply the policy on serial interface connected to the internet</div>
<div>service-policy output encr-traffic</div>
<div>5. Also add the qos pre-classify on serial interface connected to the internet</div>
<div> </div>
<div> </div>
<div>Aman</div>