Firewall Wizards mailing list archives

Re: QoS and bandwidth throttling in IPSEC networks

From: Eric Vyncke <evyncke () cisco com>
Date: Thu, 04 Mar 1999 22:03:53 +0100

IPSec in transport mode does not hide the TOS setting so
QoS tagging will work provided that classification (e.g. setting the TOS) is done
before encryption.

IPSec in tunnel mode requires to copy the TOS byte into the
external IP header from the encapsulated IP header so QoS tagging will
work provided that classification (e.g. setting the TOS) is done
before encryption.

RSVP will not work...

Just my 0.01 EUR

Regards

-eric

At 14:02 4/03/99 +0200, Jyri Kaljundi wrote:


More of encryption questions than firewalls, but this does get mixed quite
often nowadays:

How are the Quality of Service and bandwidth throttling issues handled in
LAN to LAN encryption products? 

How are these issues generally handled in IPSEC packets, like how can
ISP's and public networks offer QoS for encrypted IPSEC packets? Is it
possible to tag the packets (like voice, low quality, e-mail etc) and is
there and RFC on this?

Jüri Kaljundi
jk () stallion ee                     Mustamäe tee 55, Tallinn 10621, Estonia
AS Stallion                        Tel: +372-656 7720
http://www.stallion.ee/            Fax: +372-656 7727


Eric Vyncke                        Cisco Systems Belgium SA/NV
Phone:  +32-2-778.4677             Fax:    +32-2-778.4300
E-mail: evyncke () cisco com          Mobile: +32-75-312.458

Current thread:

QoS and bandwidth throttling in IPSEC networks Jyri Kaljundi (Mar 04)
- Re: QoS and bandwidth throttling in IPSEC networks Arjan Vos (Mar 05)
- <Possible follow-ups>
- Re: QoS and bandwidth throttling in IPSEC networks Eric Vyncke (Mar 05)
- Re: QoS and bandwidth throttling in IPSEC networks TC Wolsey (Mar 06)