Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Ipsec vpn shaping

    Scheduled Pinned Locked Moved IPsec
    4 Posts 3 Posters 3.1k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • E
      expert_az
      last edited by

      Hello i have ipsec vpn between two static sites.
      I have data and voip sessions through this VPN.
      Can I do traffic shaping inside the VPN tunnel?
      If not,how can i carry voip packages through IPSEC VPN with low delay  and best quality?

      Best regards.
      Hafiz

      1 Reply Last reply Reply Quote 0
      • B
        borki
        last edited by

        Hi everyone

        I have a similar question: our mpls provider does qos on the links between our offices and they reserve some bandwitdh for voip. since we are running ipsec between the offices, the provider does not see our qos information on the original voip packets. is there a way to "copy the qos information to the encapsulating packet"?

        regards,
        reto

        1 Reply Last reply Reply Quote 0
        • S
          sullrich
          last edited by

          Shaping on IPSEC currently is not available.  It needs to be added to FreeBSD and people are working on it but no ETA.

          1 Reply Last reply Reply Quote 0
          • B
            borki
            last edited by

            My question is not about shaping ipsec traffic.. but i think i found the answer:

            The original TOS field is copied to the encapsulating IP header, so the qos information still
            remains on the encrypted packet and can be routed/queued/prioritized accordingly.

            Regards,
            Reto

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.