All,
Would the 2 statements below be 100% accurate With QoS pre-classify encryption happens last so that if it's necessary to use TCP / UDP header information to apply QoS parameters it will be done prior to encryption. Without QoS pre-classify encryption is done first and the DSCP / ToS bits in the original IP header are preserved. No option to use layer 4 information for QoS. Also: I know that the actual reserved bandwidth differs between the two. Does anyone have a quick link (or explanation) on why this is the case? It has to do with the IPSec overhead but does it impact the actual bandwidth used if doing policing? Or will you be able to forward less "actual" traffic because of the overhead and the used bandwidth is the same regardless. - Matt
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com
