Your access-list 150 and priority list say to make traffic from the firewall be highest priority. All other IP traffic appears to be the lowest priority. But what traffic does your firewall actually send?
The term firewall gets used to mean all sorts of things including proxy servers. But if your firewall is simply a device that examines packets and allows or doesn't allow, it is not the source IP address for most traffic. The source address is the end host client or server. Perhaps what you want is to change the list to all devices on the 10.1.1.0 network, rather than just the firewall. Priscilla At 03:41 AM 3/13/02, Cisco Breaker wrote: >Hi all, > >I have a question regarding priority groups. We have 2 firewalls. 10.1.1.2 >and 10.1.1.3. I am using 10.1.1.2 . But even if I am using 10.1.1.2 the >connection is slow as before. What is wrong with my config? Any answer will >be highly appreciated. > >Best regards, > >Ciscobreaker, >CCNP,CCDP > >Router#sh run >Building configuration... > >Current configuration : 2121 bytes >! >version 12.1 >service timestamps debug uptime >service timestamps log uptime >service password-encryption >service udp-small-servers >! >hostname Router >! >enable secret 5 $1$J0OT$To6EJUMsXnNQN6v.yGy9R1 >enable password ak > >interface Ethernet0 > ip address 10.1.1.1 255.255.255.0 >! >interface Serial0 > bandwidth 128000 > ip address 192.168.1.2 255.255.255.0 > priority-group 1 >! >interface Serial1 > no ip address >! >no ip classless >ip route 0.0.0.0 0.0.0.0 192.168.1.1 > >no ip http server >! >no logging trap >access-list 150 permit ip host 10.1.1.2 any >priority-list 1 protocol ipx medium >priority-list 1 protocol pad normal >priority-list 1 protocol ip high list 150 >priority-list 1 default low >! > >line con 0 >line aux 0 >line vty 0 4 > password ak login >! >end ________________________ Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=38141&t=38084 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
