Cisco IOS Software Dynamic Multipoint VPN (DMVPN) Hub Support by Quality of Service (QoS) Class is supported on the Cisco 7200, 7301, 800, 1700, 1800, 2600XM, 2800, 3700, 3800 Routers.
Cisco IOS Software DMVPN was first introduced in Cisco IOS Software Release 12.2(13)T. It allows users to better scale large and small IP security (IPsec) VPNs by combining Generic Routing Encapsulation (GRE) tunnels, IPsec encryption, and Next Hop Resolution Protocol (NHRP).
DMVPN hub support by QoS class is supported to provide
• Priority to time-sensitive applications by pre-classifying packets based on the original packet header
• On 7200 platforms, Low Latency Queuing (LLQ) before encryption when the encryption engine is congested
• Protection for critical control traffic before and after encryption
In a typical DMVPN integration with QoS support, access control lists are used to match the source and destination IP addresses to distinguish one remote site from another, the customers can use Qos-group as a match criteria in the QoS policy to distinguish one remote site from another. This is done by setting Qos-group in the ISAKMP-Profile, and this is used as a match criteria destined to remote sites. In the configuration below different Qos groups are used to match traffic destined to REMOTE-1 and REMOTE-2.