John,
You are thinking along the right lines, but there is more to it. Yes, you definitely want to prioritize for packets leaving your network in case you are filling up the outgoing pipe, even though you can't control the public internet. However, you can make sure that the qos is carried end to end - not obeyed by the public routers, but used by your end site. You can always reclassify the traffic when it comes in the other end, but the better solution is to use 'qos pre-classify' with the vpn tunnel. That means that the packets inside the esp packets will be assigned the qos tag. When the other end breaks down the esp packet, it will have the qos information available. Here is a good article:
Jim