cisco_qos_2008

8/12/2019 Cisco_QoS_2008

1/253

2007 Cisco Systems, Inc. All rights reserved. Cisco ConfidentialTECRST-2500)13823_05_2007_c1 1

Enterprise Qualityof Service

8/12/2019 Cisco_QoS_2008

2/253

2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential 2TECRST-2500)13823_05_2007_c1

What Is Quality of Service?

To the end user

Users perception that theirapplications are performing properly

Voice No drop calls, no static

Video High quality, smooth video

Data Rapid response time

To The Network Manager Need to maximize network bandwidthutilization while meeting performanceexpectations of the end user

Control Delay, Jitter, and Packet Loss

8/12/2019 Cisco_QoS_2008

3/253


Quality of Service

Optimize bandwidth

utilization for Video,Voice & Data apps.

Drives productivityby enhancing service-levels to mission-critical applications

Helps maintainnetwork availabilityin the event ofDoS/worm attacks

Why Enable QoS?

Network Availability

Security

8/12/2019 Cisco_QoS_2008

4/253


Quality of Service OperationsHow Does It Work and Essential Elements

Classification andMarking

Queuing andDropping

Post-QueuingOperations

Classification & Marking:The first element to a QoS policy is to classify/identify the traffic that is to be treated differently. Followingclassification, marking tools can set an attribute of a frame or packet to a specific value.

Policing:Determine whether packets are conforming to administratively-defined traffic rates and take action accordingly.Such action could include marking, remarking or dropping a packet.

Scheduling (including Queuing & Dropping):Scheduling tools determine how a frame/packet exits a device. Queuing algorithms are activated only when adevice is experiencing congestion and are deactivated when the congestion clears.

Link Specific Mechanisms (Shaping, Fragmentation, Compression, Tx Ring)Offers network administrators tools to optimize link utilization

8/12/2019 Cisco_QoS_2008

5/253


QoS DeploymentPrinciples

8/12/2019 Cisco_QoS_2008

6/253


How Is QoS Optimally Deployed?1. Strategically define the business objectives to

be achieved via QoS

2. Analyze the service-level requirements of thevarious traffic classes to be provisioned for

3. Design and test the QoS policies prior toproduction-network rollout

4. Roll-out the tested QoS designs tothe production-network in phases,during scheduled downtime

5. Monitor service levels to ensurethat the QoS objectives are being met

8/12/2019 Cisco_QoS_2008

7/253


General QoS Design PrinciplesClearly define the organizational objectives

Protect voice? Video? Data? DoS/worm mitigation?Assign as few applications as possible to be treatedas mission-critical

Seek executive endorsement of the QoS objectivesprior to design and deployment

Determine how many classes of traffic are required tomeet the organizational objectives

More classes = More granular service-guarantees

8/12/2019 Cisco_QoS_2008

8/253


How Many Classes of Service Do I Need?Example Strategy for Expanding the Number of Classes of Service over Time

4/5 Class Model

Scavenger

Critical Data

Call Signaling

Realtime

8 Class Model

Critical Data

Video

Call Signaling

Best Effort

Voice

Bulk Data

Network Control

Scavenger

11 Class Model

Network Management

Call Signaling

Streaming Video

Transactional Data

Interactive-Video

Voice

Best Effort

IP Routing

Mission-Critical Data

Scavenger

Bulk Data

Best Effort

Time

8/12/2019 Cisco_QoS_2008

9/253


QoS Technologies ReviewQoS Overview

Classification ToolsPolicing

Scheduling Tools

Shaping Tools

Link-Specific Tools

Signaling Tools (RSVP)AutoQoS Tools

8/12/2019 Cisco_QoS_2008

10/253


Classification ToolsEthernet 802.1Q Class of Service

802.1p user priority field alsocalled Class of Service (CoS)

Different types of traffic areassigned different CoS valuesCoS 6 and 7 are reserved fornetwork use

TAG4 Bytes

Three Bits Used for CoS(802.1p User Priority)

Data FCSPTSADASFDPream. Type

802.1Q/pHeader

PRI VLAN IDCFI

Ethernet Frame

1

2

3

4

5

6

7

0 Best Effort Data

Bulk Data

Critical Data

Call Signaling

Video

Voice

Routing

Reserved

CoS Application

8/12/2019 Cisco_QoS_2008

11/253


Classification ToolsIP Precedence and DiffServ Code Points

IPv4 : Three most significant bits of ToS byte are called IPPrecedence (IPP)other bits unused

DiffServ : Six most significant bits of ToS byte are calledDiffServ Code Point (DSCP)remaining two bits used forflow control

DSCP is backward-compatible with IP precedence

7 6 5 4 3 2 1 0

ID Offset TTL Proto FCS IP SA IP DA DataLenVersionLengthToSByte

DiffServ Code Point (DSCP) IP ECN

IPv4 Packet

IP Precedence UnusedStandard IPv4

DiffServ Extensions

8/12/2019 Cisco_QoS_2008

12/253

8/12/2019 Cisco_QoS_2008

13/253


Classification ToolsDSCP Per-Hop Behaviors

IETF RFCs have defined special keywords, called Per-HopBehaviors, for specific DSCP markings

EF: Expedited Forwarding (RFC3246)(DSCP 46)

CSx: Class Selector (RFC2474)Where x corresponds to the IP Precedence value (17)

(DSCP 8, 16, 24, 32, 40, 48, 56)

AFxy: Assured Forwarding (RFC2597)Where x corresponds to the IP Precedence value(only 14 are used for AF Classes)

And y corresponds to the Drop Preference value (either 1 or 2 or 3)With the higher values denoting higher likelihood of dropping

(DSCP 10/12/14, 18/20/22, 26/28/30, 34/36/38)

BE: Best Effort or Default Marking Value (RFC2474)

(DSCP 0)

8/12/2019 Cisco_QoS_2008

14/253


Classification ToolsNetwork-Based Application Recognition

ToS SourceIP Addr

DestIP Addr

SrcPort Sub-Port/Deep Inspection

DstPort

Protocol

Identifies over 90 applications and protocols TCPand UDP port numbers

Statically assigned

Dynamically assigned during connection establishment

Non-TCP and non-UDP IP protocols

Data packet inspection for matching values

TCP/UDP Packet Data AreaIP Packet

Stateful and dynamic inspection

8/12/2019 Cisco_QoS_2008

15/253


Policing ToolsRFC 2697 Single Rate Three Color Policer

Action Action

Overflow

B

8/12/2019 Cisco_QoS_2008

16/253


Policing ToolsRFC 2698 Two Rate Three Color Policer

ActionAction

B>Tp B>Tc

ExceedViolate

PBS CBS

PIR

Yes Yes

No No

Conform

Action

Packet of

Size B

CIR

8/12/2019 Cisco_QoS_2008

17/253


Scheduling ToolsQueuing Algorithms

Congestion can occur at any point in the network where thereare speed mismatches

Routers use Cisco IOS-based software queuing

Low-Latency Queuing (LLQ) used for highest-priority traffic (voice/video)Class-Based Weighted-Fair Queuing (CBWFQ) used for guaranteeingbandwidth to data applications

Cisco Catalyst switches use hardware queuing

Voice

Video

Data 33

2 2

1 1

8/12/2019 Cisco_QoS_2008

18/253


Time

BandwidthUtilization100%

Tail Drop

Three Traffic Flows

Start at Different Times

Another Traffic Flow

Starts at This Point

TCP Global Synchronization:

The Need for Congestion AvoidanceAll TCP Flows Synchronize in WavesSynchronization Wastes Available Bandwidth

8/12/2019 Cisco_QoS_2008

19/253


312302021201

TAIL DROP

3

3

3

WRED

01

0

1

0

3

Queue

Scheduling ToolsCongestion Avoidance Algorithms

Queueing algorithms manage the front of the queueWhich packets get transmitted first

Congestion avoidance algorithms manage the tail ofthe queue

Which packets get dropped first when queuing buffers fill

Weighted Random Early Detection (WRED)WRED can operate in a DiffServ-compliant mode

Drops packets according to their DSCP markings

WRED works best with TCP-based applications, like data

8/12/2019 Cisco_QoS_2008

20/253


Scheduling ToolsDSCP-Based WRED Operation

AverageQueueSize

100%

0

DropProbability

Begin

DroppingAF13

Drop AllAF11

Max QueueLength

(Tail Drop)

Drop AllAF12

Drop AllAF13

Begin

DroppingAF12

Begin

DroppingAF11

50%

AF = (RFC 2597) Assured Forwarding

8/12/2019 Cisco_QoS_2008

21/253


Congestion Avoidance

RFC3168: IP Explicit Congestion Notification

ECT Bit:ECN-Capable Transport CE Bit:Congestion Experienced

7 6 5 4 3 2 1 0

ID Offset TTL Proto FCS IP SA IP DA DataLenVersionLengthToSByte

DiffServ Code Point (DSCP) CE

IPv4 Packet

ECT

IP Header Type of Service (ToS) ByteExplicit Congestion Notification (ECN) Bits

8/12/2019 Cisco_QoS_2008

22/253


Traffic Shaping

Policers typically drop traffic

Shapers typically delay excess traffic, smoothing burstsand preventing unnecessary drops

Very common on Non-Broadcast Multiple-Access (NBMA)network topologies such as Frame-Relay and ATM

With Traffic Shaping

Without Traffic ShapingLine

RateShaped

Rate

Traffic Shaping Limits the Transmit Rate to a Value Lower Than Line Rate

8/12/2019 Cisco_QoS_2008

23/253


Link-Specific ToolsLink-Fragmentation and Interleaving

Serialization delay is the finite amount of time required toput frames on a wire

For links 768 kbps serialization delay is a major factor affectinglatency and jitter

For such slow links, large data packets need to be fragmentedand interleaved with smaller, more urgent voice packets

Voice

Voice DataDataDataData

DataSerializationCan Cause

Excessive Delay

With Fragmentation and Interleaving Serialization Delay Is Minimized

8/12/2019 Cisco_QoS_2008

24/253


Link-Specific ToolsIP RTP Header Compression

cRTP Reduces L3 VoIP BW by:

~ 20% for G.711

~ 60% for G.729

25 Bytes

RTP Header 12 Bytes

Voice

Payload

IP Header 20 Bytes

UDP Header 8 Bytes

8/12/2019 Cisco_QoS_2008

25/253


Handset

Multimedia Server

MultimediaStation

Handset

Reserve 16KBW on this Line

I Need 16KBW and

100 msecDelay

This App Needs16K BW and

100 msec Delay

Signaling ToolsResource Reservation Protocol (RSVP)

RSVP QoS servicesGuaranteed service

Mathematicallyprovable bounds onend-to-end datagramqueuing delay/bandwidth

Controlled service

Approximate QoS froman unloaded networkfor delay/bandwidth

RSVP provides thepolicy to WFQ and LLQ

8/12/2019 Cisco_QoS_2008

26/253


interface Multilink1

ip address 10.1.61.1 255.255.255.0

ip tcp header-compression iphc-format

load-interval 30

service-policy output QoS-Policy

ppp multilink

ppp multilink fragment-delay 10

ppp multilink interleave

interface Serial0bandwidth 256

Ip address 10.1.61.1255.255.255.0auto qos voip

LAN and WANRouters and switches

One single commandenables Cisco QoS for VoIPon a port/interface/PVC!

Cisco AutoQoS Phase 1Automatic

QoS for VoIP Traffic (AutoQoS-VoIP)Configures eachswitch or router

8/12/2019 Cisco_QoS_2008

27/253


Cisco AutoQoSAutomating the

Key Elements of QoS Deployment1. Application classification

Example: automatically discovering applicationsand providing appropriate QoS treatment

2. Policy generationExample: auto-generation of initialand ongoing QoS policies

3. ConfigurationExample: providing high level business knobs,and multi-device / domain automation for QoS

4. Monitoring and reportingExample: generating intelligent, automaticalerts and summary reports

5. ConsistencyExample: enabling automatic, seamlessinteroperability among all QoS features andparameters across a network topologyLAN, MAN, and WAN

8/12/2019 Cisco_QoS_2008

28/253


Cisco AutoQoS BenefitsRouter Platforms

User can meet the voice QoS requirements withoutextensive knowledge regarding:

Underlying technologies (ie: PPP, FR, ATM)

Service policies

Link efficiency mechanisms

AutoQoS lends itself to tuning of all generatedparameters and configurations

Cisco 800, 1700, 1800, 2600-XM, 2800, 3700,3800, 7200 and 7301 Series Routers

8/12/2019 Cisco_QoS_2008

29/253


QoS forConvergence

8/12/2019 Cisco_QoS_2008

30/253


Voice QoS RequirementsEnd-to-End Latency

Delay Target

Avoid the

Human Ethernet

Time (msec)

0 100 200 300 400

CB Zone

Satellite Quality

Fax Relay, BroadcastHigh Quality

500 600 700 800

ITUs G.114 Recommendation: 150msec One-Way Delay

Hello? Hello?

8/12/2019 Cisco_QoS_2008

31/253


Voice QoS RequirementsElements that Affect Latency and Jitter

Campus Branch Office

IP WAN

PSTN

End-to-End Delay (Must Be 150 ms)

2050 ms

Jitter Buffer

Fixed

(6.3 s/Km) +Network Delay

(Variable)

Propagationand Network

Variable

Serialization

Variable

Queuing

G.729A: 25 ms

CODEC

8/12/2019 Cisco_QoS_2008

32/253


Voice QoS RequirementsPacket Loss Limitations

Cisco DSP codecs can use predictor algorithmsto compensate for a single lost packet in a row

Two lost packets in a row will cause an audibleclip in the conversation

Voice1

Voice2

Voice3

Voice4

Voice1

Voice2

Voice3

Voice4

Voice

3

Voice

3

Voice

3

Voice

3Reconstructed Voice Sample

8/12/2019 Cisco_QoS_2008

33/253


Voice QoS RequirementsProvisioning for Voice

Latency 150 ms

Jitter 30 msLoss 1%

17106 kbps guaranteed

priority bandwidth per call150 bps (+ Layer 2 overhead)guaranteed bandwidth forVoice-Control traffic per call

CAC must be enabled

SmoothBenignDrop sensitive

Delay sensitiveUDP priority

VoiceOne-Way

Requirements

8/12/2019 Cisco_QoS_2008

34/253


P and B Frames128256 Bytes

I Frame

10241518Bytes

I Frame

10241518Bytes

15pps

30pps

450Kbps

32Kbps

Video QoS RequirementsVideo Conferencing Traffic Example (384kbps)

I frame is a full sample of the video

P and B frames use quantization via

motion vectors and prediction algorithms

8/12/2019 Cisco_QoS_2008

35/253


Video QoS RequirementsVideo Conferencing Traffic Packet Size Breakdown

65128 Bytes1%

129256 Bytes34%5131024 Bytes

20%

10251500 Bytes37%

257512 Bytes8%

8/12/2019 Cisco_QoS_2008

36/253


Video QoS RequirementsProvisioning for Interactive Video

Latency 150 ms

Jitter 30 msLoss 1%

Minimum priority bandwidth

guarantee required is:Video-stream + 1020%

e.g., a 384 kbps stream couldrequire up to 460 kbps ofpriority bandwidth

CAC must be enabled

VideoOne-Way

Requirements

BurstyDrop sensitiveDelay sensitiveUDP priority

8/12/2019 Cisco_QoS_2008

37/253


Data QoS RequirementsApplication Differences

Oracle SAP R/3

064Bytes

10241518Bytes

5121023Bytes

253511Bytes

128252Bytes

65127Bytes

10241518Bytes

5121023Bytes

253511

Bytes

128252 Bytes65127 Bytes

064 Bytes

8/12/2019 Cisco_QoS_2008

38/253


Data QoS RequirementsVersion Differences

Client VersionVA01# of

Bytes

SAP GUI Release 3.0 F 14,000

SAP GUI Release 4.6C, No Cache 57,000

SAP GUI Release 4.6C, with Cache 33,000

SAP GUI for HTML, Release 4.6C 490,000

SAP Sales Order Entry Transaction

0

100,000

200,000

300,000

400,000

500,000

SAP GUI,Release

3.0F

SAP GUI,Release

4.6C, withCache

SAP GUI,Release4.6C, noCache

SAP GUI(HTML),Release

4.6C

Same Transaction Takes Over 35 Times More Trafficfrom One Version of an Application to Another

8/12/2019 Cisco_QoS_2008

39/253


Data QoS RequirementsProvisioning for Data (Cont.)

Use four/five main traffic classes:Mission-critical apps business-critical client-server applications

Transactional/interactive apps foreground apps: client-server apps orinteractive applications

Bulk data apps background apps: FTP, e-mail, backups,content distribution

Best effort apps (default class)

Optional: Scavenger apps peer-to-peer apps, gaming traffic

Additional optional data classes include internetwork-control

(routing) and network-managementMost apps fall under best-effort, make sure that adequatebandwidth is provisioned for this default class

8/12/2019 Cisco_QoS_2008

40/253


Data QoS RequirementsProvisioning for Data

Different applications have differenttraffic characteristics

Different versions of the sameapplication can have differenttraffic characteristics

Classify data into four/fivedata classes model:Mission-critical apps

Transactional/interactive apps

Bulk data apps

Best effort apps

Optional: Scavenger apps

Data

Smooth/burstyBenign/greedyDrop insensitiveDelay insensitiveTCP retransmits

8/12/2019 Cisco_QoS_2008

41/253


Scavenger-ClassWhat Is the Scavenger Class?

The Scavenger class is an Internet 2 Draft Specificationfor a less than best effort service

There is an implied good faith commitment for thebest effort traffic class

It is generally assumed that at least some network resources

will be available for the default classScavenger class markings can be used to distinguishout-of-profile/abnormal traffic flows from in-profile/ normal flows

The Scavenger class marking is CS1, DSCP 8

Scavenger traffic is assigned a less-than-best effortqueuing treatment whenever congestion occurs

8/12/2019 Cisco_QoS_2008

42/253


At-a-GlanceSummaries

8/12/2019 Cisco_QoS_2008

43/253


8/12/2019 Cisco_QoS_2008

44/253


8/12/2019 Cisco_QoS_2008

45/253


8/12/2019 Cisco_QoS_2008

46/253


8/12/2019 Cisco_QoS_2008

47/253


8/12/2019 Cisco_QoS_2008

48/253


8/12/2019 Cisco_QoS_2008

49/253


8/12/2019 Cisco_QoS_2008

50/253


8/12/2019 Cisco_QoS_2008

51/253


8/12/2019 Cisco_QoS_2008

52/253

8/12/2019 Cisco_QoS_2008

53/253

2007 Cisco Systems, Inc. All rights reserved. Cisco ConfidentialTECRST-2500)13823_05_2007_c1 53

Campus QoS Design

TECRST-2500

Why Enable QoS?

8/12/2019 Cisco_QoS_2008

54/253


Why Enable QoS?

HA, Security, and QoS Are Interdependent Technologies

QoS:Enables UC and othercollaborative applicationsDrives productivityby enhancing servicelevels to mission-critical

applicationsCuts costs by bandwidthoptimization

Helps maintain networkavailability in the eventof DoS/worm attacks

Quality of Service

High Availability

Security

Enabling QoS in the Campus

8/12/2019 Cisco_QoS_2008

55/253


Enabling QoS in the Campus

Traffic Profiles and Requirements

Latency 150 msJitter 30 msLoss 1%

One-Way Requirements

SmoothBenignDrop sensitiveDelay sensitiveUDP priority

Voice

Bandwidth per CallDepends on Codec,Sampling-Rate,and Layer 2 Media

BurstyGreedyDrop sensitiveDelay sensitiveUDP priority

Video-Conf

Latency 150 msJitter 30 msLoss 1%

One-Way Requirements

IP/VC has the SameRequirements asVoIP, but HasRadically Different

Traffic Patterns

(BW Varies Greatly)

Smooth/burstyBenign/greedyDrop insensitiveDelay insensitiveTCP retransmits

Data

Data Classes:Mission-Critical AppsTransactional/Interactive AppsBulk Data AppsBest Effort Apps (Default)

Traffic patterns forData Vary AmongApplications

Enabling QoS

8/12/2019 Cisco_QoS_2008

56/253


G.729A: 25 ms

CODEC

Variable(Can Be Reduced

Using LLQ)

Queuing

Variable(Can Be Reduced

Using LFI)

Serialization

6.3 s/Km +

Network Delay(Variable)

Propagationand Network

2050 ms

Jitter Buffer

Enabling QoS

Elements That Affect End-to-End Delay

IP WAN

Campus Branch Office

CiscoCallManager Cluster

SRSTRouter

PSTN

End-to-End Delay (Should Be < 150 ms)

8/12/2019 Cisco_QoS_2008

57/253

Classification and Marking

8/12/2019 Cisco_QoS_2008

58/253


Classification and MarkingWhere Should It Be Done?

Classification and marking should be performed as close as technicallyfeasible to the sources so that prioritization may be implemented at congestionpoints throughout the network. DSCP should be used wherever possible

Classify and marktraffic at thephysical port.Queue on uplinksto Distribution

Subsequent pointsin the network cannow trust themarked values andqueue based onthese baselinevalues outlinedbelow

Core

Distribution

Access

Classification and Marking

8/12/2019 Cisco_QoS_2008

59/253


Classification and MarkingCisco Marking Recommendations

ApplicationL3 Classification

DSCPPHBIPP CoS

Transactional Data 18AF212 2

Call Signaling 24CS3*3 3

Streaming Video 32CS44 4

Video Conferencing 34AF414 4

Voice 46EF5 5

Network Management 16CS22 2

L2

Bulk Data 10AF111 1

Scavenger 8CS11 1

Best Effort 000 0

Routing 48CS66 6

Mission-Critical Data 26AF31*3 3

8/12/2019 Cisco_QoS_2008

60/253

Policing Design Principles

8/12/2019 Cisco_QoS_2008

61/253


Policing Design PrinciplesWhere and How Should Policing Be Done?

Policing applied to offending traffic classes to mark downrather than drop traffic to CS1 (Scavenger RFC 3662)Policing applied to offending traffic classes to mark downrather than drop traffic to CS1 (Scavenger RFC 3662)

Queuing will then queue trafficon uplink to Distribution/Core,where CS1 will occupyminimal bandwidth

Queuing will then queue trafficon uplink to Distribution/Core,where CS1 will occupyminimal bandwidth

Policing shall be applied as close to the traffic source as possible. In general,policing should be applied at the access layer of the network at the TrustBoundary during the initial classification and marking process

Scavenger-Class

8/12/2019 Cisco_QoS_2008

62/253


gWhat Is the Scavenger Class?

The Scavenger class is based on RFC 3662A Lower Effort Per-Domain Behavior (PDB) for

Differentiated ServicesThere is an implied good faith commitment for thebest effort traffic class

It is generally assumed that at least some network resources will

be available for the default class

Scavenger class markings can be used to distinguish out-of-profile/abnormal traffic flows from in-profile/normal flows

The Scavenger class marking is CS1 (DSCP 8)Scavenger traffic is assigned a less-than-best effortqueuing treatment whenever congestion occurs

Scavenger-Class QoS

8/12/2019 Cisco_QoS_2008

63/253


g QProtecting the Data Plane

All end systems generate traffic spikes

Sustained traffic loads beyond normal from each sourcedevice are considered suspect and marked as scavenger

First order anomaly detection no direct action taken

Scavenger Bandwidth

During abnormal worm trafficconditions traffic marked asScavenger is aggressively droppedsecond order detection

Priority queuing ensuring lowlatency and jitter for VoIPStations not generating abnormaltraffic volumes continue to receivenetwork service

During normal traffic conditionsnetwork is operating within designedcapacity

Aggregation Points

Network Entry Points

Queuing Design Principles

8/12/2019 Cisco_QoS_2008

64/253


Q g g pWhere Should It Be Done?

Queuing should be performed wherever there may be potential for congestion(even if a rare occurrence), ensuring consistency between Campus/WAN/VPNnetworks

RecommendedGuidelines:

1) 25% allocated toBest Effort (BE)Class

2) Priority Queue(PQ) givenmaximum of 33%

3) Scavenger shouldbe provided withminimum (5%)

bandwidth4) Congestion

Avoidanceenabled on selectTCP flows innon-PQ

Core

Distribution

Access

Campus Queuing Design

8/12/2019 Cisco_QoS_2008

65/253


p g gRealtime, Best Effort, and Scavenger Queuing Rules

Real-Time 33%

Critical Data

Best Effort 25%

Scavenger/Bulk 5%

A d

8/12/2019 Cisco_QoS_2008

66/253


Agenda

Introduction and Best Practices

Campus QoS Design ConsiderationsCisco Catalyst 2960/3560/3750 & 3560-E/3750-E

Cisco Catalyst 4500 and 4948 QoS Design(Sup II+ through Sup V-10GE)

Cisco Catalyst 6500 QoS Design

Campus QoS Considerations

8/12/2019 Cisco_QoS_2008

67/253


Establishing Trust Boundaries

1

2

3

Optimal Trust Boundary: Trusted Endpoint

Suboptimal Trust Boundary

Optimal Trust Boundary: Untrusted Endpoint

SiSi

Endpoints Access Distribution Core WAN Aggregators

Trust Boundary

12

3

SiSiSiSiSiSi SiSiSiSiSiSi

SiSiSiSiSiSi

8/12/2019 Cisco_QoS_2008

68/253

Campus QoS ConsiderationsC di i l T B d E i d O i

8/12/2019 Cisco_QoS_2008

69/253


Phone VLAN = 110

Conditional-Trust Boundary Extension and Operation

1 So I Will Trust Your CoSI See Youre an IP Phone,

Trust Boundary

PC VLAN = 10

Voice CoS 5 - Signaling CoS 3 2

All PC Traffic Is Reset to CoS 0 PC Sets CoS 5 for All Traffic3

CoS 5 = DSCP 46

CoS 3 = DSCP 24

CoS 0 = DSCP 0

4

Switch and Phone Exchange CDP; Trust Boundary Is Extended to IP Phone1Phone Sets CoS 5 for VoIP and CoS 3 for Call-Signaling Traffic2Phone Rewrites CoS from PC Port to 03Switch Trusts CoS from Phone and Maps CoS DSCP for Output Queuing4

Campus QoS ConsiderationsC di i l T B d f Ci T l P

8/12/2019 Cisco_QoS_2008

70/253


3TelePresence Primary Codec:

Voice + Video CoS 4 & DSCP CS4Call-Signaling CoS 3 & DSCP CS3

CoS-to-DSCP Map:CoS 5 DSCP EF (46)

CoS 4 DSCP CS4 (32)CoS 3 DSCP CS3 (24)

4

Conditional-Trust Boundary for Cisco TelePresence

Trust Boundary

Trust is Dynamically Extended to Cisco 7970G IP Phone

Successful Condition Met (i.e. CDP negotiation successful)

1

Cisco 7979G: Voice CoS 5 & DSCP 46Call-Signaling CoS 3 & DSCP CS3

2

Note: As 2-6 data ports are available for PC connections (as part of theTelePresence tables), it is recommended to disable the PC port in theback of the Cisco Unified 7970G IP Phone (from within CallManager)

Campus QoS Access Edge Trust Models

8/12/2019 Cisco_QoS_2008

71/253


Campus QoS Access Edge Trust Models

Trusted endpoint model

AutoQoSVoIP model

IP phone + PC + Scavenger (basic) model

Access-Edge Trust ModelsTrusted Endpoint Model

8/12/2019 Cisco_QoS_2008

72/253


Trusted Endpoint Model

DSCP from endpoint is accepted andadmitted into the network unaltered

Policing is optional

Transmit Packet withDSCP Unaltered

OptionalPolicing

TrustDSCPStart

Access-Edge Trust ModelsAutoQoS VoIP Model

8/12/2019 Cisco_QoS_2008

73/253


AutoQoSVoIP Model

IP Phone +CoS 3

Yes

Appliance PortANY Remark to CoS 0 and Transmit

No

IP Phone +CoS 5 Yes Trust CoS and TransmitStart

No

Trust CoS and Transmit

CDP detectCisco IP Phone?

Yes

No

Port is untrusted. Remark alltraffic arriving on port to CoS 0

Access-Edge Trust ModelsIP Phone + PC + Scavenger (Basic) Model

8/12/2019 Cisco_QoS_2008

74/253


IP Phone + PC + Scavenger (Basic) Model

VVLAN +DSCP CS3 32 kbps

YesYes

No

DVLANANY 5 Mbps

YesYes

No

VVLANANY 32 kbps

YesYes

No

Remark to DSCP 0and Transmit

Remark to DSCP 0

and Transmit

No

No

VVLAN +DSCP EF 128 kbps

YesYes

No

Trust and Transmit

Drop

Remark to DSCP CS1and Transmit




Start

No

Campus QoS ConsiderationsTypical Campus Oversubscription Ratios

8/12/2019 Cisco_QoS_2008

75/253


Typical Campus Oversubscription Ratios

Campus networks are always designed with oversubscription in mind to takeadvantage of the bursty nature of traffic and the assumption that not all usersare requiring bandwidth simultaneously

Typically 20:1Ratio

Typically 4:1Ratio Core

Distribution

Access

8/12/2019 Cisco_QoS_2008

76/253

Campus QoS ConsiderationsInternal Mapping Tables Cont Default Behavior

8/12/2019 Cisco_QoS_2008

77/253


Internal Mapping Tables Cont. Default Behavior

internaldscp = 0internaldscp = 0

802.1p = 1802.1p = 1Un-

trusted

IPP=5IPP=5802.1p = 0802.1p = 0

DSCP=44DSCP=44IPP=0IPP=0 DSCP=0DSCP=0

internaldscp = 8internaldscp = 8

TrustCoS

802.1p = 1802.1p = 1802.1p = 1802.1p = 1IPP=5IPP=5 DSCP=44DSCP=44 IPP=1IPP=1 DSCP=8DSCP=8

internaldscp = 40internal

dscp = 40TrustIPP

802.1p = 5802.1p = 5802.1p = 1802.1p = 1IPP=5IPP=5 DSCP=44DSCP=44 IPP=5IPP=5 DSCP=40DSCP=40

internaldscp = 44internal

dscp = 44TrustDSCP

802.1p = 1802.1p = 1IPP=5IPP=5 DSCP=44DSCP=44

802.1p = 5802.1p = 5IPP=5IPP=5 DSCP=44DSCP=44

8/12/2019 Cisco_QoS_2008

78/253

Campus QoS Design ConsiderationsAllocating Buffer Capacity

8/12/2019 Cisco_QoS_2008

79/253


g p y

Each port has a finite amount of memory that is specifically reserved for buffering traffic duringtimes of contention. Although the total amount of buffer capacity for egress traffic may be fixed fora given port, how that memory is distributed amongst the queues is configurable.

***Allocating more memory to a given queue can increase packet latency, whichcould impact application performance.

Real Time Traffic

Queue 2

Queue 1

Queue 3

SP Queue

Control Traffic

Critical Data

Low Priority/ BE

B/W SP Queue

B/W Queue 3

B/W Queue 2

B/W Queue 1

Small buffer allocation forcritical data (queue 2), withheavier bandwidth weighting

Large buffer allocation for BEtraffic (queue 1), with minimalbandwidth weighting

Mixed TCP and UDPapplications with no reallatency requirements.

Transactional TCP-based applications withspecific strict latencyrequirements.

8/12/2019 Cisco_QoS_2008

80/253

8/12/2019 Cisco_QoS_2008

81/253

8/12/2019 Cisco_QoS_2008

82/253

Catalyst 2960/3560/3750 + 3560-E and 3750-EQoS Model

8/12/2019 Cisco_QoS_2008

83/253


Classification Policing Marking

Egress Queue/Schedule

CongestionControl

QoS Actionsat Ingress

QoS Actionsat Egress

Inspect incoming

packets

Based on ACLs orconfiguration,determineClassificationLabel

Ensure

conformanceto a specified rate.

On an aggregateor Individual flowbasisUp to 256 policersper Port ASIC.

Support for rateand burst

Act on Policer

decision.

Reclass or dropout-of-profile.

Four queues/port SRR servicing

WTD for congestioncontrol (3 thresholdsPer queue)

SRR supports shared

or Shaped modes

QoS Label isgenerated

Ingress Queue/Schedule

CongestionControl

2 queues per Port

SRR Servicing

WTD for congestioncontrol. (3 thresholdsPer queue)

SRR supports sharedmode only

Catalyst 2960/3560/3750 + 3560-E and 3750-EPlatform-Specific QoS Design Considerations

8/12/2019 Cisco_QoS_2008

84/253


QoS disabled by defaultFull DSCP-range is supported

Classification can be done by trust states, standard and advancedIP ACLs, or MAC ACLsSupports classification, marking, and policing by port or bySwitched Virtual Interface (SVI) via hierarchical class maps onCisco Catalyst 2970, 3650, and 3750 (not yet on CiscoCatalyst 2960)Minimum policing granularity is 8 kbpsSupports 4Q3T queuing or 1P3Q3T queuing (Egress)

Q1 can be configured as a priority queue

Queues can operate in shaped or sharing modes

Each interface can be assigned to one of two queue-sets

Congestion avoidance algorithm is Weighted Tail Drop (WTD)

Catalyst 3550, 2950G, 2950T, 2950 LRE are End-of-Life.

Catalyst 2960/3560/3750 + 3650-E and 3750-EShaping vs. Sharing Queue Management

8/12/2019 Cisco_QoS_2008

85/253


ShapingThrottles the outbound traffic to achieve a predefined

average rate. A shape value of 10 means the Queue will shape traffic to 1/10th of the interface speed.

Does not exceed the shaped value

Takes precedence over sharing

SharingGet portion of output bytes, i.e. 25 shareequates to 25% of the link bandwidth

Can expand into other shared or shaped queues

Catalyst 2960/3560/3750 + 3560-E and 3750-EAccess-Layer QoS Design

8/12/2019 Cisco_QoS_2008

86/253


Access-Edges

Uplinks to

Distribution Layer

Enable QoSGlobally

IP Phone + PC +Scavenger Model

AutoQoSVoIP Model

Trusted-EndpointModel

1P3Q3TQueuing + WTD

1P3Q3TQueuing + WTD

Global

Commands1P3Q3T

Queuing +WTD

Trust-DSCP

8/12/2019 Cisco_QoS_2008

87/253

Catalyst 2960/3560/3750 + 3650-E and 3750-EAutoQoS VoIP Model Example

8/12/2019 Cisco_QoS_2008

88/253


mls qos map cos-dscp 0 8 16 26 32 46 48 56mls qos srr-queue output cos-map queue 1 threshold 3 5mls qos srr-queue output cos-map queue 2 threshold 3 3 6 7mls qos srr-queue output cos-map queue 3 threshold 3 2 4mls qos srr-queue output cos-map queue 4 threshold 2 1

mls qos srr-queue output cos-map queue 4 threshold 3 0mls qos srr-queue output dscp-map queue 1 threshold 3 40 41 42 43 44 45 46 47mls qos srr-queue output dscp-map queue 2 threshold 3 24 25 26 27 28 29 30 31mls qos srr-queue output dscp-map queue 2 threshold 3 48 49 50 51 52 53 54 55mls qos srr-queue output dscp-map queue 2 threshold 3 56 57 58 59 60 61 62 63mls qos srr-queue output dscp-map queue 3 threshold 3 16 17 18 19 20 21 22 23mls qos srr-queue output dscp-map queue 3 threshold 3 32 33 34 35 36 37 38 39mls qos srr-queue output dscp-map queue 4 threshold 1 8mls qos srr-queue output dscp-map queue 4 threshold 2 9 10 11 12 13 14 15mls qos srr-queue output dscp-map queue 4 threshold 3 0 1 2 3 4 5 6 7

mls qos queue-set output 1 threshold 1 138 138 92 138mls qos queue-set output 1 threshold 2 138 138 92 400mls qos queue-set output 1 threshold 3 36 77 100 318mls qos queue-set output 1 threshold 4 20 50 67 400mls qos queue-set output 2 threshold 1 149 149 100 149mls qos queue-set output 2 threshold 2 118 118 100 235mls qos queue-set output 2 threshold 3 41 68 100 272mls qos queue-set output 2 threshold 4 42 72 100 242mls qos queue-set output 1 buffers 10 10 26 54mls qos queue-set output 2 buffers 16 6 17 61

mls qos!!interface GigabitEthernet0/1

srr-queue bandwidth share 10 10 60 20srr-queue bandwidth shape 10 0 0 0queue-set 2mls qos trust device cisco-phonemls qos trust cosauto qos voip cisco-phone

CAT2970(config-if)#auto qos voip cisco-phone

Options:auto qos voip cisco-phone

auto qos voip cisco-softphone

auto qos voip trust

Note: AutoQoS-VoIP on thisfamily of switches does not

automatically provisionpriority-queue out

Catalyst 2960/3560/3750 + 3650-E and 3750-EIP Phone + PC + Scavenger Model Example: Part One

8/12/2019 Cisco_QoS_2008

89/253


CAT3750(config)# mls qos map cos-dscp 0 8 16 24 32 46 48 56! Modifies CoS-to-DSCP mapping to map CoS 5 to DSCP EF

CAT3750(config)# mls qos map policed-dscp 0 24 to 8

! Excess VVLAN & DVLAN traffic will be remarked to Scavenger (CS1)

CAT3750(config)#CAT3750(config)#CAT3750(config)# class-map match-all VVLAN-VOICECAT3750(config-cmap)# match access-group name VVLAN-VOICE

CAT3750(config-cmap)#CAT3750(config-cmap)# class-map match-all VVLAN-CALL-SIGNALINGCAT3750(config-cmap)# match access-group name VVLAN-CALL-SIGNALINGCAT3750(config-cmap)#CAT3750(config-cmap)# class-map match-all VVLAN-ANYCAT3750(config-cmap)# match access-group name VVLAN-ANYCAT3750(config-cmap)#CAT3750(config-cmap)#

Catalyst 2960/3560/3750 + 3650-E and 3750-EIP Phone + PC + Scavenger Model Example: Part Two

8/12/2019 Cisco_QoS_2008

90/253


CAT3750(config-cmap)# policy-map IPPHONE+PC-BASICCAT3750(config-pmap)# class VVLAN-VOICECAT3750(config-pmap-c)# set ip dscp 46 ! DSCP EF (Voice)CAT3750(config-pmap-c)# police 128000 8000 exceed-action drop

! Only one voice call is permitted per switchport VVLANCAT3750(config-pmap-c)# class VVLAN-CALL-SIGNALINGCAT3750(config-pmap-c)# set ip dscp 24 ! DSCP CS3 (Call-Signaling)CAT3750(config-pmap-c)# police 32000 8000 exceed-action policed-dscp-transmit

! Out-of-profile Call-Signaling is marked down to Scavenger (CS1)CAT3750(config-pmap-c)# class VVLAN-ANYCAT3750(config-pmap-c)# set ip dscp 0CAT3750(config-pmap-c)# police 32000 8000 exceed-action policed-dscp-transmit

! Unauthorized VVLAN traffic is marked down to Scavenger (CS1)CAT3750(config-pmap-c)# class class-defaultCAT3750(config-pmap-c)# set ip dscp 0CAT3750(config-pmap-c)# police 5000000 156250 exceed-action policed-dscp-transmit

! Out-of-profile data traffic is marked down to Scavenger (CS1)CAT3750(config-pmap-c)# exitCAT3750(config-pmap)#exitCAT3750(config)#

Catalyst 2960/3560/3750 + 3650-E and 3750-EIP Phone + PC + Scavenger Model Example: Part Three

8/12/2019 Cisco_QoS_2008

91/253


CAT3750(config)#interface GigabitEthernet0/1CAT3750(config-if)# switchport access vlan 10 ! DVLANCAT3750(config-if)# switchport voice vlan 110 ! VVLANCAT3750(config-if)# service-policy input IPPHONE+PC-BASICCAT3750(config-if)#exitCAT3750(config)#CAT3750(config)#CAT3750(config)# ip access-list extended VVLAN-VOICECAT3750(config-ext-nacl)# permit udp 10.1.110.0 0.0.0.255 any

range 16384 32767! Voice is matched by VVLAN subnet and VoIP UDP port-range

CAT3750(config-ext-nacl)#exitCAT3750(config)#CAT3750(config)# ip access-list extended VVLAN-CALL-SIGNALINGCAT3750(config-ext-nacl)# permit tcp 10.1.110.0 0.0.0.255 any

range 2000 2002! Call-Signaling is matched by VVLAN subnet and TCP port-range

CAT3750(config-ext-nacl)#exit

CAT3750(config)#CAT3750(config)# ip access-list extended VVLAN-ANYCAT3750(config-ext-nacl)# permit ip 10.1.110.0 0.0.0.255 any

! Matches all other traffic sourced from the VVLAN subnetCAT3750(config-ext-nacl)#endCAT3750#

Catalyst 2960/3560/3750 + 3650-E and 3750-EQueuing Design: 1P3Q3T

8/12/2019 Cisco_QoS_2008

92/253


Q1Priority Queue

1P3Q3T

Queue 4 (5%)CoS 1

Network Management

Call Signaling

Streaming Video

Transactional Data

Interactive Video

Voice

Application

Bulk Data

AF21

CS3

CS4

AF41

EF

CS2

AF11

Scavenger CS1

Best Effort 0

Internetwork Control CS6

Mission-Critical Data AF31

DSCP

Network Control

CoS 2

CoS 3

CoS 4

CoS 4

CoS 5

CoS 2

CoS 1

CoS 1

0

CoS 6

CoS 3

CoS

Queue 2(70%)

CoS 7

CoS 5

CoS 2

CoS 4

Queue 3(25%)CoS 0

Q2T3

Q2T2

Q4T2Q4T1

Q2T1

CoS 3

CoS 6

CoS 7

Catalyst 2960/3560/3750 + 3650-E and 3750-EQueuing Design: 1P3Q3TPart One

8/12/2019 Cisco_QoS_2008

93/253


CAT3750(config)# mls qos srr-queue output cos-map queue 1 threshold 3 5! Maps CoS 5 to Queue 1 Threshold 3 (Voice gets all of Queue 1)

CAT3750(config)# mls qos srr-queue output cos-map queue 2 threshold 1 2 4! Maps CoS 2 and CoS 4 to Queue 2 Threshold 1

CAT3750(config)# mls qos srr-queue output cos-map queue 2 threshold 2 3! Maps CoS 3 to Queue 2 Threshold 2

CAT3750(config)# mls qos srr-queue output cos-map queue 2 threshold 3 6 7! Maps CoS 6 and CoS 7 to Queue 2 Threshold 3

CAT3750(config)# mls qos srr-queue output cos-map queue 3 threshold 3 0! Maps CoS 0 to Queue 3 Threshold 3 (Best Efforts gets all of Q3)

CAT3750(config)# mls qos srr-queue output cos-map queue 4 threshold 3 1! Maps CoS1 to Queue 4 Threshold 3 (Scavenger/Bulk gets all of Q4)

CAT3750(config)#

Catalyst 2960/3560/3750 + 3650-E and 3750-EQueuing Design: 1P3Q3TPart Two

8/12/2019 Cisco_QoS_2008

94/253


CAT3750(config)# mls qos srr-queue output dscp-map queue 1 threshold 3 46! Maps DSCP EF (Voice) to Queue 1 Threshold 3

CAT3750(config)# mls qos srr-queue output dscp-map queue 2 threshold 1 16! Maps DSCP CS2 (Network Management) to Queue 2 Threshold 1

CAT3750(config)# mls qos srr-queue output dscp-map queue 2 threshold 1 18 20 22! Maps DSCP AF21, AF22, AF23 (Transactional Data) to Queue 2 Threshold 1

CAT3750(config)# mls qos srr-queue output dscp-map queue 2 threshold 1 26! Maps DSCP AF31 (Mission-Critical Data) to Queue 2 Threshold 1

CAT3750(config)# mls qos srr-queue output dscp-map queue 2 threshold 1 32! Maps DSCP CS4 (Streaming Video) to Queue 2 Threshold 1

CAT3750(config)# mls qos srr-queue output dscp-map queue 2 threshold 1 34 36 38! Maps DSCP AF41, AF42, AF43 (Interactive-Video) to Queue 2 Threshold 1

CAT3750(config)# mls qos srr-queue output dscp-map queue 2 threshold 2 24! Maps DSCP CS3 (Call-Signaling) to Queue 2 Threshold 2

CAT3750(config)# mls qos srr-queue output dscp-map queue 2 threshold 3 48 56! Maps DSCP CS6 and CS7 (Network/Internetwork) to Queue 2 Threshold 3

CAT3750(config)# mls qos srr-queue output dscp-map queue 3 threshold 3 0! Maps DSCP 0 (Best Effort) to Queue 3 Threshold 3

CAT3750(config)# mls qos srr-queue output dscp-map queue 4 threshold 1 8! Maps DSCP CS1 (Scavenger) to Queue 4 Threshold 1

CAT3750(config)# mls qos srr-queue output dscp-map queue 4 threshold 3 10 12 14! Maps DSCP AF11, AF12, AF13 (Bulk Data) to Queue 4 Threshold 3

CAT3750(config)#

Catalyst 2960/3560/3750 + 3650-E and 3750-EQueuing Design: 1P3Q3TPart Three

8/12/2019 Cisco_QoS_2008

95/253


CAT3750(config)# mls qos queue-set output 1 threshold 2 70 80 100 100! Sets Q2 Threshold 1 to 70% and Q2 Threshold 2 to 80%

CAT3750(config)# mls qos queue-set output 1 threshold 4 40 100 100 100! Sets Q4 Threshold 1 to 40% and Q4 Threshold 2 to 100%

CAT3750(config)#

CAT3750(config)# interface range GigabitEthernet0/1 - 28CAT3750(config-if-range)# queue-set 1

! Assigns interface to Queue-Set 1 (default)CAT3750(config-if-range)# srr-queue bandwidth share 1 70 25 5

! Q2 gets 70% of remaining BW; Q3 gets 25% and Q4 gets 5%CAT3750(config-if-range)# priority-queue out

! Q1 is enabled as a PQCAT3750(config-if-range)#endCAT3750#

Agenda

8/12/2019 Cisco_QoS_2008

96/253



Campus QoS Design Considerations

Cisco Catalyst 2960/3560/3750 & 3560-E/3750-E

Cisco Catalyst 4500 and 4948 QoS Design

(Sup II+ through Sup V-10GE)


QoS on the Catalyst 4500

8/12/2019 Cisco_QoS_2008

97/253


Catalyst 4500 implements asophisticated suite of QoS features

These QoS features are implemented with three major components

TCAMs (Policers)

Netflow Feature (UBRL on SupV-10GE)

Dynamic Buffer Limiting (DBL)

ClassifyRX

Queue 1

Queue 2Queue 3

Queue 4

Ingress/EgressPolice

ShapingSharingScheduling

TXNFL2(EnhancedQoS)

DynamicBufferLimiting

QoS Actions atSupervisor Forwarding ASIC

QoS Actionsat Scheduling ASIC

EntersFabric

LeavesFabric

FWDASIC

SchedASIC

NFL TCAM

TCAM

DBL

Cisco Catalyst 4500 (Sup II+ ThroughSup V) and 4948QoS Design Considerations

8/12/2019 Cisco_QoS_2008

98/253


QoS disabled by default

Classification can be done by trust states, standard andadvanced IP ACLs, or MAC ACLs

No mls prefix in command syntax

Policing rates can use k, m, or g for kbps, mbps, or gbps

Supports per-port/per-VLAN policing

SupV-10GE supports User-Based Rate Limiting (UBRL)

Minimum policing granularity is 8 kbps

Supports 4Q1T queuing or 1P3Q1T queuing

Q3 can be configured as a priority queueDSCP values can be mapped to queues

Supports bandwidth allocation and shaping (per queue) on certain linecards

Congestion avoidance algorithm is Dynamic Buffer Limiting (DBL)

QoS Design Considerations

Cisco Catalyst 4500 QoS DesignAccess-Layer Cisco Catalyst 4500 QoS Design Options

8/12/2019 Cisco_QoS_2008

99/253


Access-EdgesUplinks to

Distribution Layer

Trust-DSCP

1P3Q1TQueuing +

DBL

Enable QoSGlobally

IP Phone + PC +Scavenger (Basic) Model

AutoQoSVoIP Model


1P3Q1TQueuing + DBL

1P3Q1TQueuing + DBL

GlobalCommands

Cisco Catalyst 4500 QoS DesignDistribution and/or Core-Layer Cisco Catalyst 4500 QoS Design

8/12/2019 Cisco_QoS_2008

100/253


Uplinks from Access-Layer Only

Interswitch-Links

1P3Q1TQueuing + DBL

EnableQoS

Globally

Optional (SupV-10GE Only):User-Based Rate-Limiting (UBRL)

Trust-DSCP

1P3Q1TQueuing + DBL

EnableQoS

Globally

Trust-DSCP

Interswitch-Links

Distribution Layer

Core Layer

Cisco Catalyst 4500 QoS DesignEnabling QoS Globally

8/12/2019 Cisco_QoS_2008

101/253


CAT4500# show qosQoS is disabled globally ! By default QoS is disabled IP header DSCP rewrite is enabled

CAT4500#conf termEnter configuration commands, one per line. End with CNTL/Z.CAT4500(config)# qos ! Enables QoS globally for the Cat4500CAT4500(config)#endCAT4500#

CAT4500# show qosQoS is enabled globally ! Verifies that QoS is enabled globallyIP header DSCP rewrite is enabledCAT4500#

8/12/2019 Cisco_QoS_2008

102/253

Cisco Catalyst 4500Access Edge Trust ModelAutoQoS

8/12/2019 Cisco_QoS_2008

103/253


Options:

auto qos voip cisco-phoneauto qos voip trust

!qosqos dbl

qos map cos 3 to 26qos map cos 5 to 46qos map dscp 24 25 26 27 28 29 30 31 to tx-queue 4qos map dscp 32 33 34 35 36 37 38 39 to tx-queue 4!

policy-map autoqos-voip-policyclass class-default

dbl!Interface GigabitEthernet0/1

qos trust device cisco-phoneqos trust costx-queue 3 priority high

shape percent 33 bandwidth percent 33service-policy output autoqos-voip-policy

!


8/12/2019 Cisco_QoS_2008

104/253

Cisco Catalyst 4500 QoS DesignIP Phone + PC + Scavenger (Basic) Model Example: Part Two

CAT4500-SUP4(config-cmap)# policy-map IPPHONE+PC-BASIC-DVLAN

8/12/2019 Cisco_QoS_2008

105/253


C 500 SU (co g c ap) p y pCAT4500-SUP4(config-pmap-c)# class class-defaultCAT4500-SUP4(config-pmap-c)# set ip dscp 0CAT4500-SUP4(config-pmap-c)# police 5 mbps 156250 byte exceed-action

policed-dscp-transmit! Out-of-profile data traffic is marked down to Scavenger (CS1)

CAT4500-SUP4(config-pmap-c)# exitCAT4500-SUP4(config-pmap)#exitCAT4500-SUP4(config)#

CAT4500-SUP4(config)#interface FastEthernet2/1CAT4500-SUP4(config-if)# switchport voice vlan 110 ! VVLAN

CAT4500-SUP4(config-if)# switchport access vlan 10 ! DVLAN

CAT4500-SUP4(config-if)# vlan-range 110CAT4500-SUP4(config-if-vlan-range)# service-policy input IPPHONE+PC-BASIC-VVLAN

! Applies VVLAN policers to VVLAN (110) via Per-Port/Per-VLAN policing

CAT4500-SUP4(config-if)# vlan-range 10CAT4500-SUP4(config-if-vlan-range)# service-policy input IPPHONE+PC-BASIC-DVLAN! Applies DVLAN policer to DVLAN (10) via Per-Port/Per-VLAN policing

CAT4500-SUP4(config-if)#endCAT4500-SUP4#

Cisco Catalyst 4500 QoS DesignQueuing Design (1P3Q1T + DBL)

8/12/2019 Cisco_QoS_2008

106/253


Q3 (30%)Priority Queue

1P3Q1T

Queue 1 (5%)

Queue 4 (40%)

Queue 2(25%)0

CS3/AF31/AF32/AF33

CS2/AF21/AF22/AF23

CS4/AF41/AF42/AF43

CS6/CS7

CS1/AF11

EF

Network Management

Call Signaling

Streaming Video

Transactional Data

Interactive Video

Voice

Application

Bulk Data

AF21

CS3

CS4

AF41

EF

CS2

AF11

Scavenger CS1

Best Effort 0



DSCP

Network Control (CS7)

Cisco Catalyst 4500 QoS DesignQueuing Design (1P3Q1T + DBL)

CAT4500-SUP4(config)# qos dbl! Globally enables DBL

8/12/2019 Cisco_QoS_2008

107/253


yCAT4500-SUP4(config)# qos dbl exceed-action ecn

! Optional: Enables DBL to mark RFC 3168 ECN bits in the IP ToS ByteCAT4500-SUP4(config)#CAT4500-SUP4(config)# qos map dscp 0 to tx-queue 2

! Maps DSCP 0 (Best Effort) to Q2CAT4500-SUP4(config)# qos map dscp 8 10 12 14 to tx-queue 1

! Maps DSCP CS1 (Scavenger) and AF11/AF12/AF13 (Bulk) to Q1CAT4500-SUP4(config)# qos map dscp 16 18 20 22 to tx-queue 4

! Maps DSCP CS2 (Net-Mgmt) and AF21/AF22/AF23 (Transactional) to Q4CAT4500-SUP4(config)# qos map dscp 24 26 28 30 to tx-queue 4

! Maps DSCP CS3 (Call-Signaling) and AF31/AF32/AF33 (MC Data) to Q4

CAT4500-SUP4(config)# qos map dscp 32 34 36 38 to tx-queue 4! Maps DSCP CS4 (Str-Video) and AF41/AF42/AF43 (Int-Video) to Q4CAT4500-SUP4(config)# qos map dscp 46 to tx-queue 3

! Maps DSCP EF (VoIP) to Q3 (PQ)CAT4500-SUP4(config)# qos map dscp 48 56 to tx-queue 4

! Maps DSCP CS6 (Internetwork) and CS7 (Network) Control to Q4CAT4500-SUP4(config)#

CAT4500-SUP4(config)# policy-map DBLCAT4500-SUP4(config-pmap)# class Internetwork ControlCAT4500-SUP4(config-pmap)# class VoiceCAT4500-SUP4(config-pmap)# class class-defaultCAT4500-SUP4(config-pmap-c)# dbl ! Enables DBL for targeted traffic flowsCAT4500-SUP4(config-pmap-c)# endCAT4500-SUP4#

Cisco Catalyst 4500 QoS DesignQueuing Design (1P3Q1T + DBL): Part Two (FE + GE)

CAT4500 SUP4(config)#interface range FastEthernet2/1 48

8/12/2019 Cisco_QoS_2008

108/253


CAT4500-SUP4(config)#interface range FastEthernet2/1 - 48CAT4500-SUP4(config-if-range)# service-policy output DBLCAT4500-SUP4(config-if-range)# tx-queue 3CAT4500-SUP4(config-if-tx-queue)# priority high ! Enables Q3 as PQCAT4500-SUP4(config-if-tx-queue)# shape percent 30 ! Shapes PQ to 30%

CAT4500-SUP4(config-if-tx-queue)# exitCAT4500-SUP4(config-if-range)#exitCAT4500-SUP4(config)#

CAT4500-SUP4(config)#interface range GigabitEthernet1/1 - 2CAT4500-SUP4(config-if-range)# service-policy output DBL

CAT4500-SUP4(config-if-range)# tx-queue 1CAT4500-SUP4(config-if-tx-queue)# bandwidth percent 5 ! Q1 gets 5%CAT4500-SUP4(config-if-tx-queue)# tx-queue 2CAT4500-SUP4(config-if-tx-queue)# bandwidth percent 25 ! Q2 gets 25%CAT4500-SUP4(config-if-tx-queue)# tx-queue 3CAT4500-SUP4(config-if-tx-queue)# priority high ! Enables Q3 as PQCAT4500-SUP4(config-if-tx-queue)# bandwidth percent 30 ! PQ gets 30%

CAT4500-SUP4(config-if-tx-queue)#shape percent 30 ! Shapes PQ to 30%

CAT4500-SUP4(config-if-tx-queue)# tx-queue 4CAT4500-SUP4(config-if-tx-queue)# bandwidth percent 40 ! Q4 gets 40%CAT4500-SUP4(config-if-tx-queue)#endCAT4500-SUP4#

8/12/2019 Cisco_QoS_2008

109/253

Agenda

d d

8/12/2019 Cisco_QoS_2008

110/253



Campus QoS Design Considerations

Cisco Catalyst 2960/3560/3750 & 3560-E/3750-E

Cisco Catalyst 4500 and 4948 QoS Design

(Sup II+ through Sup V-10GE)


Catalyst 6500 QoSQoS Flow Through the 6500

Scheduling: Queue and Police via ACLs Police Scheduling: De queue uses

8/12/2019 Cisco_QoS_2008

111/253


QueueQueue

RXRX

ARB ARB

Priority QPriority Q

INGRESSClassify

&Police

INGRESSClassify

&Police

EGRESSClassify

&Police

EGRESSClassify

&Police RewriteRewrite

QueueQueue

QueueQueue

QueueQueue

Priority QPriority Q

WRRWRR

ARB ARB

TXTX

Incomingencap can

be ISL,802.1Q or

None

gThreshold - select basedon received CoS through

configurable MAP I/F -CoS can be overwritten if

port untrusted

Police via ACLs - Policeactions include Forward,

Mark and Drop.Based on Burst (TokenBucket) and Byte Rate

Rewrite

TOS fieldin IPHeader

and802.1p/IS

L CoSfield

Each queue

hasconfigurablethresholds -some have

WRED(except PQ)

Outgoingencap can beISL, 802.1Q

or None

gQueue andThreshold

selected basedon CoS through

a Map

De-queue usesWRR or SRRbetween theround robin

queues

DSCP based classificationbased on trusted port and

layer 2 info with ACL, layer 3info with ACL and layer 4

info with ACL

8/12/2019 Cisco_QoS_2008

112/253

Cisco Catalyst 6500 QoS DesignAccess-Layer Cisco Catalyst 6500 QoS Design Options

8/12/2019 Cisco_QoS_2008

113/253


Access-Edges

Uplinks to

Distribution Layer

IP Phone + PC +Scavenger (Basic) Model

AutoQoSVoIP

Model


Enable QoSGlobally

Trust-DSCP

Globally-DefinedLinecard-Dependent

Queuing + Dropping

Global Commands

Cisco Catalyst 6500 QoS DesignDistribution and/or Core-Layer Cisco Catalyst 6500 QoS Design

Distribution Layer

8/12/2019 Cisco_QoS_2008

114/253


Uplinks from Access-Layer Only

Interswitch-Links

Interface-GroupLinecard-DependentQueuing + Dropping

EnableQoS

Globally

Optional (PFC3 Only):Per-User Microflow

Policing

Trust-DSCP

Interface-GroupLinecard-DependentQueuing + Dropping

EnableQoS

Globally

Trust-DSCP

Interswitch-Links

Distribution Layer

Core Layer

Cisco Catalyst 6500 QoS DesignGlobally Enabling QoS in Cisco IOS

8/12/2019 Cisco_QoS_2008

115/253

2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential 115TECRST-2500)

13823_05_2007_c1

Cisco IOS

CAT6500-IOS(config)# mls qosCAT6500-IOS(config)#end

CAT6500-IOS# show mls qosQoS is enabled globallyMicroflow policing is enabled globallyVlan or Portchannel(Multi-Earl) policies supported: Yes----- Module [2] -----QoS global counters:

Total packets: 65IP shortcut packets: 0Packets dropped by policing: 0IP packets with TOS changed by policing: 0IP packets with COS changed by policing: 0Non-IP packets with COS changed by policing: 0

CAT6500-IOS#

CatOS

Cisco Catalyst 6500 QoS DesignGlobally Enabling QoS in Cisco Catalyst OS

8/12/2019 Cisco_QoS_2008

116/253


13823_05_2007_c1

CAT6500-CATOS> (enable) set qos enableQoS is enabled.CAT6500-CATOS> (enable)CAT6500-CATOS> (enable) show qos statusQoS is enabled on this switch.CAT6500-CATOS> (enable)

Cisco Catalyst 6500 QoS DesignTrusted Endpoint Examples (Cisco IOS)

Cisco IOS Trust:

8/12/2019 Cisco_QoS_2008

117/253


13823_05_2007_c1

CAT6500-IOS(config)#interface FastEthernet3/1CAT6500-IOS(config-if)# mls qos trust dscpPort 3/1 configured to trust ingress DSCP values

Trust Workaround for 2Q2T non-GigabitEthernet Linecards:

CAT6500-IOS(config)#ip access-list extended Trust-DSCPCAT6500-IOS(config-ext-nacl)#permit ip any anyExtended ACL configured to match all IP traffic

CAT6500-IOS(config)#class-map match-any All-IP-TrafficCAT6500-IOS(config-cmap)#match access-group name Trust-DSCPConfigure class-map to define classification criteria for policy

CAT6500-IOS(config)#policy-map Trust-DSCP-2Q2TCAT6500-IOS(config-pmap)#class All-IP-TrafficCAT6500-IOS(config-pmap-c)#trust dscp

Configure policy-map specifying trust DSCP policyCAT6500-IOS(config)#interface fastEthernet 3/24CAT6500-IOS(config-if)#service-policy input Trust-DSCP-2Q2T

Attach service-policy in input direction to 2Q2T port to enforce trust policy

Cisco Catalyst 6500 QoS DesignTrusted Endpoint Examples (Cisco Catalyst OS)

8/12/2019 Cisco_QoS_2008

118/253


13823_05_2007_c1

CatOS Trust:CAT6500-PFC2-CATOS> (enable) set port qos 3/1 trust trust-dscpPort 3/1 qos set to trust-dscp.CAT6500-PFC2-CATOS> (enable)

Trust Workaround for 2Q2T non-GigabitEthernet Linecards:

CAT6500-PFC2-CATOS> (enable) set qos acl ip TRUST-DSCP trust-dscp anyTRUST-DSCP editbuffer modified. Use 'commit' command to apply changes.

CAT6500-PFC2-CATOS> (enable) commit qos acl TRUST-DSCPQoS ACL 'TRUST-DSCP' successfully committed.CAT6500-PFC2-CATOS> (enable)CAT6500-PFC2-CATOS> (enable) set qos acl map TRUST-DSCP 4/1

Cisco Catalyst 6500AutoQoS VoIP (CatOS)

bl

set qos autoqosset port qos 3/1 autoqos voip ciscoipphone

8/12/2019 Cisco_QoS_2008

119/253


13823_05_2007_c1

Options:autoqos voip cisco-phoneautoqos voip ciscosoftphoneauto qos voip trust

set qos enableset qos map 2q2t tx 2 1 cos 1set qos map 2q2t tx 2 1 cos 2set qos map 2q2t tx 2 1 cos 3set qos map 2q2t tx 2 2 cos 5set qos drop-threshold 2q2t tx queue 1 100 100set qos cos-dscp-map 0 10 18 26 34 46 48 56set qos ipprec-dscp-map 0 10 18 26 34 46 48 56set qos policed-dscp-map 0,26,46:0set qos policed-dscp-map 1:1set qos policed-dscp-map 63:63clear qos acl all#ACL_IP-PHONESset qos acl ip ACL_IP-PHONES trust-cos ip any any#commit qos acl all!set vlan 100 3/1set port qos 3/1 trust-device ciscoipphone

set trunk 3/1 off negotiate 1-1005,1025-4094set spantree portfast 3/1 enableset port qos 3/1 trust trust-cosset qos acl map ACL_IP-PHONES 3/1set port qos 3/1-48 policy-source localset port channel 3/1 mode off

Cisco Catalyst 6500AutoQoS VoIP (Coming in 12.2(33)SXH Release)


8/12/2019 Cisco_QoS_2008

120/253


13823_05_2007_c1

Options:autoqos voip cisco-phoneautoqos voip ciscosoftphoneauto qos voip trust

mls qos mls qos map cos-dscp 0 10 18 26 34 46 48 56

Interface fastethernet 2/3wrr-queue cos-map 1 1 0wrr-queue cos-map 2 1 1 2 3 4wrr-queue cos-map 2 2 5 6 7wrr-queue queue-limit 80 20wrr-queue bandwidth 100 255wrr-queue threshold 1 100 100wrr-queue threshold 2 80 100

rcv-queue cos map 1 1 0rcv-queue cos map 1 3 1 2 3 4rcv-queue cos map 1 4 5 6 7rcv-queue threshold 1 50 60 80 100

Cisco Catalyst 6500 QoS DesignIP Phone + PC + Scavenger (Basic): Cisco IOS Port-based (Part 1)

CAT6500-IOS(config)# mls qos map cos-dscp 0 8 16 24 32 46 48 56!M difi d f lt C S DSCP i th t C S 5 i d t DSCP EF

8/12/2019 Cisco_QoS_2008

121/253


13823_05_2007_c1

!Modifies default CoS-DSCP mapping so that CoS 5 is mapped to DSCP EF

CAT6500-IOS(config)# mls qos map policed-dscp normal-burst 0 24 to 8!Excess traffic marked DSCP 0 or CS3 is remarked to CS1

CAT6500-IOS(config)# ip access-list extended Voice-BearerCAT6500-IOS(config-ext-nacl)# permit udp 10.1.110.0 0.0.0.255 any range 1638432767 dscp 46

!Extended ACL matching voice bearer traffic on voice VLAN

CAT6500-IOS(config)# ip access-list extended Voice-Signal

CAT6500-IOS(config-ext-nacl)# permit tcp 10.1.110.0 0.0.0.255 any range 20002002 dscp 24!Extended ACL matching voice signaling traffic on voice VLAN

CAT6500-IOS(config)# ip access-list extended Voice-OtherCAT6500-IOS(config-ext-nacl)# permit ip 10.1.110.0 0.0.0.255 any

!Extended ACL matching all other voice traffic


CAT6500 IOS( fi )# class map match all Voice Bearer

8/12/2019 Cisco_QoS_2008

122/253


13823_05_2007_c1

CAT6500-IOS(config)# class-map match-all Voice-BearerCAT6500-IOS(config-cmap)# match access-group name Voice-Bearer

!Configure class-map to define classification criteria for policy

CAT6500-IOS(config)# class-map match-all Voice-SignalCAT6500-IOS(config-cmap)# match access-group name Voice-Signal


CAT6500-IOS(config)# class-map match-all Voice-OtherCAT6500-IOS(config-cmap)# match access-group name Voice-Other



CAT6500-IOS(config)# policy-map IP-Phone-PC-BasicCAT6500-IOS(config-pmap)# class Voice-BearerCAT6500-IOS(config-pmap-c)# police 128000 8000 exceed-action drop

!Matches voice bearer traffic and polices traffic to 128kbps

8/12/2019 Cisco_QoS_2008

123/253

2007 Cisco Systems, Inc. All rights reserved. Cisco Confidential 123

TECRST-2500)

13823_05_2007_c1

!Matches voice bearer traffic and polices traffic to 128kbps

CAT6500-IOS(config-pmap)# class Voice-SignalCAT6500-IOS(config-pmap-c)# police 32000 8000 exceed-action policed-dscp

!Matches voice signaling traffic and polices traffic to 32kbps, alltraffic in excess of defined rate is marked as scavenger (CS1)

CAT6500-IOS(config-pmap)# class Voice-OtherCAT6500-IOS(config-pmap-c)# police 32000 8000 exceed-action policed-dscp

!Matches all other voice VLAN traffic and polices traffic to 32kbps, alltraffic in excess of defined rate is marked as scavenger (CS1)

CAT6500-IOS(config-pmap)# class class-defaultCAT6500-IOS(config-pmap-c)# police 5000000 156250 conform-action set-dscp-transmit default exceed-action policed-dscp

!Matches all other traffic and polices traffic to 5Mbps, all traffic inexcess of defined rate is marked as scavenger (CS1)

CAT6500-IOS(config)#interface fastEthernet 6/1

CAT6500-IOS(config-if)# service-policy input IP-Phone-PC-Basic!Attach service-policy in input direction to enforce policy

CAT6500-IOS(config-if)# mls qos trust extend cos 0!Sets CoS to 0 PC-generated packets (behind an IP Phone)

Cisco Catalyst 6500 QoS DesignIP Phone + PC + Scavenger (Basic): Cisco IOS VLAN-based (Part 1)

8/12/2019 Cisco_QoS_2008

124/253


TECRST-2500)

13823_05_2007_c1

CAT6500-IOS(config)# mls qos map cos-dscp 0 8 16 24 32 46 48 56!Modifies default CoS-DSCP mapping so that CoS 5 is mapped to DSCP EF

CAT6500-IOS(config)# mls qos map policed-dscp normal-burst 0 24 to 8!Excess traffic marked DSCP 0 or CS3 is re-marked to CS1

CAT6500-IOS(config)# ip access-list extended Voice-BearerCAT6500-IOS(config-ext-nacl)# permit udp any any range 16384 32767 dscp 46!Extended ACL matching voice bearer traffic on voice VLAN

CAT6500-IOS(config)# ip access-list extended Voice-SignalCAT6500-IOS(config-ext-nacl)# permit tcp any any range 2000 2002 dscp 24

!Extended ACL matching voice signaling traffic on voice VLAN

Cisco Catalyst 6500 QoS DesignIP Phone + PC + Scavenger (Basic): Cisco IOS VLAN-based (Part 2)

8/12/2019 Cisco_QoS_2008

125/253


TECRST-2500)

13823_05_2007_c1

CAT6500-IOS(config)# class-map match-all Voice-BearerCAT6500-IOS(config-cmap)# match access-group name Voice-Bearer!Configure class-map to define classification criteria for policy

CAT6500-IOS(config)# class-map match-all Voice-SignalCAT6500-IOS(config-cmap)# match access-group name Voice-Signal


CAT6500-IOS(config)# policy-map IP-Phone-PC-Basic-DVLANCAT6500-IOS(config-pmap)# class class-defaultCAT6500-IOS(config-pmap-c)# police flow mask src-only 5000000 156250 conform-action set-dscp-transmit 0 exceed-action policed-dscp

!Matches all data traffic on a per source basis and polices traffic to

5Mbps, all traffic in excess of defined rate is re-marked as scavenger(CS1)

8/12/2019 Cisco_QoS_2008

126/253

8/12/2019 Cisco_QoS_2008

127/253

Cisco Catalyst 6500 QoS DesignIP Phone + PC + Scavenger (Basic) Model: CatOS Ex: Part One

CAT6500-PFC2-CATOS> (enable) set qos cos-dscp-map 0 8 16 24 32 46 48 56! Modifies default CoS-DSCP mapping so that CoS 5 is mapped to DSCP EF

8/12/2019 Cisco_QoS_2008

128/253


TECRST-2500)

13823_05_2007_c1

CAT6500-PFC2-CATOS> (enable) set qos policed-dscp-map 0,24:8! Excess traffic marked DSCP 0 or CS3 is remarked to CS1

CAT6500-PFC2-CATOS> (enable)

CAT6500-PFC2-CATOS> (enable) set qos policer aggregate VVLAN-VOICE-3-1rate 128 burst 13 drop! Defines the policer for IP Phone VoIP traffic

CAT6500-PFC2-CATOS> (enable) set qos policer aggregate VVLAN-SIGNALING-3-1

rate 32 burst 13 policed-dscp! Defines the policer for IP Phone Call-Signaling trafficCAT6500-PFC2-CATOS> (enable) set qos policer aggregate VVLAN-ANY-3-1

rate 32 burst 13 policed-dscp! Defines the policer for any other traffic sourced from the VVLAN

CAT6500-PFC2-CATOS> (enable) set qos policer aggregate PC-DATA-3-1rate 5000 burst 1250 policed-dscp

! Defines the policer for PC Data trafficCAT6500-PFC2-CATOS> (enable)

Cisco Catalyst 6500 QoS DesignIP Phone + PC + Scavenger (Basic) Model: CatOS Ex: Part Two

CAT6500-PFC2-CATOS> (enable) set qos acl ip IPPHONE-PC-BASIC-3-1 dscp 46aggregate VVLAN-VOICE-3-1 udp 10.1.110.0 0.0.0.255 any range 16384 32767! Binds ACL to policer and marks in-profile VVLAN VoIP to DSCP EF

CAT6500-PFC2-CATOS> (enable) set qos acl ip IPPHONE-PC-BASIC-3-1 dscp 24

8/12/2019 Cisco_QoS_2008

129/253


TECRST-2500)

13823_05_2007_c1

( ) q p paggregate VVLAN-SIGNALING-3-1 tcp 10.1.110.0 0.0.0.255 any range 2000 2002! Binds ACL to policer marks in-profile VVLAN Call-Signaling to DSCP CS3

CAT6500-PFC2-CATOS> (enable) set qos acl ip IPPHONE-PC-BASIC-3-1 dscp 0aggregate VVLAN-ANY-3-1 10.1.110.0 0.0.0.255! Binds ACL to policer and marks all other VVLAN traffic to DSCP 0

CAT6500-PFC2-CATOS> (enable) set qos acl ip IPPHONE-PC-BASIC-3-1 dscp 0aggregate PC-DATA-3-1 any! Binds ACL to policer and marks in-profile PC Data traffic to DSCP 0

CAT6500-PFC2-CATOS> (enable) commit qos acl IPPHONE-PC-BASIC-3-1! Commits ACL to PFC memory


CAT6500-PFC2-CATOS> (enable) set port qos 3/1 cos 0! Sets CoS to 0 for all untrusted packets (when there is no IP Phone)

CAT6500-PFC2-CATOS> (enable) set port qos 3/1 cos-ext 0! Sets CoS to 0 for all untrusted PC-generated packets (behind an IP Phone)

CAT6500-PFC2-CATOS> (enable) set port qos 3/1 trust-ext untrusted

! Ignore any CoS values for all PC-generated packets (behind an IP Phone)CAT6500-PFC2-CATOS> (enable) set port qos 3/1 trust-device ciscoipphone! Conditional trust (for Cisco IP Phones only)

CAT6500-PFC2-CATOS> (enable) set qos acl map IPPHONE-PC-BASIC-3-1 3/1! Attaches ACL to switch port


Cisco Catalyst 6500 QoS DesignQueuing Design (2Q2T)

2Q2TApplication DSCP

Network Control

CoS

CoS 7

8/12/2019 Cisco_QoS_2008

130/253


TECRST-2500)

13823_05_2007_c1

Queue 2(70%)

CoS 3

CoS 2

CoS 4CoS 6CoS 7

Queue 1(30%)CoS 0

CoS 1

Q1T2

Q1T1

Q2T1

Q2T2

CoS 5

Network Management

Call Signaling

Streaming Video

Transactional Data

Interactive Video

Voice

Bulk Data

AF21

CS3

CS4

AF41

EF

CS2

AF11Scavenger CS1

Best Effort 0



CoS 2

CoS 3

CoS 4

CoS 4

CoS 5

CoS 2

CoS 1CoS 1

0

CoS 6

CoS 3

Cisco Catalyst 6500 QoS DesignQueuing Design (2Q2T: Cisco IOS)

CAT6500-PFC3-IOS(config)# interface range FastEthernet6/1 - 48CAT6500-PFC3-IOS(config-if)# wrr-queue queue-limit 60 40

! Sets the buffer allocations to 60% for Q1 and 40% for Q2

8/12/2019 Cisco_QoS_2008

131/253


CAT6500-PFC3-IOS(config-if)# wrr-queue bandwidth 30 70! Sets the WRR weights for 30:70 (Q1:Q2) bandwidth servicing

CAT6500-PFC3-IOS(config-if)#

CAT6500-PFC3-IOS(config-if)# wrr-queue threshold 1 40 100! Sets Q1T1 to 40% to limit Scavenger/Bulk within Q1

CAT6500-PFC3-IOS(config-if)# wrr-queue threshold 2 80 100! Sets Q2T1 to 80% to always have room in Q2 for VoIP

CAT6500-PFC3-IOS(config-if)#

CAT6500-PFC3-IOS(config-if)# wrr-queue cos-map 1 1 1! Maps Scavenger/Bulk to Q1T1

CAT6500-PFC3-IOS(config-if)# wrr-queue cos-map 1 2 0! Maps Best Effort to Q1T2

CAT6500-PFC3-IOS(config-if)# wrr-queue cos-map 2 1 2 3 4 6 7

! Maps CoS 2,3,4,6 and 7 to Q2T1CAT6500-PFC3-IOS(config-if)# wrr-queue cos-map 2 2 5! Maps VoIP to Q2T2

CAT6500-PFC3-IOS(config-if)#endCAT6500-PFC3-IOS#

**Note: 2Q2T queuing structurenot recommended for uplinkports/interfaces servicing realtime applications.

Cisco Catalyst 6500 QoS DesignQueuing Design (2Q2T: Cisco Catalyst OS)

CAT6500-PFC2-CATOS> (enable) set qos txq-ratio 2q2t 60 40! Sets the buffer allocations to 60% for Q1 and 40% for Q2

CAT6500 PFC2 CATOS> (enable) set qos wrr 2q2t 30 70

8/12/2019 Cisco_QoS_2008

132/253


CAT6500-PFC2-CATOS> (enable) set qos wrr 2q2t 30 70! Sets the WRR weights for 30:70 (Q1:Q2) bandwidth servicing


CAT6500-PFC2-CATOS> (enable) set qos drop-threshold 2q2t tx queue 1 40 100! Sets Q1T1 to 40% to limit Scavenger/Bulk within Q1

CAT6500-PFC2-CATOS> (enable) set qos drop-threshold 2q2t tx queue 2 80 100! Sets Q2T1 to 80% to always have room in Q2 for VoIP


CAT6500-PFC2-CATOS> (enable) set qos map 2q2t tx 1 1 cos 1! Maps Scavenger/Bulk to Q1T1

CAT6500-PFC2-CATOS> (enable) set qos map 2q2t tx 1 2 cos 0! Maps Best Effort to Q1T2

CAT6500-PFC2-CATOS> (enable) set qos map 2q2t tx 2 1 cos 2,3,4,6,7! Maps CoS 2,3,4,6 and 7 to Q2T1

CAT6500-PFC2-CATOS> (enable) set qos map 2q2t tx 2 2 cos 5! Maps VoIP to Q2T2


Cisco Catalyst 6500 QoS DesignQueuing Design (1P2Q1T: Cisco Catalyst OS Supports 1P2Q2T)

1P2Q1T

Q3C S 5

Application DSCP

Network Control

CoS

CoS 7

8/12/2019 Cisco_QoS_2008

133/253


Queue 2(70%)

CoS 3

CoS 2

CoS 4

CoS 6

CoS 7

Queue 1(30%)

CoS 0

CoS 1

Q3Priority Queue

CoS 5

Q1T1

Q1T2

Q2T1

Q2T2

Network Management

Call Signaling

Streaming Video

Transactional Data

Interactive VideoVoice

Bulk Data

AF21

CS3

CS4

AF41EF

CS2

AF11Scavenger CS1

Best Effort 0



CoS 2

CoS 3

CoS 4

CoS 4CoS 5

CoS 2

CoS 1CoS 1

0

CoS 6

CoS 3

Cisco Catalyst 6500 QoS DesignQueuing Design (1P2Q1T: Cisco IOS)

CAT6500-PFC3-IOS(config)# interface TenGigabitEthernet1/1CAT6500-PFC3-IOS(config-if)# wrr-queue queue-limit 40 30

! Sets the buffer allocations to 40% for Q1 and 30% for Q2CAT6500-PFC3-IOS(config-if)# wrr-queue bandwidth 30 70

! S t th WRR ight f 30 70 (Q1 Q2) b d idth i i g

8/12/2019 Cisco_QoS_2008

134/253


! Sets the WRR weights for 30:70 (Q1:Q2) bandwidth servicingCAT6500-PFC3-IOS(config-if)#

CAT6500-PFC3-IOS(config-if)# wrr-queue random-detect min-threshold 1 80! Sets Min WRED Threshold for Q1T1 to 80%

CAT6500-PFC3-IOS(config-if)# wrr-queue random-detect max-threshold 1 100! Sets Max WRED Threshold for Q1T1 to 100%

CAT6500-PFC3-IOS(config-if)# wrr-queue random-detect min-threshold 2 80! Sets Min WRED Threshold for Q2T1 to 80%

CAT6500-PFC3-IOS(config-if)# wrr-queue random-detect max-threshold 2 100! Sets Max WRED Threshold for Q2T1 to 100%CAT6500-PFC3-IOS(config-if)#

CAT6500-PFC3-IOS(config-if)# wrr-queue cos-map 1 1 1 0! Maps Scavenger/Bulk and Best Effort to Q1 WRED Threshold 1

CAT6500-PFC3-IOS(config-if)# wrr-queue cos-map 2 1 2 3 4 6 7! Maps CoS 2,3,4,6 and 7 to Q2 WRED Threshold 1CAT6500-PFC3-IOS(config-if)# priority-queue cos-map 1 5

! Assigns VoIP to PQ (Q3)CAT6500-PFC3-IOS(config-if)#endCAT6500-PFC3-IOS#

Cisco Catalyst 6500 QoS DesignQueuing Design (1P2Q1T: Cisco Catalyst OS)

CAT6500-PFC2-CATOS> (enable) set qos txq-ratio 1p2q1t 40 30 30! Allocates buffers: 40% for Q1, 30% for Q2, 30% for Q3 (PQ)

CAT6500-PFC2-CATOS> (enable) set qos wrr 1p2q1t 30 70! S t th WRR ight f 30 70 (Q1 Q2) b d idth i i g

8/12/2019 Cisco_QoS_2008

135/253


! Sets the WRR weights for 30:70 (Q1:Q2) bandwidth servicingCAT6500-PFC2-CATOS> (enable)

CAT6500-PFC2-CATOS> (enable) set qos wred 1p2q1t tx queue 1 40:80! Sets Q1 WRED Threshold to 40:80 to limit Scavenger/Bulk within Q1

CAT6500-PFC2-CATOS> (enable) set qos wred 1p2q1t tx queue 2 70:80! Sets Q2 WRED Threshold to 70:80 to force room for Network Control


CAT6500-PFC2-CATOS> (enable) set qos map 1p2q1t tx 1 1 cos 1! Maps Scavenger/Bulk to Q1 WRED Threshold

CAT6500-PFC2-CATOS> (enable) set qos map 1p2q1t tx 1 cos 0! Maps Best Effort to Q1 tail (100%) threshold

CAT6500-PFC2-CATOS> (enable) set qos map 1p2q1t tx 2 1 cos 2,3,4! Maps CoS 2,3,4 to Q2 WRED Threshold

CAT6500-PFC2-CATOS> (enable) set qos map 1p2q1t tx 2 cos 6,7! Maps Network/Internetwork Control to Q2 tail (100%) threshold CAT6500-PFC2-CATOS> (enable) set qos map 1p2q1t tx 3 cos 5

! Maps VoIP to PQ (Q3)CAT6500-PFC2-CATOS> (enable)

Cisco Catalyst 6500 QoS DesignQueuing Design (1P2Q2T)

1P2Q2T

Q3CoS 5

Application DSCP

Network Control

CoS

CoS 7

8/12/2019 Cisco_QoS_2008

136/253


Queue 2(70%)

CoS 3

CoS 2

CoS 4

CoS 6

CoS 7

Q2T1

Q2T2

Q3Priority Queue

CoS 5

Queue 1(30%)

CoS 0

CoS 1 Q1T1

Q1T2Network Management

Call Signaling

Streaming Video

Transactional Data

Interactive Video

Voice

Bulk Data

AF21

CS3

CS4

AF41

EF

CS2

AF11Scavenger CS1

Best Effort 0



CoS 2

CoS 3

CoS 4

CoS 4

CoS 5

CoS 2

CoS 1CoS 1

0

CoS 6

CoS 3

Cisco Catalyst 6500 QoS DesignQueuing Design (1P2Q2T: Cisco IOS): Part One

CAT6500-PFC3-IOS(config)# interface range GigabitEthernet4/1 - 8CAT6500-PFC3(config-if-range)# wrr-queue queue-limit 40 30

! Sets the b

cisco_qos_2008

Documents