Escolar Documentos
Profissional Documentos
Cultura Documentos
BRSRST-2501
BRKRST-2501
Cisco Public
(10G link)
Broadcom Sw
Te 1/2/1
VLAN 2
172.26.200.20 2012
10G Link
(Up)
Broadcom Sw
172.26.200.20 2013
(Up)
(Rate of 1G each)
Cisco Public
QoS Test
(10G link)
Broadcom Sw
Te 1/2/1
VLAN 2
172.26.200.20 2012
Broadcom Sw
172.26.200.20 2013
(Up)
(Up)
(Rate of 1G each)
Half traffic unit
1 in
Cisco Public
QoS Test
All traffic
unit 2 out
(10G link)
Broadcom Sw
172.26.200.20 2012
(Up)
Broadcom Sw
172.26.200.20 2013
(Up)
(Rate of 1G each)
Cisco Public
Te 2/2/1
VLAN 2
VOICE TRAFFIC
Before:
Only VOICE traffic
After:
VOICE, HTTP and FTPDATA traffic
HTTP TRAFFIC
FTPDATA TRAFFC
BRKRST-2501
Cisco Public
VOICE TRAFFIC
Before:
Only VOICE traffic
Highest Priority traffic
cannot be protected!!!
After:
VOICE, HTTP and FTPDATA traffic
HTTP TRAFFIC
FTPDATA TRAFFC
BRKRST-2501
Cisco Public
FTPDATA TRAFFC
Before:
Only VOICE traffic
After:
VOICE, HTTP and FTPDATA traffic
Highest Priority traffic
cannot be protected!!!
HTTP TRAFFIC
VOICE TRAFFIC
BRKRST-2501
Cisco Public
Before:
Only VOICE traffic
After:
VOICE, HTTP and FTPDATA traffic
HTTP TRAFFIC
FTPDATA TRAFFC
BRKRST-2501
Cisco Public
Before:
Only VOICE traffic
After:
VOICE, HTTP and FTPDATA traffic
HTTP TRAFFIC
BRKRST-2501
Cisco Public
VOICE TRAFFIC
After:
VOICE, HTTP and FTPDATA traffic
HTTP TRAFFIC
Before:
Only VOICE traffic
BRKRST-2501
Cisco Public
Agenda
Components of QoS
Campus QoS Design Considerations and Models
Catalyst 2960/2975/3560/3750 QoS Design
Cisco Public
BRKRST-2501
interface GigabitEthernet0/0
service-policy output QOS_POLICY
Cisco Public
BRKRST-2501
Cisco Public
Mbps
3
Min
Max
2
0
(H.323) DVD
BRKRST-2501
(H.264) 720p
Cisco Public
(H.264) 1080p
1400
1400
1000
1000
Video Packets
Video
Frame
Video
Frame
Video
Frame
Bytes
600
Audio
Samples
200
600
200
20 msec
Time
33 msec
http://www.cisco.com/en/US/docs/solutions/Enterprise/WAN_and_MAN/QoS_SRND_40/QoSIntro_40.html#wp60774
BRKRST-2501
Cisco Public
Data
Media Explosion
Collaborative Media
Video
Video
Web
Email
Messaging
Connectivity
BRKRST-2501
Data
Apps
App Sharing
Web/Internet
Messaging
Email
Data
Apps
App Sharing
Web/Internet
Messaging
Email
Leveraging
Co-Existence
Investment 2013 Cisco and/or its affiliates. All rights reserved.
WebEx
Voice
IP Telephony
HD Audio
Softphone
Other VoIP
IP Telephony
Voice
IP Video Conf
Surveillance
Video Telephony
HD Video Conf
VoD Streaming
TelePresence
IP Video Conf
Ad-Hoc App
Internet Streaming
Internet VoIP
Unmanaged YouTube
FaceBook, Google
Other
Cisco Public
Experience
Assurance
Multicast
NetFlow
RSVP
SAF
Resource Control
PfR
Optimise User
Experience
Media
Monitoring
SIP, ICE/STUN
SAF/XMPP/Bonjour
RTCP/SNMP/FNF
RSVP/QoS
IGMPv3
802.1x
CDP, LLDP-MED
IPSLA
QoS
Middleware/API
Media Optimisation
API
Middleware
Host Stacks / Protocols
Seamless Security
BRKRST-2501
Cisco Public
Realtime
8-Class Model
12-Class Model
Voice
Voice
Realtime Interactive
Multimedia Conferencing
Broadcast Video
Multimedia Streaming
Call Signalling
Interactive Video
Streaming Video
Signalling / Control
Call Signalling
Network Control
Critical Data
Best Effort
Critical Data
Best Effort
Scavenger
Network Control
Network Management
Transactional Data
Bulk Data
Best Effort
Scavenger
Time
http://www.cisco.com/en/US/docs/solutions/Enterprise/WAN_and_MAN/QoS_SRND_40/QoSIntro_40.html#wp61135
BRKRST-2501
Cisco Public
Scavenger 1%
Voice
18%
Best Effort
25%
Bulk
4%
Streaming-Video
Scavenger/B
ulk 5%
Real-Time
33%
Scavenger - minimal bw
allocation ~ 5% (RFC 3662)
Less than best effort during
congestion
Critical Data
NW Management
Transactional Data
Interactive
Video 15%
Mission-Critical Data
Call-Signalling
BRKRST-2501
InternetworkControl
Cisco Public
Congestion Avoidance
should be enabled on
select TCP flows (eg
WRED, DBL)
BRKRST-2501
Cisco Public
Components of QoS
BRKRST-2501
Cisco Public
Components of QoS
R
B
Policer
Tail Drop
R
Classifier
B
Policer
Weighted queue
Scheduler
Link FIFO
Link
Shaper
WRED
Weighted queue
RED
Admission Control - Local, Measurement and Resource Based (CAC and RSVP).
1. Classification and Marking - CoS, DSCP, Port Num, Packet Len, Protocol, VLAN
etc
2. Policing - Pre Queuing includes Marking, Policing, Dropping (Tail Drop and
WRED)
3. Queuing and Scheduling Priority, Queue Length (Buffers)
4. Shaping generally outbound, also sharing.
5. Post Queuing Fragmenting, Interleaving, Compression
BRKRST-2501
Cisco Public
Pream.
SFD
DA
SA
Type
TAG
4 Bytes
PT
Data
FCS
Ethernet Frame
PRI
CFI
802.1Q/p
Header
VLAN ID
ToS Byte
Len
ID
Offset
TTL
Proto
FCS
IP SA
IP DA
Data
IPv4 Packet
7
6
5
4
3
IP Precedence
Unused
DiffServ Code Point (DSCP)
BRKRST-2501
IP ECN
2013 Cisco and/or its affiliates. All rights reserved.
Standard IPv4
DiffServ Extensions - WRED
Cisco Public
Per-Hop
Admission
Queuing &
Application
Class
Behaviour
Control
Dropping
Examples
VoIP Telephony
EF
Required
Broadcast Video
CS5
Required
(Optional) PQ
Realtime Interactive
CS4
Required
(Optional) PQ
Cisco TelePresence
Multimedia Conferencing
AF4
Required
Multimedia Streaming
AF3
Recommended
Network Control
CS6
BW Queue
Call-Signalling
CS3
BW Queue
CS2
BW Queue
Transactional Data
AF2
Bulk Data
AF1
Best Effort
DF
Default Class
Scavenger
CS1
http://www.cisco.com/en/US/docs/solutions/Enterprise/WAN_and_MAN/QoS_SRND_40/QoSIntro_40.html#wp61104
BRKRST-2501
Cisco Public
Traffic marking can be applied unconditionally, e.g. mark the DSCP to 34 for
all traffic received on a particular interface, or as a conditional result of a
policer
Conditional marking can be used to designate in- and out-of-contract traffic:
Conform action is mark one way
Exceed action is mark another way
Cisco Public
Servicing
Rate
Tail
Head
Cisco Public
BRKRST-2501
Cisco Public
policy-map BULK-WRED
class BULK
bandwidth percent 10
random-detect dscp-based
FairQueue
PreSorter
Front
of
Queue
Direction
of
Packet
Flow
AF13 Minimum WRED Threshold:
Begin randomly dropping AF13 Packets
AF12 Minimum WRED Threshold:
Begin randomly dropping AF12 Packets
AF11 Minimum WRED Threshold:
Begin randomly dropping AF11 Packets
Maximum WRED Thresholds for AF11, AF12 and AF13 are set to the tail of the queue in this example
http://www.cisco.com/en/US/docs/solutions/Enterprise/WAN_and_MAN/QoS_SRND_40/QoSWAN_40.html#wp129476
BRKRST-2501
Cisco Public
Tail Drop
Cisco Public
Link
N Weighted
queues
Queued packets
Schedulers determine which queue to service next - Different schedulers service queues
in different orders
Most common types of schedulers
FIFO is the most basic queuing type and is default when no QoS is enabled
Priority scheduling the queue is serviced if a packet is present
Weighted bandwidth scheduling
Weighted Round Robin (WRR), simple, each queue is weighted e.g. Custom Qing
Weighted Fair Queuing e.g. (FB)WFQ, CBWFQ, LLQ (a.k.a. PQ-CBWFQ)
BRKRST-2501
Cisco Public
1 Mbps
VoIP
Policer
4 Mbps
Bscst-Video
Policer
5 Mbps
LLQ
RT-Interactive
Policer
policy-map MULTI-LLQ
class VOIP
priority 1000
class BROADCAST-VIDEO
priority 4000
class REALTIME-INTERACTIVE
priority 5000
Packets
In
Packets
Out
CBWFQ
Scheduler
CBWFQ
Tx-Ring
http://www.cisco.com/en/US/docs/solutions/Enterprise/WAN_and_MAN/QoS_SRND_40/QoSWAN_40.html#wp129469
BRKRST-2501
Cisco Public
Footy
Beer/Chips/Beer
Pub
BRKRST-2501
Cisco Public
Footy
Beer/Chips/Beer
Pub
BRKRST-2501
Cisco Public
Traffic
Policed Rate
Time
Shaping
Time
Cisco Public
Traffic
Time
BRKRST-2501
Policing
Traffic
Traffic
Shaped Rate
Time
Shaper
Link
Scheduler
R
B
Link
Shaper
R
B
Scheduler
Shaper
Cisco Public
Link
Voice
Data
Data
Data
Data
Voice
Data
BRKRST-2501
Cisco Public
Multimedia
Station
I Need 16K
BW and
100 msec
Delay
Reserve 16K
BW on this Line
Handset
Multimedia Server
BRKRST-2501
Cisco Public
BRKRST-2501
Cisco Public
BRKRST-2501
Cisco Public
TelePresence
High Availability
- Implement strategy for sub-second failover
- Implement HA architecture with NSF/SSO,
VSS, VPC etc.
Live
Latency and Bandwidth Optimisation
Broadcasts
- GigE access
& VOD
- 10GigE distribution/core
- Implement IP multicast and/or stream splitting
services
Confidentiality
Digital
- Authentication of endpoints and users
Signage
(e.g. 802.1x)
-Comply to security policies with data protection
strategies,
-such as encryption (e.g. Cisco TrustSec)
Surveillance
BRKRST-2501
Cisco Public
Si
Si
Video-conferencing
Si
Si
Si
Si
TelePresence
Video-conferencing
Network Virtualisation
-Implement VRF-Lite (or other) Path Isolation for
sensitive traffic
-video application segregation
Live
Broadcasts
& VOD
Si
Si
Si
Si
Signage
Si
BRKRST-2501
Surveillance
Cisco Public
Si
Cisco Public
Internal DSCP
Trust States and Operations
Trust Boundaries
http://www.cisco.com/en/US/docs/solutions/Enterprise/WAN_and_MAN/QoS_SRND_40/QoSCampus_40.html#wp1098008
BRKRST-2501
Cisco Public
WAN Aggregator
Server Farms
BRKRST-2501
IP Phones + PCs
IP Phones + PCs
Trust Boundaries
Trust Boundary
Trust Boundary
Secure Endpoint
Example: Software-protected PC
With centrally-administered QoS markings
[mls] qos trust dscp
Unsecure Endpoint
no [mls] qos trust
BRKRST-2501
Cisco Public
CoS = 5
DSCP = 46
BRKRST-2501
Untrusted
no [mls] qos trust
Internal
DSCP = 0
CoS = 0
DSCP = 0
Trust DSCP
[mls] qos trust dscp
CoS 0 0 CoS 4 32
CoS 1 8 CoS 5 40
CoS 2 16
CoS 6 48
CoS 3 24
CoS 7 56
[mls] qos map cos-dscp 0 8 16 24 32 40 48 56
Internal
DSCP = 40
CoS = 5
DSCP = 40
Internal
DSCP = 46
CoS = 5
DSCP = 46
Cisco Public
1 PQ
Best Effort
25%
Scavenger/Bulk
5%
Guaranteed BW
BRKRST-2501
Realtime
33%
Cisco Public
BRKRST-2501
Cisco Public
Catalyst 2960/2975/3560/3750
G/E/X QoS Design
Marker
Marker
Stack
Ring
Ingress
Queues
SRR
SRR
Classify
Policer
Policer
Ingress
Egress
Queues
Classification
Policing
Marker
Marker
Egress
Marking
Ingress Queue/
Schedule
Congestion Control
Inspect incoming
packets
Based on ACLs or
configuration,
determine
classification label
Egress Queue/
Schedule
Congestion Control
Four SRR queues/port shared
or shaped servicing
One queue is configurable
for strict priority servicing
WTD for congestion
control (three thresholds
per queue)
Egress queue shaping
Egress port rate limiting
Act on policer
Ensure
Two queues/port ASIC
decision
conformance to a
shared servicing
Reclass or drop One queue is
specified rate
out-of-profile
On an aggregate or
configurable for strict
individual flow basis
priority servicing
Up to 256 policers
WTD for congestion
per Port ASIC
control (three
Support for rate
thresholds per queue)
and burst
SRR is performed
http://www.cisco.com/en/US/docs/solutions/Enterprise/WAN_and_MAN/QoS_SRND_40/QoSCampus_40.html#wp1098508
BRKRST-2501
Cisco Public
Cisco Public
Verified with:
Verified with:
BRKRST-2501
Cisco Public
Note: While the Catalyst 3750-E MQC syntax includes an implicit class-default, any policy actions assigned to this class are not enforced. Therefore, an
explicit class DEFAULT is configured in the above example to enforce a marking/remarking policy to DSCP 0 for all other IP traffic.
Note: An explicit marking command (set dscp) is used even for trusted application classes (like VVLAN-VOIP and VVLAN-SIGNALING) rather than a
trust policy-map action. The use of an explicit (but seemingly redundant) explicit marking command actually improves the policy efficiency from a hardware
perspective.
BRKRST-2501
Cisco Public
DSCP
(CS7)
CS6
EF
CS5
AF4
CS4
AF3
CS3
AF2
CS2
AF1
CS1
DF
2013 Cisco and/or its affiliates. All rights reserved.
1P1Q3T
EF
CS5
CS4
Q2
Priority Queue
CS7
CS6
CS6
CS3
Q1T3
AF4
AF3
Q1T1
Queue 1
Non-Priority
AF2 Default Queue
CS2
AF1
CS1
DF
Cisco Public
Q1T2
Best Effort
BRKRST-2501
DSCP
(CS7)
CS6
EF
CS5
AF4
CS4
AF3
CS3
AF2
CS2
AF1
CS1
DF
2013 Cisco and/or its affiliates. All rights reserved.
1P3Q3T
CS1
AF1
DF
Queue 4
Q4T2
Q4T1
(5%)
Default Queue
Queue 3 (35%)
CS7
CS6
Q2T3
CS3
Queue 2
Q2T2
AF4
AF3
AF2
CS2
(30%)
Q2T1
EF
CS5
CS4
Q1
Cisco Public
Priority Queue
Agenda
BRKRST-2501
Cisco Public
BRKRST-2501
Cisco Public
AutoQoS
Simplifies the deployment of QoS Policies
Uses a set of Standard configurations that can be modified
Cisco Public
BRKRST-2501
Cisco Public
No
Yes
No
Yes
No
Yes
No
Yes
No
Yes
No
Drop
Drop
Remark to CS1
Remark to CS1
Drop
Remark to CS1
http://www.cisco.com/en/US/docs/solutions/Enterprise/WAN_and_MAN/QoS_SRND_40/QoSCampus_40.html#wp1144082
BRKRST-2501
Cisco Public
Cisco Public
AutoQoS on EtherChannel
http://www.cisco.com/en/US/docs/solutions/Enterprise/WAN_and_MAN/QoS_SRND_40/QoSCampus_40.html#wp1145082
Removing AutoQoS
http://www.cisco.com/en/US/docs/solutions/Enterprise/WAN_and_MAN/QoS_SRND_40/QoSCampus_40.html#wp1145119
AutoQoS At-A-Glance
http://www.cisco.com/en/US/docs/solutions/Enterprise/Video/autoqosmediacampus.pdf
BRKRST-2501
Cisco Public
BRKRST-2501
Cisco Public
Private WAN
MPLS VPN
Metro Ethernet
IPSec VPN
LLQ/CBWFQ policies
Additional VPN-specific QoS policies (as required)
+ RSVP policies
+ (Optional) Application ID RSVP policies
Cisco Public
Egress
Packets
In
FQ
Signalling
Critical
Bulk
Mgmt
Default
PQ
Interleave
TX
Ring
Fragment
CBWFQ
Link Fragmentation
and Interleave
Cisco Public
Packets
Out
Packets
in
1 Mbps
VOIP
Policer
15 Mbps
REALTIME
Policer
FQ
BRKRST-2501
Call-Signalling CBWFQ
Transactional CBWFQ
Bulk Data CBWFQ
Default Queue
2013 Cisco and/or its affiliates. All rights reserved.
CBWFQ
Scheduler
ClassBased
Shaper
Cisco Public
GE Interface
with a sub-line-rate
access service
(e.g. 50 Mbps)
TX
Ring
Packets
out
Realtime
8-Class Model
12-Class Model
Voice
Voice
Realtime Interactive
Multimedia Conferencing
Broadcast Video
Multimedia Streaming
Call Signalling
Interactive Video
Streaming Video
Signalling / Control
Call Signalling
Network Control
Critical Data
Best Effort
Critical Data
Best Effort
Scavenger
Network Control
Network Management
Transactional Data
Bulk Data
Best Effort
Scavenger
Time
http://www.cisco.com/en/US/docs/solutions/Enterprise/WAN_and_MAN/QoS_SRND_40/QoSIntro_40.html#wp61135
BRKRST-2501
Cisco Public
Best Effort
25%
Broadcast Video
10%
Realtime
33%
Interactive
Video
23%
Scavenger
1%
Realtime Interactive
13%
Bulk Data
4%
Critical Data
35%
Control
7%
Network Control
5%
Critical Data
24%
Network Control
2%
Signaling
2%
Transactional Data
10%
Management
3%
Signaling
2%
Multimedia Conferencing
10%
BRKRST-2501
Multimedia Streaming
10%
Cisco Public
BRKRST-2501
match ip dscp 40
match access-group 100
class-map match-any BUS
match access-group 101
class-map match-all CTRL
match access-group 103
match access-group 104
!
policy-map QOS_POLICY
class VOICE_CLASS
priority
police 64000
class BUS
bandwidth remaining percent 90
!
interface Gi 0/0
ip address 192.168.2.2 255.255.255.0
service-policy output QOS_POLICY
Cisco Public
Cisco Public
Comment on DC QoS
Cisco Public
End-to-end QoS
Classification and initial
marking
Trust Pre-Assigned COS
Markings
WAN
Un Trust Boundary
Aggregation /
Core Layer
vPC
Access Layer
vPC
Compute Layer
BRKRST-2501
Trust
Boundary
vPC
UCS 1
x4
x4
x4
x4
x4
x4
x4
x4
2013 Cisco and/or its affiliates. All rights reserved.
Cisco Public
Marking
Server
BRKRST-2501
VMs
VMs
Server
2013 Cisco and/or its affiliates. All rights reserved.
Server
Cisco Public
Wireless Integration
Considerations:
Location of the WLC (Wireless LAN Controller)
Distributed WLC terminates CAPWAP tunnel locally and allows granular marking of traffic toward WAN
CAPWAP tunnel provides DSCP based marking in header
WMM (Wireless Multimedia) does not mark data applications
Data applications can be marked on wired side and continue to WAN
Approach:
WMM and CAC (Call Admission Control) used on controller
Access switch will trust marking from AP (controller based marking)
Switch port attached to Controller will be marked with custom policy
WLC is used to mark WMM based traffic, all other traffic will be marked BE
BRKRST-2501
Cisco Public
204
DSCP
DSCP | Payload
802.11e
DSCP | Payload
802.1p
DSCP | Payload
2
CAPWAP Tunnel
4
CAPWAP Encapsulated
802.11e
DSCP | Payload
802.1p
DSCP
802.11e
DSCP | Payload
802.1p
DSCP | Payload
1 Upper value of mapped DSCP constrained automatically based on WLAN QoS Profile
2 Upper value of mapped 802.1p value constrained by Wired QoS Protocol setting
3 Upper value of mapped 802.1p value constrained by Wired QoS Protocol setting
DSCP directly mapped from arriving packet DSCP
Cisco Public
205
Cisco Public
206
One Network
Corporate
Network
Cisco
Access Point
Internet
Catalyst 3850
Catalyst Switch
Cisco Firewall
LAN Mgmt
Solution
Access Control
Server
WirelessPolicy
Control
One
System
ISE
BRKRST-2501
Identity
Mgmt
Guest
One Management
Server
Prime
NAC
Profiler
Cisco Public
QoS Capabilities
BRKRST-2501
Cisco Public
BRKRST-2501
Cisco Public
209
IOS XE 3.4 S
15.2(2)T
Excess BW
(50% of the line)
policy-map wan_remaining%
<snip>
class Business
bandwidth remaining percent 11
queue-limit 250
class browsing
bandwidth remaining percent 5
service-policy Business-browsing-policy
class class-default
bandwidth remaining percent 24
queue-limit 400
interface Gig X/Y
service-policy output wan_remaining%
*Remove 4% from Business and 1% from class-default based on remarking
BRKRST-2501
Application
BW
Priority
Browsing
5% (Remaining BW)
N/A
Business
Browsing
Business
Other Browsing
Default
Committed BW
(50% of the line)
Class-Default:
Low Priority
25% committed
Browsing:
Business-Browsing: 5% BW
80% of all Browsing
Cisco Public
Remaining
Allocations are
shown in original
policy
210
Cisco Public
Cisco Public
Q&A
BRKRST-2501
Cisco Public
220
BRKRST-2501
Cisco Public