3650 QoS Policing
Hi,
I am trying to do some policing on a 3650 and for some reason, the interface doesn't seem to want to apply my service policy. Here is my config:
class-map match-any ExchangeClass
match vlan 410
policy-map ExchangePolicy
class ExchangeClass
police cir percent 25 conform-action transmit exceed-action drop violate-action drop
I use the command service-policy input ExchangePolicy on the gi1/0/1 interface, I then do a sh run int gi1/0/1 and there is no input service policy shown in the config. Does anybody know why it hasn't applied the service policy? If I use an auto qos input service policy then it seems to apply it.
The log will have a reason as to why is was not applied.
I have the same problem on a 3850 have asked this question:
https://supportforums.cisco.com/discussion/12467066/qos-routed-ports-3850
e.g.
Invalid queuing class-map!!! Queuing actions supported only with dscp/cos/qos-group/precedence based classification!!!
Similar Messages
-
Bandwidth Management(Rate Limit) Using QoS Policies
Hello,
I need some advice. We have an ASA 5525 running version 8.6(1)2 and a 10 MG pipe. I have execs that want to limit bandwidth on users for stuff like youtube, stream media, and downloads. I found the article on ‘Bandwidth Management(Rate Limit) Using QoS Policies’ so it appears our firewall can do what we want. I’m not a cisco person. My knowledge is limited when it comes to configuration – that’s why we have SmartNet :). The advice I need is what to ask for, so to speak, when I put a case in. Can bandwidth be limited on end users and/or can they limit the ‘bandwidth rate limit’ to just youtube, steaming media, and downloads? If so, what should the limit be? and I’m assume this would be for ‘incoming’ traffic only? we’re running into some bandwidth hogs – usually youtube and/or streaming media. We have a Barracuda web filter which we’ve used to block and monitor activity but I simply do not have time to babysit this all day. I should also mention we do have critical data running up and down the pipe; such as credit card processing, DB replication between in house DB and hosted website, TPCx and EDI, FTP, and such that we don’t want restricted.
Need input please,
Thanks,
DHello,
That's a question that you as the network admin of that organization could answer.
How much traffic for business purposes must travel via HTTP/HTTPS?
How much bandwith are you willing to provide to this 2 protocols?
Those are the kind of answers you need to answer before setting the number
Regards
Remember to rate all of the helpful posts, Just click the 5 stars at the left of each post
Julio -
NBAR, Netflow, QoS Policing, 6500s, IOS 12.1(26)E7, and MARS
Hello. I'm having trouble seeing the forest OR the trees, and I'd appreciate some help from someone who has a better field view than myself. We're upgrading our internet connection to 200MB and management is wanting to upgrade our Packet Shaper to meet the new bandwidth. (The Packet Shaper shows top talkers, top protocols, and rate limits protocols or users.) I'm trying to make the argument that we can do this w/ existing tools (nbar, netflow, QoS policing, and MARS), at the same time I'm trying to make the argument that we need to have our supervisors (currently SUP2 MSFC2) on a 3-4 year upgrade cycle.
To get to the 12.2 IOS, I'd require a memory or sup upgrade. What I am hoping for is someone who has gone down this road who knows what I'm lacking in 12.1 code, or if in fact I can do it all here.
While it is self-evident to most in IT why we need to regularly upgrade equipment, I'm having difficulty making this argument to management with hard facts. I'm guessing they'd still be running Windows for Workgroups to save money...but that's another story.
My plan is to use Netflow and MARS to track top users and top protocols. It appears that I lose some mgt functionality w/ MARS in conjunction w/ IOS 12.1, but I am currently unclear if I lose any tracking capability. (MARS is new to us and awaiting install.)
Then, I hope to use NBAR to identify all the latest P2P traffic and police it appropriately w/ QoS tools.
Does my thinking sound solid? Will I be able to pull this off w/ 12.1? If not, what do I need that I lack in 12.1?
Thank you for your time,
JoshuaHi,
First of all - you need to be clear that although MARS uses netflow data, it uses it for the purpose of identifying security issues. If you want to use netflow for reporting and/or accounting purposes MARS isn't the tool you need, try one of the following freeware netflow tools:
http://www.cisco.com/warp/public/732/Tech/nmp/netflow/partners/freeware/index.shtml
or one of the following commercial tools:
http://www.cisco.com/warp/public/732/Tech/nmp/netflow/partners/commercial/index.shtml
The freeware ones are generally more difficult to set up but once running are just as good as the commercial ones.
However, this means you need two netflow destinations - one for MARS and one for your netflow tool, and this feature is called "Netflow Multiple Export Destinations" and initially appeared at 12.1(3)T, but it seems to be VERY platform specific - for example, because we only run GD software on our 3660's we had to upgrade to 12.3(20) to get it.
Looking at the Feature Navigator for SUP2/MSFC2 it appears that you need at least 12.2(18)SXF6 to get this feature so that might help your case.
I'd personally keep the PacketShaper for it's reporting capability if nothing else (IOS can do the job, but not as elegantly as the PacketShaper).
HTH - plz rate if useful.
Andrew. -
How do people manage QoS Policies in large network without using QPM
We are using QPM to manage QoS polices however we are looking at decommissioning CiscoWorks. How are people managing with their QoS settings in large environments?
I have no idea about the modem and bridge mode (I don't do networking -- hopefully Bob Timmons, Tesserax, or one of the other networking gurus will drop in and address that).
But . . . you should be able to back up to the TC as long as it's on your network and recognized by your Macs. I think being in bridge mode means it will be rather slow, but it should work. Until/unless we hear otherwise, you might want to see #Q1 in Using Time Machine with a Time Capsule. -
Cisco 3650 QoS design: "mls QoS" not supported
Dear colleagues,
I am currently testing a Cisco 3650 for various catalogue items. One key feature that we use on almost all our catalogue items, is Quality of Service (QoS).
On the old Cisco 3560 and 3750, we use "mls qos" and related commands. We use numbered ACLs for untrusted QoS policy that sits on the LAN / ingress port. I have raised a TAC case for this issue but is there a tool to help me convert the "mls QoS" design on the old 3560 platform to the new 3650 platform where "mls qos" is not supported?
Many thanks.Hi,
The new 3650 runs IOS-XE and the older Cisco 3560 and 3750 run IOS. So the QOS architecture on the new 3650 is different.
here is the link to the qos config for the 3650:
http://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst3650/software/release/3se/qos/configuration_guide/b_qos_3se_3650_cg/b_qos_3se_3650_cg_chapter_011.html
HTH -
Hello,
Here is the config for Catalyst 3560 found under the link below.
I would like to do same setting on Catalyst 3850.
http://itknowledgeexchange.techtarget.com/network-engineering-journey/how-to-configure-per-vlan-qos-in-cisco-3550-and-3560/
mls qos
interface fa0/2
mls qos vlan-based
class-map INT
match input-interface fa0/2
policy-map NESTED_POLICE
class INT
policy 12800 1600 exceed-action drop
class-map HTTP
match protocol http
policy-map PARENT_MARK
class HTTP
set dscp af11
service-policy NESTED_POLICE
interface vlan 10
service-policy input PARENT_MARK
But commands like "mls qos", "mls qos vlan-based" and "match input-interface " doesn't work on 3850.
There is no helpful Cisco manual for it.
Could anyone help me?
Thanks in advance,
TaroHello Paul,
Thank you for the attention.
Here is the information.
#sh ver
Cisco IOS Software, IOS-XE Software, Catalyst L3 Switch Software (CAT3K_CAA-UNIVERSALK9-M), Version 03.02.01.SE RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2013 by Cisco Systems, Inc.
Compiled Wed 20-Mar-13 17:10 by prod_rel_team
Cisco IOS-XE software, Copyright (c) 2005-2013 by cisco Systems, Inc.
All rights reserved. Certain components of Cisco IOS-XE software are
licensed under the GNU General Public License ("GPL") Version 2.0. The
software code licensed under GPL Version 2.0 is free software that comes
with ABSOLUTELY NO WARRANTY. You can redistribute and/or modify such
GPL code under the terms of GPL Version 2.0.
(http://www.gnu.org/licenses/gpl-2.0.html) For more details, see the
documentation or "License Notice" file accompanying the IOS-XE software,
or the applicable URL provided on the flyer accompanying the IOS-XE
software.
ROM: IOS-XE ROMMON
BOOTLDR: C3850 Boot Loader (C3850-HBOOT-M) Version 1.1, RELEASE SOFTWARE (P)
SW01 uptime is 21 weeks, 6 days, 14 hours, 27 minutes
Uptime for this control processor is 21 weeks, 6 days, 14 hours, 30 minutes
System returned to ROM by reload at 22:27:58 JST Wed Jan 8 2014
System restarted at 22:27:52 JST Wed Jan 8 2014
System image file is "flash:packages.conf"
Last reload reason: Reload command
This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.
A summary of U.S. laws governing Cisco cryptographic products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html
If you require further assistance please contact us by sending email to
[email protected].
License Level: Ipservices
License Type: Permanent
Next reload license Level: Ipservices
cisco WS-C3850-24T (MIPS) processor with 4194304K bytes of physical memory.
Processor board ID FOC1717V01B
24 Virtual Ethernet interfaces
56 Gigabit Ethernet interfaces
8 Ten Gigabit Ethernet interfaces
2048K bytes of non-volatile configuration memory.
4194304K bytes of physical memory.
250456K bytes of Crash Files at crashinfo:.
250456K bytes of Crash Files at crashinfo-2:.
1609272K bytes of Flash at flash:.
1609272K bytes of Flash at flash-2:.
0K bytes of Dummy USB Flash at usbflash0:.
0K bytes of Dummy USB Flash at usbflash0-2:.
0K bytes of at webui:.
Base Ethernet MAC Address : 44:ad:d9:6d:4e:00
Motherboard Assembly Number : 73-12238-06
Motherboard Serial Number : FOC17163HB8
Model Revision Number : B0
Motherboard Revision Number : D0
Model Number : WS-C3850-24T
System Serial Number : FOC1717V01B
Switch Ports Model SW Version SW Image Mode
1 32 WS-C3850-24T 03.02.01.SE cat3k_caa-universalk9 INSTALL
2 32 WS-C3850-24T 03.02.01.SE cat3k_caa-universalk9 INSTALL
Switch 02
Switch uptime : 21 weeks, 6 days, 14 hours, 31 minutes
Base Ethernet MAC Address : 20:bb:c0:01:86:80
Motherboard Assembly Number : 73-12238-06
Motherboard Serial Number : FOC17163HCM
Model Revision Number : B0
Motherboard Revision Number : D0
Model Number : WS-C3850-24T
System Serial Number : FOC1717V01K
Configuration register is 0x102
SW01#sh sdm prefer
Showing SDM Template Info
This is the Advanced template.
Number of VLANs: 4094
Unicast MAC addresses: 32768
Overflow Unicast MAC addresses: 512
IGMP and Multicast groups: 8192
Overflow IGMP and Multicast groups: 512
Directly connected routes: 32768
Indirect routes: 8192
Security Access Control Entries: 3072
QoS Access Control Entries: 2816
Policy Based Routing ACEs: 1024
Netflow ACEs: 1024
Input Microflow policer ACEs: 256
Output Microflow policer ACEs: 256
Flow SPAN ACEs: 256
Tunnels: 256
Control Plane Entries: 512
Input Netflow flows: 8192
Output Netflow flows: 16384
These numbers are typical for L2 and IPv4 features.
Some features such as IPv6, use up double the entry size;
so only half as many entries can be created. -
Apply QoS policies to MPLS interfaces
Hello all,
We are deploying an MPLS transport network for our research project, and we are getting undefined errors about the QoS application over tunnel interfaces. The tunnel interfaces are those we configure between end points.
For example, if we apply a rate-limit to a tunnel interface, this is not applied, although the router anc CLI let configure the policy.
Does anybody know how to manage this kind of policies or shaping to MPLS?
Thanks for your help.Hello,
No, in fact, what we want to configure is output policies. For example, at the ingress LER of the MPLS cloud, we receive some traffic that we set it as an specific class of service, for example, "interactive traffic". Once the traffic is classified, we route it to the correct output tunnel interface, i.e., to the next LSR. It's at that interface where we want to set the policy, so.
When we set the policy, with the "service-policy output tunnel0", for example, the CLI doesn't return any message of error. In fact, it lets to configure it, and if we use the command "show policy-map interface tunnel0", CLI returns the configuration of the policy at that interface.
Thanks for your help. -
CoS or DSCP based QoS Policies
I have to configure QoS on a VSS with the following modules installed:
Switch Number: 1 Role: Virtual Switch Active
Mod Ports Card Type Model Serial No.
1 48 CEF720 48 port 1000mb SFP WS-X6848-SFP SAL16042610
3 48 CEF720 48 port 10/100/1000mb Ethernet WS-X6848-GE-TX SAL16095Y48
4 48 CEF720 48 port 10/100/1000mb Ethernet WS-X6848-GE-TX SAL16095Y3F
5 5 Supervisor Engine 2T 10GE w/ CTS (Acti VS-SUP2T-10G SAL1543TRQ9
9 8 DCEF2T 8 port 10GE WS-X6908-10G SAL1539QYTC
Mod MAC addresses Hw Fw Sw Status
1 c464.1341.7a50 to c464.1341.7a7f 1.0 12.2(18r)S1 15.0(1)SY4 Ok
3 0007.7df7.4618 to 0007.7df7.4647 1.0 12.2(18r)S1 15.0(1)SY4 Ok
4 442b.0311.4a58 to 442b.0311.4a87 1.0 12.2(18r)S1 15.0(1)SY4 Ok
5 7081.0583.88e8 to 7081.0583.88ef 1.1 12.2(50r)SYS 15.0(1)SY4 Ok
9 0007.7d90.a1a0 to 0007.7d90.a1a7 1.1 12.2(50r)SYL 15.0(1)SY4 Ok
Mod Sub-Module Model Serial Hw Status
1 Distributed Forwarding Card WS-F6K-DFC4-A SAL16085BLE 1.2 Ok
3 Distributed Forwarding Card WS-F6K-DFC4-A SAL16085BLL 1.2 Ok
4 Distributed Forwarding Card WS-F6K-DFC4-A SAL16095GH7 1.2 Ok
5 Policy Feature Card 4 VS-F6K-PFC4 SAL1544UAL2 1.1 Ok
5 CPU Daughterboard VS-F6K-MSFC5 SAL1544UB95 1.1 Ok
9 Distributed Forwarding Card WS-F6K-DFC4-E SAL1529K4QC 1.0 Ok
On Cat6500 with SUP 2T and PFC4 QoS is enabled by default.
DSCP is trusted and preserved by default, independent of port state.
CoS is preserved by default for Layer 2 packets by default, independent of port state.
Additional Info about the queuing on the modules installed:
SUP 2T 10G - with Gigabit Ethernet Ports enabled it works CoS-based, with this interfaces disabled it works DSCP-based.
WS-X6848-GE-TX an WS-X6848-SFB works CoS-based, does not support DSCP-based queuing.
WS-X6908-10G - supports DSCP-based queuing
The options now are:
1) All policies CoS-based although the WS-X6980-10G supports DSCP-based queuing.
2) Policies for SUP and WS-X6848 CoS-based and the policies for the WS-X6908 DSCP-based
3) Disable Gigabit Ethernet Interfaces on the SUP hence it supports DSCP-based queuing policies, also use DSCP-based policies for the WS-X6908 and use CoS-based queuing policies for the WS-X6848.
The recommendation in the core is to use DSCP-based QoS.
The question is what to do?
Option 1) Less complexity and simpler configuration if only CoS-based policies are used.
Option 2) Least configuration necessary, mixture of CoS and DSCP-based policies
Option 3) Gigabit Ethernet ports on SUP have to be disabled, uses then DSCP-based queuing on all supported modules and CoS-based policies on all other modules.You don't trust "to" a device, only from.
The advice I've gotten from switching guys is "If you're not sure - just trust DSCP".
If you try to trust cos on an access port where there is no VLAN header, there is no cos, and you can have problems.
If you have a trunk to another switch, you can trust cos and you shouldn't have any problems.
hth,
nick -
ES+ LLQ elastic QoS -- Policing
Dears
Would like your assistance please regarding ES+ LLQ QoS
As you know with SIP cards, when you configure LLQ you don't need to configure policing with priority command. So behavior in case of congestion that LLQ voice packets will only get their assigned BW however when there is no congestion, LLQ voice packets can exceed their assigned BW.
With ES+ configuration is not accepted till you configure policing command. So this means even in case of no congestion LLQ voice can not exceed their assigned BW
Now question, is there a way to have elastic LLQ style as that of SIP cards ?
Many Thanks
Regards
Sherif IsmailHi Sherif Ismail,
as some time has passed without any answer, have you found a solution in between? I'm having the same problem and I fear there is no workaround available.
Regards
Pille -
Is it possible to police traffic to 0bit/s?
Is it possible to attach a service policy to a vlan interface?Hi Ed,
This is not typical of the switch. First, please ensure the switch is on at least the 1.1.2.0 firmware, this is the most stable release. There is a new release as of this week 1.2.7.76 if you'd like to give this a go as well. After the firmware flash/upgrade, factory reset the unit.
I would recommend to start with layer 1 and layer 1 related settings. Such as port negotiation. If you check the port management, are you negotiation 10, 100, 100, full or half duplex? Do you see any kind of port flapping on the log? (link up, link down for any of the ports).Can you try to disable the EEE (energy efficient ethernet) globally and on the interface settings? If you go to the smart port section and go to interface setting, does it appear the smart port negotiated anything with the modem?
-Tom -
QoS Police on 3945 router not working
I am trying to police backup traffic between data centers on a 3945 router. I want to limit the amount of traffic to 40 Mbps. I have created a policy and applied on input to the Ethernet WAN facing interface of the router.
Configuration looks like this:
class-map match-any commvault
match access-group name commvault
policy-map police
class commvault
police rate 40000000 burst 20000
conform-action set-dscp-transmit af13
exceed-action drop
violate-action drop
interface GigabitEthernet0/1
service-policy input police
Show policy map interface below. The problem is that all packets are being marked as conforming even though the byte rate is well above 40 Mbps. I'm not sure if this is a configuration issue or a bug or something that just isn't supported on this router.
GigabitEthernet0/1
Service-policy input: police
Class-map: commvault (match-any)
2807844 packets, 225300484 bytes
30 second offered rate 1162000 bps, drop rate 0000 bps
Match: access-group name commvault
2807844 packets, 225300484 bytes
30 second rate 1162000 bps
police:
rate 40000000 bps, burst 20000 bytes, peak-burst 20000 bytes
conformed 2807844 packets, 225300484 bytes; actions:
set-dscp-transmit af13
exceeded 0 packets, 0 bytes; actions:
drop
violated 0 packets, 0 bytes; actions:
drop
conformed 1162000 bps, exceeded 0000 bps, violated 0000 bps
Class-map: class-default (match-any)
8824278 packets, 1864242262 bytes
30 second offered rate 14071000 bps, drop rate 0000 bps
Match: anyDisclaimer
The Author of this posting offers the information contained within this posting without consideration and with the reader's understanding that there's no implied or expressed suitability or fitness for any purpose. Information provided is for informational purposes only and should not be construed as rendering professional advice of any kind. Usage of this posting's information is solely at reader's own risk.
Liability Disclaimer
In no event shall Author be liable for any damages whatsoever (including, without limitation, damages for loss of use, data or profit) arising out of the use or inability to use the posting's information even if Author has been advised of the possibility of such damage.
Posting
Where do you see the byte rate (for this class) exceed 40 Mbps? You have a snapshot stat of that?
You're policing WAN ingress? -
Hi,
I'm trying to setup QoS policing to limit bandwith for some protocols. I'm using a 881 router.
I just want to police the traffic for the protocols and configured this:
class-map filetransfer
match protocol itunes
match protocol bittorrent
match protocol ftp
policy-map qos_filetransfer
class filetransfer
police 100000
conform-action transmit
exceed-action drop
int f4
service-policy input qos_filetransfer
service-policy output qos_filetransfer
But when I'm testing to download a file with ftp the traffic is not limited.
If I run: sh ip nbar protocol-discovery stats bit-rate top-n 10, I can see the ftp traffic:
FastEthernet4
Last clearing of "show ip nbar protocol-discovery" counters 00:05:03
Input Output
Protocol 5min Bit Rate (bps) 5min Bit Rate (bps)
ftp 3340000 104000
stun-nat 14000 97000
ipsec 1000 1000
icmp 0 1000
isakmp 0 0
dns 0 0
skype 0 0
unknown 0 1000
Total 3355000 204000
If i run: sh policy-map interface f4
FastEthernet4
Service-policy input: qos_filetransfer
Class-map: filetransfer (match-all)
0 packets, 0 bytes
5 minute offered rate 0000 bps, drop rate 0000 bps
Match: protocol itunes
Match: protocol bittorrent
Match: protocol ftp
police:
cir 100000 bps, bc 3125 bytes
conformed 0 packets, 0 bytes; actions:
transmit
exceeded 0 packets, 0 bytes; actions:
drop
conformed 0000 bps, exceeded 0000 bps
Class-map: class-default (match-any)
96296 packets, 139493940 bytes
5 minute offered rate 3050000 bps, drop rate 0000 bps
Match: any
Service-policy output: qos_filetransfer
Class-map: filetransfer (match-all)
0 packets, 0 bytes
5 minute offered rate 0000 bps, drop rate 0000 bps
Match: protocol itunes
Match: protocol bittorrent
Match: protocol ftp
police:
cir 100000 bps, bc 3125 bytes
conformed 0 packets, 0 bytes; actions:
transmit
exceeded 0 packets, 0 bytes; actions:
drop
conformed 0000 bps, exceeded 0000 bps
Class-map: class-default (match-any)
59355 packets, 7299832 bytes
5 minute offered rate 161000 bps, drop rate 0000 bps
Match: any
Seems that the Class-map class-default are matching the packets, but I have not configured any class-defaults.
Please advice what to do.
ThanksHi,
Tested but can't get it to work.
I have tested:
class-map filetransfer
match protocol itunes
match protocol bittorrent
match protocol ftp
match any
and:
class-map match-all filetransfer
match protocol itunes
match protocol bittorrent
match protocol ftp
match any
and:
class-map match-any filetransfer
match protocol itunes
match protocol bittorrent
match protocol ftp
match any
I still get full bandwith when downloading a file with ftp from internet --> a computer on vlan1
Any more idea?
router#sh policy-map interface f4
FastEthernet4
Service-policy input: qos_filetransfer
Class-map: filetransfer (match-all)
0 packets, 0 bytes
5 minute offered rate 0000 bps, drop rate 0000 bps
Match: protocol itunes
Match: protocol bittorrent
Match: protocol ftp
Match: any
police:
cir 100000 bps, bc 3125 bytes
conformed 0 packets, 0 bytes; actions:
transmit
exceeded 0 packets, 0 bytes; actions:
drop
conformed 0000 bps, exceeded 0000 bps
Class-map: class-default (match-any)
260290 packets, 385289380 bytes
5 minute offered rate 6399000 bps, drop rate 0000 bps
Match: any
Service-policy output: qos_filetransfer
Class-map: filetransfer (match-all)
0 packets, 0 bytes
5 minute offered rate 0000 bps, drop rate 0000 bps
Match: protocol itunes
Match: protocol bittorrent
Match: protocol ftp
Match: any
police:
cir 100000 bps, bc 3125 bytes
conformed 0 packets, 0 bytes; actions:
transmit
exceeded 0 packets, 0 bytes; actions:
drop
conformed 0000 bps, exceeded 0000 bps
Class-map: class-default (match-any)
163215 packets, 16962903 bytes
5 minute offered rate 283000 bps, drop rate 0000 bps
Match: any -
QoS group policy in UCCE 9.0 getting refreshed
Hello,
We upgraded a couple clients onto our HCS environment. Since we have had a couple outages where the A side loses connection with the B side. Normally this is related to some network interruption and it appears that way in the logs. However when I look in the system event viewer on the call server I see the following:
Log Name: System
Source: Tcpip
Date: 2/10/2014 6:39:07 PM
Event ID: 16501
Task Category: None
Level: Information
Keywords: Classic
User: N/A
Computer: USPHXXXXX
Description:
Computer QoS policies successfully refreshed. Policy changes detected.
AND
The Advanced QoS Setting for inbound TCP throughput level successfully refreshed. Setting value is not specified by any QoS policy. Local computer default will be applied.
I can match these up before every outage. As you guys know after 8.5 Cisco switched from packet scheduler based qos to the group policy. So I'm wondering if anyone else has seen this in 9.0. The first time I thought maybe it was coeincedence but since have seen it on other outages on completely seperate instances. The thing I wonder is if this is just an affect of an outage but I see this before is loses connection to the call server's duplexed partner. So believe it may actually be the cause.Yes eventually we did after bringing up the firmware, adapter driver, bios. Here is a chart I made for different C-series. Disregard column 2.
C-Series CIMC
C210-M2 Broadcom NIC driver version does not match required version for UCS release 1.4.3j
Interoperability and stability issues
Confirm with Cisco TAC then update to versions
Adapter Driver = 2.2.1l.v50.1
Adapter Firmware = 6.0.0
Boot Code / BIOS = 6.4.4
C-Series CIMC
C210-M1 Intel Onboard NIC driver version does not match required version for UCS release 1.4.3j
Interoperability and stability issues
Confirm with Cisco TAC then update to versions
Adapter Driver = 2.1.11.1
Adapter Firmware = 1.4-3
Boot Code / BIOS = 1.3.35
C-Series CIMC
C240-M3 Intel NIC driver version does not match required version for UCS 1.5.1f
Interoperability and stability issues
Confirm with Cisco TAC then update to versions
Adapter Driver = 4.0.17
Adapter Firmware = 1.6-1
Boot Code / BIOS = v1.3.98
C-Series CIMC
C240-M3 Intel NIC driver version does not match required version for UCS 1.5.3
Interoperability and stability issues
Confirm with Cisco TAC then update to versions
Adapter Driver = 4.2.16.3
Adapter Firmware = 1.6-3
Boot Code / BIOS = v1.5.04 -
Convert Qos commands from CATOS to IOS
Hello,
i've some problems converting some Qos commands from CATos to IOS can anybody help me?
set qos drop-threshold 1q4t rx queue 1 50 60 80 100
set qos map 2q2t tx 1 1 cos 0
set qos map 1p1q4t rx 1 3 cos 4
set qos wrr 1p2q2t 50 255
set qos txq-ratio 1p2q2t 70 15 15
set qos wred 1p2q2t tx queue 1 70:100 70:100
set qos bridged-microflow-policing disable 1,50-54,100-121,500,700-702,1006-1011,1016
set qos policed-dscp-map 1:1
set qos policed-dscp-map excess-rate 0:0
set qos acl default-action ip dscp 0
set qos acl default-action ipx
set qos acl default-action mac
set qos policy-source local
set qos rsvp disable
set qos rsvp policy-timeout 30
set qos rsvp local-policy forward
!Module with GE interfaces
set port qos 3/1-16 cos 0
set port qos 3/1-16 trust trust-cos
set port qos 3/1-16 port-based
set port qos 3/1-16 policy-source local
set qos statistics export port 3/1 disable
set qos statistics export port 3/2 disable
set qos statistics export port 3/3 disable
set qos statistics export port 3/4 disable
set qos statistics export port 3/5 disable
set qos statistics export port 3/6 disable
set qos statistics export port 3/7 disable
set qos statistics export port 3/8 disable
set qos statistics export port 3/9 disable
set qos statistics export port 3/10 disable
set qos statistics export port 3/11 disable
set qos statistics export port 3/12 disable
set qos statistics export port 3/13 disable
set qos statistics export port 3/14 disable
set qos statistics export port 3/15 disable
set qos statistics export port 3/16 disableThis URL should help you:
http://www.cisco.com/warp/public/473/73.html -
Hi,
I'm trying to implement policer on Cat 6500 running CatOS 8.4.
The configuration is as such:
set qos enable
set port qos 1/7 vlan-based
set qos policer aggregate 2Mbps rate 2000 policed-dscp erate 2000 drop burst 26 eburst 26
set qos acl mac vlan10 dscp 0 aggregate 2Mbps any any
commit qos acl all
set qos acl map vlan10 10
Port 1/7 is in trunking mode that's why I'm using MAC ACL.
But nothing is working. The output of the command 'show qos statistics aggregate-policer 2Mbps' is:
QoS aggregate-policer statistics:
Aggregate policer Allowed byte Bytes exceed
count excess rate
2Mbps 0 0
I tried to use port-based QoS with no success.
Am I doing something wrong? Any help will be appreciated.Ooops, thanks for the reminder.
I configured IP ACL but again the output was the same.
I changed the policer to port-based and it worked.
Is this something to do with the fact that the port is in trunking mode?
Maybe you are looking for
-
Start up problems resolved, now what ?
Hi chaps, for some reason I've had a mare of an afternoon, I had a bit of a crash, beachball spinning and nothing would force quick so I held down the button and eventually I got the grey screen and then it went to black, this happened several times
-
Upgrade from 8i to 9i using Database Upgrade Assistant
Hi I installed 9i on a server that already has an 8i database. I am trying to use the upgrade assistant in 9i to convert the database to 9i. After selecting the 8i db, I get dialog saying 'Getting databse information. Please wait..' then error 'ORA-1
-
Cannot connect to SGD server via proxy
Hello We have a recently installed SGD server running. Some clients have been setup today with accounts to access it but none of them can get on at the moment. The error message presented is as follows: Cannot connect to the server sgd.ourdomain.co.u
-
Window pops up saying can not complete request data base error, disk is full
Window pops up saying can not complete request data base error, disk is full
-
11g on Win2k8R2 - ORA-12560 - Database up but not reachable
Hello, i've got a serious issue with a production database which affects about 500 users. I already created a SR but by now i got no answer and i thought maybe someone here got an idea. What i did: - Installed Windows Updates via WSUS Offline - Reboo