6500 Sup 2T Etherchannel DSCP marking
Good Morning,
We are in the middle of a CUCM deployment and on the 6500 I need to set a DSCP or COS value on egress for the CUCM servers. So far I have not found the correct way to set the DSCP. I have attempted to create a service policy and apply it to the physical ports (and I tried the etherchannel just for kicks) and I get the following error:
Policy can not be installed because interface GigabitEthernet2/12 is a member of Port-channel
MQC features are not supported for this interface
How do I correctly set the DSCP value to EF on egress on these ports or the port-channel?
Thank you in advance for your assistance.
Justin
Hi Jon
Many thanks
I'm using vlan based QOS because later I'll add more vlans to the configuration, this is just initially to see how to use the QOS function on the 6500 - later we'll use this with more vlans. Essentially the port that is currently gi1/1 may later be a truck port with 10+ vlan's bound to it (with associated vlan interfaces on the 6500).
Data arriving from the Server to the 6500 most likely won't have any or valid dscp markings,
allvoip is currently simplified just for icmp traffic for testing - so it's looking like this:
class-map match-all allvoip
match access-group 100
access-list 100 permit icmp any any
What is just concerning me is that when I have a continuous ping running I'm getting deltas in the ping times when I have other data downloading off gi1/1 (which makes me think the strict priority queue isn't quite right).
If I can ask, if I wanted to rate limit the data on vlan6 (say limit the data to 10Mbit) and still also do marking in dscp to enable allocation to the differnet egress queues do you have any suggestions? I can use a police statement classes on the policy-map but I don't really want to police each class seperately
kind of like
vlan 6 entire capacity policed to 10mbit
then inside that
allvoip marked EF (and then assigned COS 5 and 1P)
etc etc
cheers
Mark
Similar Messages
-
QoS: make switch to trust PC's DSCP marking
Hi,
As you all know, it's possible to override 802.1p/CoS field coming from PC attached to Catalyst switch.
This is accomplished in 2 (two) ways:
- either by '(config-if)# mls qos trust extend cos <value>'
- or via '(config-if)# switchport priority extend cos <value>'
But what about to make Cisco IP Phone to trust PC's DSCP marking ? Is this possible ?
P.S.
Can you also explain, why there 2 (two) flavors of CLI to allow switch to trust to PC's 802.1p marking ?
Thanks.Tobi,
the PC basically send untagged frames to the switch, these will normally be send as CoS=0.
the following link has some scenarios for you
http://www.cisco.com/en/US/partner/products/hw/switches/ps5023/products_tech_note09186a0080883f9e.shtml#cg211
I think you will find example 6 usefull -
6500 sup 720 with MPLS, GRE and FWSM problem
We have 6500 sup 720 with MPLS configured and FWSM in transparent mode. We also terminate GRE tunnels on the same 6500.
After implementing the command “mls mpls tunnel-recir” GRE tunnels are hardware switched (which we want them to be), but we don’t have any more connection from locations thru GRE tunnels to servers behind FWSM.
Does anybody have idea how to solve this problem?Hi,
not sure what you mean exactly.
the command “mls mpls tunnel-recir” is needed to avoid packets corruption in cases where the Supervisor engine is handling both the GRE header encapsulation and the MPLS label stack imposition. Since it cannot do it in one single shot (without causing random corruption) recirculation is needed. Nevertheless its presence does not influence whether the GRE traffic is handled in hardware or in software. Even without it, IF THE GRE TUNNELS ARE CORRECTLY CONFIGURED (meaning that each GRE tunnels has its unique source address etc.), the traffic is handled in hardware.
However since you say that after you enabled it you don't have connectivty anymore I suppose that some issue related to recirculation is happening (i.e. traffic ends up in the wrong internal vlan after recirculation).
Unfortunately the support forum is not meant to help in this case as in-depth troubleshooting is required. For that you need a TAC case.
regards,
Riccardo -
DSCP marking for non WMM-clients
hello,
i just made several tries but didn´t find the result which i expected. i have the following scenario:
non WMM-clients in branches in our WAN
traffic over the wan line must be shaped
there is no local breakout, the traffoic should be tunneled to the central datacenter
so what i want to achieve is that every traffic from this non WMM-clients (which are using a special SSID (i call it here "EXTERNAL")) is getting marked in that way that the CAPWAP-packets are holding dscp-values so that i can refer on these packets beforer they are going over the WAN-connection
what i did:
the ssid uses the QOS-Profile "bronze"
WMM is disabled
the QOS-Profile itself has 802.1p enabled with a value of 1
so i expected that every traffic via this ssid "EXTERNAL" gets a dscp marking in the capwap packet of 10 (perhaps also 12 or 14, i´m not sure whcih value really is used). in reality i see 0.
i´m using Wismv1 with version 7.0.230. i also tried it with 5508 with the same version but it didn´t work. APs are 1142.
is my expectation wrong that this scenario is working in this way? do i forget something??
thanks for your helpThe WLAN can only re-mark client traffic that has existing DSCP values in the original packet, typically at the application layer. The platinum profile itself has 46 as VoWLAN, 48 as Mgmt traffic (CAPWAP etc), and 56 as network traffic, classifying them as such based on the original marking. The values are only remarked if the configured SSID is different.
This link provides a few more details:
http://www.cisco.com/en/US/tech/tk722/tk809/technologies_configuration_example09186a00807e9717.shtml -
6500 Egress Polcing & Etherchannels
Hi,
Am I correct in thinking that it is not possible to configure egress policing on an EtherChannel, on a 6500 VS720? I can't find any docuementation that says it is not supported...Thanks,
PeteHi Jon
Many thanks
I'm using vlan based QOS because later I'll add more vlans to the configuration, this is just initially to see how to use the QOS function on the 6500 - later we'll use this with more vlans. Essentially the port that is currently gi1/1 may later be a truck port with 10+ vlan's bound to it (with associated vlan interfaces on the 6500).
Data arriving from the Server to the 6500 most likely won't have any or valid dscp markings,
allvoip is currently simplified just for icmp traffic for testing - so it's looking like this:
class-map match-all allvoip
match access-group 100
access-list 100 permit icmp any any
What is just concerning me is that when I have a continuous ping running I'm getting deltas in the ping times when I have other data downloading off gi1/1 (which makes me think the strict priority queue isn't quite right).
If I can ask, if I wanted to rate limit the data on vlan6 (say limit the data to 10Mbit) and still also do marking in dscp to enable allocation to the differnet egress queues do you have any suggestions? I can use a police statement classes on the policy-map but I don't really want to police each class seperately
kind of like
vlan 6 entire capacity policed to 10mbit
then inside that
allvoip marked EF (and then assigned COS 5 and 1P)
etc etc
cheers
Mark -
5508 WLC-6500 Series Switch Etherchannel
Hi,
I have a 5508 controller connected to a 6500 VSS pair. Below is the port channel configuration and port configuration. I am just wondering whether we still have to configure a load balancing method as cisco recommends “port-channel load-balance src-dst-ip” as best practice.
Does this still applicable for 5508 controller-6500 Series uplink as the etherchannel is L2 etherchannel?
Port Channel Config:
interface Port-channel1
description To 5508 WLC
switchport
switchport trunk encapsulation dot1q
switchport trunk native vlan 9
switchport trunk allowed vlan 10,11,12
switchport mode trunk
mls qos trust dscp
end
Interface Config:
interface GigabitEthernet1/1/42
description To 5508 WLC
switchport
switchport trunk encapsulation dot1q
switchport trunk native vlan 9
switchport trunk allowed vlan 10,11,12
switchport mode trunk
wrr-queue bandwidth 5 25 70
wrr-queue queue-limit 5 25 40
wrr-queue random-detect min-threshold 1 80 100 100 100 100 100 100 100
wrr-queue random-detect min-threshold 2 80 100 100 100 100 100 100 100
wrr-queue random-detect min-threshold 3 50 60 70 80 90 100 100 100
wrr-queue random-detect max-threshold 1 100 100 100 100 100 100 100 100
wrr-queue random-detect max-threshold 2 100 100 100 100 100 100 100 100
wrr-queue random-detect max-threshold 3 60 70 80 90 100 100 100 100
wrr-queue cos-map 1 1 1
wrr-queue cos-map 2 1 0
wrr-queue cos-map 3 1 4
wrr-queue cos-map 3 2 2
wrr-queue cos-map 3 3 3
wrr-queue cos-map 3 4 6
wrr-queue cos-map 3 5 7
mls qos trust dscp
channel-group 1 mode on
endHello,
Please check to following link regarding load balancing between 5508 and WLC 6500:
http://www.learnios.com/viewtopic.php?f=5&t=34555 -
I'm trying to set DSCP flags in traffic from ACE 4710 to clients. Unfortunatly it doesn't seem to work this way:
class-map type http loadbalance match-any URL-AF21
2 match http url /aaa/.*
4 match http url /bbb/.*
policy-map type loadbalance http first-match LB-WITH-DSCP
class URL-AF21
set ip tos 72
serverfarm MyServerFram
class default
set ip tos 0
serverfarm MyServerFram
Traffic from ACE to Real Server is tagged but not traffic from ACE to clients.
Any idea which config might work ?Hi,
If we are setting the TOS Bit in the Policy map, as in you are doing it, ToS Bit will only get set in the ACE to Server Leg of connection. Ace will not set the value for the traffic returning back to Clients.
The way around to this situation is to set the TOS bit via the parameter map and then call it under the class in multimatcg policy. In this way you will have the TOS bit set for both direction of the traffic (From ACE to Server and from ACE to client. The down side of this approach will be that you won't be able to use it for a specific class of traffic.
If you are interested in applying the TOS bit for the whole flows hitting a VIP then please follow this configuration example.
parameter-map type connection SET_TOS
set ip tos 72
Regards,
Kanwal
Note: Please mark answers if they are helpful. -
WLC 5508 - management frames without DSCP marking
hello,
we are facing an issue that our wireless lan controller (5508 with version 7.6.100) doesn´t mark management frames (e.g. reassociation repsonse - necessary for roaming) with CS6. therefore some of them are dropped leaving the clients not to roam...
does anybody have an idea? in my view it can only be a biug because it´s noit possible to reconfigure this....
thxwe are seeing managemt frames getting marked on Wism. i strongly believe they were marked in the past also on 5508. moreover frames are getting marked when they arinitiated by the AP
if we trust CoS frames are getting marked because it contains the dot1p tag. the switch generates the dscp-value out of it. but we want to trust dscp.
we see also a very strange behaviour when trusting COS that sometimes a reassociation request has dot1p value 2 and the next one has 5. so it seems that the tag is there, but not working properly.
changing to CoS in general would mean testing the whole infrastructure for voip over wireless lan again. and i don´t want to do that -
HWIC-4ESW capable of DSCP marking?
Hello. Does anyone know if the HWIC-4ESW card is capable of classifying traffic and marking DSCP values on those packets?
Thanks,
MikeHello Mike,
this is from the relevant Q&A: QoS to DSCP mapping is supported:
Q. What features are supported on the Cisco EtherSwitch HWICs?
A. The following features are supported on the Cisco EtherSwitch HWICs:
Up to 15 individual VLANs per 4- or 9-port Cisco EtherSwitch HWIC
IEEE 802.1Q tagged and untagged VLANs
Virtual Trunking Protocol (VTP) support for client, server, and transparent modes
Layer 2 MAC-related feature support:
Secure MAC addresses
Static and Dynamic MAC addressing
2000 MAC addresses
Port application support
SPAN port monitoring
Per-port storm control for broadcasts, unicasts, and multicasts
QoS feature support
IEEE 802.1p class-of-service (CoS) priority for 802.1Q tagged frame
Port-based priority for native frames
Port priority to overwrite the IEEE 802.1p priority
Strict priority and Weighted Round Robin CoS policies
CoS-to-differentiated services code point (DSCP) mapping
Internet Group Management Protocol (IGMP) snooping
Network Time Protocol (NTP) support
IEEE 802.1D spanning tree and Spanning Tree Protocol PortFast
Secure port filtering (200 secure MAC addresses)
Simple Network Management Protocol (SNMP) support
Telnet client and server support
Cisco Discovery Protocol Versions 1 and 2 support
Fallback bridging
802.1x authentication
IEEE 802.3af-compliant PoE
Q. What features are not supported on the 4- and 9-port Cisco EtherSwitch HWICs?
A. The following features are not supported on the Cisco EtherSwitch HWICs:
Layer 3 switching (this is done through the router)
Dynamic VLAN for access port
VTP pruning
Network port
Routed port
Per-port enabling and disabling of unknown multicast and unicast packets
Cisco Group Management Protocol (GMP) client
Rate limiting
Cisco Cluster Management Suite (CMS) support
HTH,
GP -
QoS Problem ( nt getting same DSCP marking at diff.. vpls customer sites
Hi we are having 3 locations A , B & C
we are providing l2 vpls service to customer .
customer is connected to our mpls cloud via EoSDH on my mpls switch on locations A , B & C.
customer is marking his traffic with DSCP bit XX from Location A when customer checking the traffic
at location B via packet sniffer ethereal they are not getting the same DSCP Tagging .
can anyone help me to find out the possible cause of this .
As far as i know in VPLS services there is limitation of provide multi-QoS.
But here in this case i m only trusting DSCP on the Lastmile port as well as on the trunks connected from my switches to my PEs .
so customer tagging should reach from location A to Location B .
Here we go:
CPE-A------CPE-A-SW--------SP-SW-A----PE-A======MPLS CLOUD=====PE-B------SP-SW-B-------CPE-B-SW-------CPE-B
here :CPE-A = customer router
CPE-A-SW = 4500
SP-SW-A = 4500
PE-A = 7600
PE-B = 7600
SP-SW-B = 3500
CPE-B-SW = 4500
CPE-B = customer routerI m getting blew output on the trunk interface connected to my PE on both the switches.
SP-SW-A#sh qos interface GigabitEthernet4/3
QoS is enabled globally
Port QoS is enabled
Administrative Port Trust State: 'dscp'
Operational Port Trust State: 'dscp'
Trust device: none
Default DSCP: 0 Default CoS: 0
Appliance trust: none
Tx-Queue Bandwidth ShapeRate Priority QueueSize
(bps) (bps) (packets)
1 250000000 disabled N/A 2336
2 250000000 disabled N/A 2336
3 250000000 disabled normal 2336
4 250000000 disabled N/A 2336
SP-SW-B#sh mls qos interface GigabitEthernet0/2 statistics
GigabitEthernet0/2
Ingress
dscp: incoming no_change classified policed dropped (in bytes)
Others: 0 0 0 0 0
Egress
dscp: incoming no_change classified policed dropped (in bytes)
Others: 0 n/a n/a 0 0
WRED drop counts:
qid thresh1 thresh2 FreeQ
1 : 0 0 1024
2 : 0 0 1024
3 : 0 0 1024
4 : 0 0 1024 -
Hello,
I have a 6506 with a Sup 2 and MSFC2. My new offsider was trying to upgrade the Sup from CatOS to IOS (very unwisely - without the documentation). He deleted the CatOS before copying the IOS to the Sup. On bootup we have the following output:
System Bootstrap, Version 7.1(1)
Copyright (c) 1994-2001 by cisco Systems, Inc.
c6k_sup2 processor with 262144 Kbytes of main memory
Autoboot executing command: "boot bootflash:"
boot: cannot determine first file name on device "bootflash:"
System Bootstrap, Version 7.1(1)
Copyright (c) 1994-2001 by cisco Systems, Inc.
c6k_sup2 processor with 262144 Kbytes of main memory
rommon 1 >
In the Bootflash we have the following:
rommon 2 > dir bootflash:
File size Checksum File name
6238236 bytes (0x5f301c) 0xc3d90a08 cat6000-sup2k8.7-4-3.bin (deleted)
As you can see from the following available commands (sp rommon) there is no undelete:
rommon 3 > ?
alias set and display aliases command
boot boot up an external process
break set/show/clear the breakpoint
confreg configuration register utility
cont continue executing a downloaded image
context display the context of a loaded image
dev list the device table
dir list files in file system
dis disassemble instruction stream
frame print out a selected stack frame
help monitor builtin command help
history monitor command history
meminfo main memory information
repeat repeat a monitor command
reset system reset
set show all monitor variables
stack produce a stack trace
sync write monitor environment to NVRAM
sysret print out info from last system return
unalias unset an alias
xmodem x/y modem download
I have tried booting the new IOS from a flash card but end up with "Unexpected exceptions". Lastly, and perhaps worst, I do not have another copy of the CatOS image other than the deleted image on the bootflash.
Any ideas anyone?
CGHi Brian,
Thanks for your help. I am migrating to IOS to standardise my network - this is the last device and luckily is a spare. I changed the values for 'CONFIG_FILE=' and 'BOOT=' and this manages to boot the IOS from slot0: automatically. However, this is where my next problem starts. The image decompresses ok but then a 'Software-forced reload' occurs and 'Unexpected exceptions' galore. Have a look at the output below - this continues until power is cycled as no breaks are accepted :
rommon 5 > reset
System Bootstrap, Version 7.1(1)
Copyright (c) 1994-2001 by cisco Systems, Inc.
c6k_sup2 processor with 262144 Kbytes of main memory
Autoboot executing command: "boot slot0:"
Self decompressing the image : #################################################
OK]
%Software-forced reload
Unexpected exception, CPU signal 23, PC = 0x401252FC
-Traceback= 401252FC 40123478 403F13C4 40196F10 40129F98 4002104C
$0 : 00000000, AT : 42260000, v0 : 42880000, v1 : 00000001
a0 : 42871BD4, a1 : 0000C100, a2 : 00000000, a3 : 40980000
t0 : 0000FD00, t1 : 3401FD01, t2 : 40129908, t3 : FFFF00FF
t4 : 40129908, t5 : 00000007, t6 : 44212800, t7 : 34018000
s0 : 00000000, s1 : 00000000, s2 : 00000020, s3 : 42870000
s4 : 40020F90, s5 : 00000030, s6 : FFFFFFFE, s7 : FFFFFFFD
t8 : 34018000, t9 : FFFFFFFF, k0 : 30419001, k1 : 30410000
gp : 422647C2, sp : 8001FE58, s8 : FFFFFFFB, ra : 40123478
EPC : 401252FC, ErrorEPC : FFFFFFFF, SREG : 3401FD03
MDLO : 0000007D, MDHI : 00000000, BadVaddr : 980B3F2F
Cause 00000024 (Code 0x9): Breakpoint exception
This then changes to :
Unexpected exception, CPU signal 10, PC = 0x0
-Traceback= 0 40124D64 40124ECC 40131820 4013083C 40131504 4013083C 40127FD0
$0 : 00000000, AT : 42260000, v0 : 00000000, v1 : 00000027
a0 : 00000002, a1 : 00008000, a2 : 00000000, a3 : 40980000
t0 : 00000038, t1 : 34018001, t2 : 34018000, t3 : FFFF00FF
t4 : 40129908, t5 : 00000008, t6 : 00000000, t7 : 980B3F2F
s0 : 00000008, s1 : 0000000A, s2 : 0000000A, s3 : 00000008
s4 : 00000038, s5 : 7FFFFFFF, s6 : 00000000, s7 : 40985468
t8 : 34018000, t9 : FFFFFFFF, k0 : 42875C70, k1 : 00000038
gp : 422647C2, sp : 40985258, s8 : FFFFFFFF, ra : 40124D64
EPC : 00000000, ErrorEPC : FFFFFFFF, SREG : 34018003
MDLO : 00000000, MDHI : 00000002, BadVaddr : 00000000
Cause 00000008 (Code 0x2): TLB (load or instruction fetch) exception
And then changes to the following, which continues indefinitely:
-Traceback= 40066F44 40065CBC 40125E78 40125F28 40124BF4 40124EC0 40131820 40130
83C 40131504 4013083C 40127FD0
F2F3B089)@iX : 00000000,
Unexpected exception, CPU signal 10, PC = 0x40066F44
Any ideas? I can't find any help searching the Cisco website.
CG -
Two Nexus 5020 vPC etherchannel with Two Catalyst 6500 VSS
Hi,
we are fighting with an 40 Gbps etherchannel between 2 Nx 5000 and 2 Catalyst 6500 but the etherchannel never comes up. Here is the config:
NK5-1
interface port-channel30
description Trunk hacia VSS 6500
switchport mode trunk
vpc 30
switchport trunk allowed vlan 50-54
speed 10000
interface Ethernet1/3
switchport mode trunk
switchport trunk allowed vlan 50-54
beacon
channel-group 30
interface Ethernet1/4
switchport mode trunk
switchport trunk allowed vlan 50-54
channel-group 30
NK5-2
interface port-channel30
description Trunk hacia VSS 6500
switchport mode trunk
vpc 30
switchport trunk allowed vlan 50-54
speed 10000
interface Ethernet1/3
switchport mode trunk
switchport trunk allowed vlan 50-54
beacon
channel-group 30
interface Ethernet1/4
switchport mode trunk
switchport trunk allowed vlan 50-54
beacon
channel-group 30
Catalyst 6500 VSS
interface Port-channel30
switchport
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 50-54
interface TenGigabitEthernet2/1/2
switchport
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 50-54
channel-protocol lacp
channel-group 30 mode passive
interface TenGigabitEthernet2/1/3
switchport
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 50-54
channel-protocol lacp
channel-group 30 mode passive
interface TenGigabitEthernet1/1/2
switchport
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 50-54
channel-protocol lacp
channel-group 30 mode passive
interface TenGigabitEthernet1/1/3
switchport
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 50-54
channel-protocol lacp
channel-group 30 mode passive
The "Show vpc 30" is as follows
N5K-2# sh vpc 30
vPC status
id Port Status Consistency Reason Active vlans
30 Po30 down* success success -
But the "Show vpc Consistency-parameters vpc 30" is
N5K-2# sh vpc consistency-parameters vpc 30
Legend:
Type 1 : vPC will be suspended in case of mismatch
Name Type Local Value Peer Value
Shut Lan 1 No No
STP Port Type 1 Default Default
STP Port Guard 1 None None
STP MST Simulate PVST 1 Default Default
mode 1 on -
Speed 1 10 Gb/s -
Duplex 1 full -
Port Mode 1 trunk -
Native Vlan 1 1 -
MTU 1 1500 -
Allowed VLANs - 50-54 50-54
Local suspended VLANs - - -
We will apreciate any advice,
Thank you very much for your time...
JoseHi Lucien,
here is the "show vpc brief"
N5K-2# sh vpc brief
Legend:
(*) - local vPC is down, forwarding via vPC peer-link
vPC domain id : 5
Peer status : peer adjacency formed ok
vPC keep-alive status : peer is alive
Configuration consistency status: success
Per-vlan consistency status : success
Type-2 consistency status : success
vPC role : secondary
Number of vPCs configured : 2
Peer Gateway : Disabled
Dual-active excluded VLANs : -
Graceful Consistency Check : Enabled
vPC Peer-link status
id Port Status Active vlans
1 Po5 up 50-54
vPC status
id Port Status Consistency Reason Active vlans
30 Po30 down* success success -
31 Po31 down* failed Consistency Check Not -
Performed
*************************************************************************+
*************************************************************************+
N5K-1# sh vpc brief
Legend:
(*) - local vPC is down, forwarding via vPC peer-link
vPC domain id : 5
Peer status : peer adjacency formed ok
vPC keep-alive status : peer is alive
Configuration consistency status: success
Per-vlan consistency status : success
Type-2 consistency status : success
vPC role : primary
Number of vPCs configured : 2
Peer Gateway : Disabled
Dual-active excluded VLANs : -
Graceful Consistency Check : Enabled
vPC Peer-link status
id Port Status Active vlans
1 Po5 up 50-54
vPC status
id Port Status Consistency Reason Active vlans
30 Po30 down* failed Consistency Check Not -
Performed
31 Po31 down* failed Consistency Check Not -
Performed
I have changed the lacp on both devices to active:
On Nexus N5K-1/-2
interface Ethernet1/3
switchport mode trunk
switchport trunk allowed vlan 50-54
channel-group 30 mode active
interface Ethernet1/4
switchport mode trunk
switchport trunk allowed vlan 50-54
channel-group 30 mode active
On Catalyst 6500
interface TenGigabitEthernet2/1/2-3
switchport
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 50-54
switchport mode trunk
channel-protocol lacp
channel-group 30 mode active
interface TenGigabitEthernet1/1/2-3
switchport
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 50-54
switchport mode trunk
channel-protocol lacp
channel-group 30 mode active
Thanks for your time.
Jose -
Cisco 6500 Egress Queueing Query (is it working correctly)
hi all
We have a test setup in our lab that we are working with and we believe we must be missing something.
The kit is a 6500, Sup 720B, WS-X6748-48-GE-TX line cards.
We are attempting to implement PFC QOS to ensure uninterupted throughput of real time data (dscp=EF).
Our basic configuration
mls qos map cos-dscp 0 8 16 24 32 46 48 56
mls qos
policy-map QosVoice
class allvoip
set ip dscp ef
class class-default
set ip dscp af21
interface GigabitEthernet1/1
switchport
switchport access vlan 6
switchport mode access
mls qos vlan-based
mls qos trust dscp
interface Vlan6
ip address 10.0.2.149 255.255.255.0
service-policy input QosVoice
In our setup we are passing data from a far end interface into the 6500 and through to vlan internface 6 (and out port gi1/1).
If what I believe is correct then data coming to the switch from vlan6 and out via gi1/1 will pass through QosVoice (and I confirm using wireshark that this is happening), the allvoip class is marking dscp=ef (from the packet capture).
My concern though is that this data is not being placed into the strict priority egress queue on the 6748 line card.
"show queueing interface gi1/1" suggests it is (see end of post).
However when I do some "real world" testing I truely don't believe that traffic in class "allvoip" is really getting strict priority how I would expect. I for example temporarily placed icmp data into this class and when doing large downloads the ping times would be impacted (changing from <1ms to between 3 and 6 ms) - with a strict queue I woudl expect those ping packets to stay totally stable independant of traffic in other queues.
Can I get any input or feedback on our setup?
regards
Mark
Interface GigabitEthernet1/1 queueing strategy: Weighted Round-Robin
Port QoS is enabled
Trust boundary disabled
Trust state: trust DSCP
Extend trust state: not trusted [COS = 0]
Default COS is 0
Queueing Mode In Tx direction: mode-cos
Transmit queues [type = 1p3q8t]:
Queue Id Scheduling Num of thresholds
01 WRR 08
02 WRR 08
03 WRR 08
04 Priority 01
queue thresh cos-map
1 1 0
1 2 1
1 3
1 4
1 5
1 6
1 7
1 8
2 1 2
2 2 3 4
2 3
2 4
2 5
2 6
2 7
2 8
3 1 6 7
3 2
3 3
3 4
3 5
3 6
3 7
3 8
4 1 5Hi Jon
Many thanks
I'm using vlan based QOS because later I'll add more vlans to the configuration, this is just initially to see how to use the QOS function on the 6500 - later we'll use this with more vlans. Essentially the port that is currently gi1/1 may later be a truck port with 10+ vlan's bound to it (with associated vlan interfaces on the 6500).
Data arriving from the Server to the 6500 most likely won't have any or valid dscp markings,
allvoip is currently simplified just for icmp traffic for testing - so it's looking like this:
class-map match-all allvoip
match access-group 100
access-list 100 permit icmp any any
What is just concerning me is that when I have a continuous ping running I'm getting deltas in the ping times when I have other data downloading off gi1/1 (which makes me think the strict priority queue isn't quite right).
If I can ask, if I wanted to rate limit the data on vlan6 (say limit the data to 10Mbit) and still also do marking in dscp to enable allocation to the differnet egress queues do you have any suggestions? I can use a police statement classes on the policy-map but I don't really want to police each class seperately
kind of like
vlan 6 entire capacity policed to 10mbit
then inside that
allvoip marked EF (and then assigned COS 5 and 1P)
etc etc
cheers
Mark -
HP Officejet 6500, Windows XP and 7, wireless LAN security code is not accepted
The security code of my wireless LAN is not accepted by the HP6500A. According to the diagnostic software of HP a code consisting of more than 50 characters is required (the total number of characters can not be identified because the code isgoing on out of the window). The security code of the route consists of 12 characters. Resetting the printer is not solving the problem.
This problem was identified after rinstalling the software after problems with printing: connection with the printer was identified; message: "busy with printing", but no printing result at all.Security codes can be in ASCII or HEX. I'm guessing that the diagnostics is reporting HEX and the printer entry is in ASCII.
You can try running the diagnostics SW on the Windows 7 computer. It might return the key in ASCII.
A good option is to get the password from somewhere other than the diagnostics. Maybe you stored it somewhere or wrote it down? Once you get it try to enter from the front panel.
Can I get a little information from you?
What router brand model?
What security mode are you using (WEP, WPA, WPA2)?
Which model of the 6500 do you have (6500 or 6500a)?
Please mark the post that solves your problem as "Accepted Solution"
Sometimes it takes several posts back and forth to get to a solution - please be patient.
I am employed by HP -
Cat 4000 Sup 1 and 2 rommon upgrade release notes?
I'm trying to find the release notes for the Cat 4000 sup 2 rommon upgrades. I've looked all over CCO but haven't been able to find them. In the release notes for CatOS 8.x, 7.x etc it tells you HOW to upgrade the rommon, but it doesn't tell you WHAT it does.
I've done the 6500 sup and msfcs before and they had release notes.
These are the ones I'm looking for:
6.1.5
6.1.4
5.5.5check the following link for upgrading the rommon for Catalyst 4000 switches :
http://www.cisco.com/en/US/products/hw/switches/ps663/prod_release_note09186a008029aa83.html#wp142218
Maybe you are looking for
-
Different currecny in intercompany billing
Hi Friends , My process flow is Purchase order - delivery - intercompany billing . In the PO currency is Newzeland dollor . Where as in the intercompany billing, it is picking up doc currency as USD, obviously from sold to party . I need to bill th
-
Requiring a digital signature prior to hitting "Submit By E-mail"
How do I make it a requirement to digitally sign a form when selecting the "Submit By E-Mail"?
-
The home tool bar isn't showing up at the top of my page. How do I get it back
How do I make my home tool bar show up? the bar with the picture of the house and the back and forward button isn't displaying.
-
Hi Experts, I want to know more About Security Levels. 1..What r the Security Levels 2..Why Do we need 3..Where we can give the Security Levels Please Clarify me Regards Khanna
-
Is there a way to do this possibly?
I have pc with 435 megs hd and 3 gigs ram, using (alas) Vista Ultimate. I have a folder of image files in Bridge. I'd like to create an icon for it on my desktop so that when I click on that icon, it will open to the folder in Bridge. Adobe tech supp