Traffic Shapping on ESW500 switches

Hello all,
I am faily new on the traffic shapping / bandwith control department, and have been asked by a client to be able to do some traffic shapping in their main office.
I've read some documents on the ESW500 switches and wanted to make sure that my understanding of the technology and product is right.
My client wants to prioritize bandwith per port depending on the bandwith usage needed. Some users needs a lot of bandwith for critical applications while others
uses a lot of bandwith for not so critical applications...
From what I've read, I should be able to replace his switch with an ESW500 switch and do some traffic shaping. He has a pretty basic setup with about 30 computers connected to a switch which is connected to a router. As mentionned, if I replace the switch with an ESW500 switch, will I be able to limit per port bandwith usage both inbound and outbound?
Is there also some kind of monitoring tool I could use to see how much bandwith used per port (not required but would be a nice to have feature).
Thanks!
Matt

Hello Matt, I hope this finds you doing well.
The amount of bandwidth you need is directly related to the performance you require. What performance do you require?
Here is one example (for voice)
150 msec one way delay
Less than 20 msec jitter
Less than 1% packet loss
With requirements for this, you will have to have the right amount of bandwidth per call and queueing control, or else the call not sound right or may even be dropped.
Another example might be for Microsoft's RDP:
Some web posts mention that 30kps is needed, and some say 100kbps is acceptable.
So this is a bandwidth target, lets say 100kbps per user for this example. If you have 10 concurrent sessions, then this is a max amount of bandwidth needed around 1Mbps. With statistical multiplexing, you should not need this much, since not all clients will burst or use the max amount of bandwidth at the same time. You can probably get by with less ...
The point I am making with this, is once you know how much bandwidth you need, then you can begin to engineer your network so that critical applications are able to function and user productivity is kept high. User productivity is so very key, and it is very good to see you looking into this as you are Matt. Good stuff Matt.
Do the application vendors have suggestions for you for how much bandwidth their apps require?
If the application vendors do not know how much is needed, then using Cisco devices, you can define the performance you require and the Cisco device will respond with the required bandwith per queue. This is called 'corvil bandwidth' or bandwidth estimation. Using this bandwidth amount, you can configure your QoS settings on all your devices.
Here is a link and I would suggest to poke around some:
http://www.cisco.com/en/US/docs/ios/qos/configuration/guide/qos_bndwidth_est.html
Application performance is an end to end perspective and consideration. You need intelligence at the edge, core, and remote edge.
You can also look at the interface statistics to understand what an end user is using when accessing an application. This can be an inaccurate method, but it might help you in your understanding.
With all of this said, most folks do not notice a lot of congestion on the LAN or from one LAN port to another LAN port. Usually problems occur at bottlenecks and uplinks. Where are the bottlenecks in your network?
Once you know where these are, then you can apply a QoS policy to protect the important traffic and ensure application performance meets your needs. What are your needs? See the above for some thoughts.
Does this make sense?
The ESW is a great switch, and QoS can be easily configured to meet your needs. I think a harder question is ... what are your needs?
Here is a link for the ESW switch. Click on resources to find the docs provided with this switch:
http://www.cisco.com/cisco/web/solutions/small_business/products/routers_switches/esw_500/index.html
HTH,
Andrew Lee Lissitz

Similar Messages

Traffic shape on a switch 3550

Hi,
How can I limit bandwidth to 64k for example on the interface 0/1 in a switch 3550?
Thanx

Hi Reza,
I did not include the burst parameter in that config. If you apply the following, it should work - I've justr tried it on a 3550 myself...
policy-map Policer
class class-default
police 64000 8000 exceed-action drop
interface FastEthernet0/1
service-policy output Policer
service-policy input Policer
Hope that helps - pls rate posts that help.
Regards,
Paresh

Traffic Shape in ethernet - C3750Metro

I have a scenario where, one hub site which is connected to metro ether MAN at 1Gbps and spoke sites are connected to metro ether MAN at 100Mbps, in these remote sites variable bandwidths are agreed with service provider: 20Mbps, 40Mbps, etc.
I only want to configure "traffic shape" in my Catalysts because if I don't, these Catalyst use max. speed to transmit (100Mbps when 20Mbps is only permitted) and the network drops my excess traffic.
I don't want to configure anymore (different QoS for differents services, etc.)
Which is the best, and more elegant, way to do it?
Thanks.

access-list 1 permit any
class-map match_metro
match access-group 1
policy-map match_metro
class metro_class
police 20000000 2000000 exceed-action drop
interface whatever
service-policy input match_metro
This is a just a sample config to achieve what you want, you should check the following link for a more thorough explanation.
Traffic shaping allows you to shape output traffic (egress traffic) on a per-physical port basis. Ucode monitors output traffic to verify that it conforms to the rate configured on the switch router. When excess traffic comes into the switch, the output side of the processor interface applies back pressure and queues the excess traffic in the switch fabric.
http://www.cisco.com/en/US/products/hw/switches/ps646/products_configuration_guide_chapter09186a0080476087.html

VLANs and traffic shapping

Hi, I have:
Cisco 2800 with HWIC 4ESW module (4 port FE switch), IOS 13.3(8)T8, Feature Set IP. 10 VLANs are defined, 2 assigned directly to 2 4ESW ports, 2 port are trunk.
How to configure traffic shapping on VLANs? I need shape 10Mbits from one Giga port to 10x 1Mbits for every VLAN.
When I use this configuration, Giga interface is shapping, but VLAN running without shape.
It is possible?
Thank you.
Libor
access-list 111 permit ip any any
class-map match-all class11
match access-group 111
policy-map policy11
class class11
shape average 1000000
interface GigabitEthernet0/0
ip address 192.168.0.222 255.255.255.0
ip nbar protocol-discovery
service-policy output policy11
duplex auto
speed auto
interface FastEthernet0/0/0
switchport access vlan 11
no ip address
interface Vlan11
ip address 10.11.12.1 255.255.255.248
ip nbar protocol-discovery
service-policy output policy11

Hi, put the service-policy command under the FE0/0/0 directly. Since there is only 1 VLAN defined there, you should otain the expected result.
HTH

ME 3400 minimum traffic shape rate

Hi
I just implement traffic shape for output traffic on interface FastEthernet:
policy-map megann-10M-out
class class-default
shape average 10485500
int fa0/5
switch-2(config-if)#service-policy output megann-10M-out
QoS: Configuration failed. The configured rate is not achievable in hw within 1% of configuration.
Closest value(s) are: 11111120 bps, 5882368 bps
What is "1% of configuration"? It's not an 1% of interface rate?

Hello,
this is somewhat odd and looks like only predefined rates are achievable with shaping. The command reference does not mention this at all
http://www.cisco.com/en/US/products/ps6580/products_command_reference_chapter09186a008051341a.html#wp5979557
but gives an example with 10000000. Maybe you can try this value?
I understand the message like this: you are not within 1% of the rate 11111120 bps with your configured value. Have you tried to configure shaping to this rate?
Hope this helps! Please rate all posts.
Regards, Martin

Can we have 3 way vertical toggle switch, with unstable position at top, neutral position in center and stable position at bottom. the shape of the switch should be same as that of vertical toggle switch.

can we have 3 way vertical toggle switch, with unstable position at top, neutral position in center and stable position at bottom. the shape of the switch should be same as that of vertical toggle switch.

Avon,
You've asked the same question and received several replies in two recent threads here and here.
Rather than start a third thread, it would be best to just respond in one of them with details as to your problems with the proposed solutions (e.g. use of picture control).
=====================================================
Fading out. " ... J. Arthur Rank on gong."

NM-16ESW - adding a switch into a 3725 router slot - can i route traffic out of the switch ?

Hi all,
I have added the above module R16#show ip int br
Interface IP-Address FastEthernet0/0 unassigned FastEthernet0/1 unassigned FastEthernet1/0 unassigned FastEthernet1/1 unassigned FastEthernet1/2 unassigned FastEthernet1/3 unassigned FastEthernet1/4 unassigned FastEthernet1/5 unassigned FastEthernet1/6 unassigned FastEthernet1/7 unassigned FastEthernet1/8 unassigned FastEthernet1/9 unassigned FastEthernet1/10 unassigned FastEthernet1/11 unassigned FastEthernet1/12 unassigned FastEthernet1/13 unassigned FastEthernet1/14 unassigned FastEthernet1/15 unassigned Vlan1 unassigned R16(config-if)#int fa1/0
R16(config-if)#ip address 192.168.10.1 % IP addresses may not be configured R16(config-if)#
q1) Not being able to set IP q2) in that case, since the Assuming fe0/1 on the router and 2 workstations attached Regards,
Noob (16 switch port) into my router.
OK? Method Status Protocol
YES unset administratively down down
YES unset administratively down down
YES unset administratively down down
YES unset administratively down down
YES unset administratively down down
YES unset administratively down down
YES unset administratively down down
YES unset administratively down down
YES unset administratively down down
YES unset administratively down down
YES unset administratively down down
YES unset administratively down down
YES unset administratively down down
YES unset administratively down down
YES unset administratively down down
YES unset administratively down down
YES unset administratively down down
YES unset administratively down down
YES unset up down
255.255.255.0
on L2 links.
to the interface as shown above, I would believe it is really a switch port. Is there anyway I can see what kind of port a interface is or can be ? (switch port, routed port etc ?) or whether is it a L2 or L3 switch ?
switch is already inside the router, how do i route L3 traffic out of the switch ?
is the interface connected to external network.
to the switch ports fe1/1 and and fe1/2, how can i set their gateway to point to fe0/1's IP ? Can fe0/1 to be connected to fe1/0 internally ?

Hi KOE SIZE JIE,
q1) I tried the no switchport command on the 16switch port module and it works. I can set an IP on the switch port. But according to Liam, it is a L2 switch, how come we can assign no switchport command ?
As Bilal pointed out, I was mistaken you can issue the "no switchport" for a L3 routed port on that specific module.
q2) it is said that on a L2 switch only 1 SVI can be connected (for management purpose only) and L2 switch is not able to do routing. With the L2 switch module inserted into the router, will the SVI be able to do routing then ?
I believe this goes back to what Bilal was saying about limited functionality on the EtherSwitch. I will have to play with one in GNS3 to give you a solid answer.
But I think what it is trying to say is... You cannot use SVI's for inter-vlan routing. You can only have a single SVI for management purposes.
q3)Liam, you mention earlier fa0/0 is pointing to some network. is fa0/0 in the same router as the 16 switchport module ?
ip route 10.10.10.0 255.255.255.0 192.168.1.254 -- this command seems to be saying to access the 10.10.10.0 network, please go to the next hop IP 192.168.1.254 (but again, you are setting this next hop IP on the current router interface itself) - did i get anything wrong ?
I have read back my post and this reads wrong.
When i showed you the code snippet, 192.168.1.254 would be the interface on the next hop router. Not the router you are issuing the ip route command on. You would also need an IP address on the router interface directly connected to the next hop router. I.E 192.168.1.253
You will not then receive that error. Sorry about that, my sloppy config without a diagram!
HTHs,
Liam

Can I traffic shape to 200Mbps on ASA5510 inculde security plus license ?

Hello Expert,
I have ASA5510. It's include security plus license.
I want to traffic shape to 200Mbps. But , I checked a CCO.
CCO said that a shaping limit is 154400000.
"Enables traffic shaping, where the average rate argument sets
    the average rate of traffic in bits per second over a given fixed
    time period, between 64000 and 154400000. "
It's mean shaping limit 154400000 ?
Can I shape to 200Mbps ?
regards,
takuro.

Takuro,
Yes what you found is correct.
http://www.cisco.com/en/US/docs/security/asa/asa84/command/reference/s1.html#wp1451099
you can do upto 154.40 Mbps
-Kureli

Traffic-shape removed from intrface automatically

Hi all,
I came a cross issue on one of my Csico 1841 router.
We have configured more than 10 traffic shapes on both fastethernet0/0 and fastethernet0/1 . When I tried to removed a one traffic shape line it'll remove all the othe traffic shapes. Is any one faced this same issue ???
no traffic-shape group 140 512000 12800 12800 1000
c1841-advipservicesk9-mz.124-12.bin

Any help !!!!

ACL matching for traffic-shape...bug?

I am using a C6503-E.
My goal: create a traffic-shape rule on an interface (in this case g3/7) which will restrict all traffic between two internal addresses (10.0.0.7 and 10.1.0.6) on port 2152 to 128Kbps, and allow all other traffic to pass unfettered.
I am aware that the 6500 series ACLs are hardware based, and that some counters will not show up in the normal 'show access-list' display.
I have created an access list which increments when tagged with a 'log' modifier, so i know that it is hit when placed on the interface, but when referenced in a traffic-shape command, the traffic is not shaped. Unfortunately, the traffic-shape command will not allow the use of the 'log' modifier, so I'm stuck with my imperfect 'the ACL works in this scenario, but not this scenario' method.
Extended IP access list 195
    10 permit udp host 10.0.0.7 eq 2152 host 10.1.0.6 eq 2152 log (2822 matches)
interface GigabitEthernet3/7
ip address 10.2.0.1 255.255.255.252
no ip redirects
traffic-shape group 195 128000 7936 7936 1000
                  Acc. Queue Packets   Bytes     Packets   Bytes     Shaping
I/F               List Depth                     Delayed   Delayed   Active
Gi3/7               195 0     0         0         0         0         no
Any ideas on why an ACL wouldn't get hit in a traffic-shape rule, when it clearly gets hit when used strictly for access?
Thanks!

Please post your entire QoS config.
Your access list is just doing matching; it is not doing any setting for your DSCP values.
Also, I think the Polycom's are IP precedence aware and set their outgoing VC packets to 5.
Also, matching protocol 46 (RSVP) isn't really going to help - RSVP does not transport application data. It is only used for requesting resources from the network.
Also, a Cisco search for QoS and Polycom returns this url: http://www.cisco.com/en/US/tech/tk652/tk701/technologies_tech_note09186a0080111c1b.shtml
-Eric

Number of traffic shaper(queues) supported

All,
Just want to know what is the max. number of traffic shaper (queues) supported:
1. ingress shaper / ports
2. egress shaper / ports
for the Enhanced 4-port Gigabit Ethernet OSM, datasheet say up to 8000 traffic queues but does not indicate whether it is for shaping or rate limiting. and also ingress or egress.
thanks,
Eric

All,
Just want to know what is the max. number of traffic shaper (queues) supported:
1. ingress shaper / ports
2. egress shaper / ports
for the Enhanced 4-port Gigabit Ethernet OSM, datasheet say up to 8000 traffic queues but does not indicate whether it is for shaping or rate limiting. and also ingress or egress.
thanks,
Eric

Frame-relay traffic shapping question

Dear all.
i have a question related to the frame-relay traffic shapping question.cir is the commited rate. bc is the traffic which is sent during every ime interval. be is the excess burst.
example. i have line 128kbps to service provider. 64 is my cir so in the map class frame-relay cir 64000 and bc is 8000 which means 8000 bits will go every interval which is by default 125ms.now about be. excess burst will go only in the first interval or every interval ? if i say frame be 32000. will 4000 additional bits go in every interval ?
please advice .

Here's my summary of shaping operation:
* The token bucket used for shaping has a size of Bc+Be (if Be is zero, this equals Bc)
* The token bucket starts off full i.e. with a capacity of Bc+Be
* At the start of every Tc interval, Bc worth of tokens are added to the bucket. If the number of added tokens would result in the capacity of the bucket exceeding Bc+Be, these excess tokens are discarded.
* After the tokens are added to the bucket, the shaper checks if there are any packets that are waiting to be transmitted. If there are, an equivalent number of bytes of packets as the token bucket contents are transmitted. If there are more packets than tokens, these packets will have to wait until the next Tc.
* The capacity of the token bucket will approach Bc+Be only of the traffic has been quite for a little while.
* The maximum amount of traffic that can be sent in any interval is Bc+Be, since that is the size of the token bucket. If the bucket has filled up to Bc+Be, this implies that the connection has been quiet for a little while so that we can allow it a little burst.
* The long-term average of traffic will never exceed CIR, since the token bucket is filled at a CIR rate.
Now, applying this to your example, the maximum size of the token bucket will be Bc + Be = 40000 bits. The bucket will fill up to this level only if there are no packets in the queue for a little while, allowing the bucket to fill up. Then, say that that a 1500 byte (12000 bits) packet comes along. It will be transmitted and the token bucket size reduced to 28000 bits. If there are more packets, they will be transmitted as long as the token bucket has sufficient packets. If there are no more packets, the token bucket will be filled with another 8000 bits (Bc) at the next measurement interval, giving a total of 36000 bits. Whether or not all the Be + Bc bits will be used up in the first interval depends on how many packets are waiting in the queue. If there are sufficient packets, they can all get used up. If not, they get carried forward to the next interval.
Pls do remember to rate posts.
Paresh

Traffic prioritisation on trunked switch port

Good afternoon all. I am looking into traffic policing and shaping and neither seem to do what I need to do. Basically on a trunked switch port, I would like to prioritise traffic coming into a port by it's VLAN tag, the trunk connects to an ESX host.
The above options seem to be more about prioritising certain traffic for passing on to downstream devices. Can anyone shed any light on whether this is possible please? I am thinking it would need to be done on the ESX host at the moment...
Thanks!

Hi Colhignett,
Hope the below link might help your query.
http://www.cisco.com/c/en/us/td/docs/ios/12_2sb/feature/guide/vlntgqos.html#wp1049430
Regards
Karthik

[REQUEST] Pyshaper - Netlimiter like traffic shaper for linux!

Background on netlimiter: http://www.netlimiter.com/scrshots.php
Pyshaper:
http://www.freenet.org.nz/python/pyshaper/
pyshaper includes a graphical user interface which you can use to conveniently view/change throttle settings in real time. Note that pyshaper runs as a daemon, so can function perfectly in non-graphical environments.
How I got it to work: http://ubuntuforums.org/showpost.php?p= … ostcount=1
Last edited by zaggynl (2009-04-01 13:08:48)

JohnDVD wrote:...Could the author please update pyshaper.
Any suggestions onto other netlimiter-like software?
Moderator comment:
Be aware, this is a two year old thread -- you might not get any satisfaction. I'll leave this open for now, on the chance you get a response. If you don't, please open a new thread if you have a current problem. That helps us keep from muddying the waters with old (stale) information when discussing current issues.
Thanks,
ewaller

Network analyzer sees all traffic on the switch

/* Style Definitions */
table.MsoNormalTable
{mso-style-name:Standaardtabel;
mso-tstyle-rowband-size:0;
mso-tstyle-colband-size:0;
mso-style-noshow:yes;
mso-style-priority:99;
mso-style-qformat:yes;
mso-style-parent:"";
mso-padding-alt:0cm 5.4pt 0cm 5.4pt;
mso-para-margin:0cm;
mso-para-margin-bottom:.0001pt;
mso-pagination:widow-orphan;
font-size:11.0pt;
font-family:"Calibri","sans-serif";
mso-ascii-font-family:Calibri;
mso-ascii-theme-font:minor-latin;
mso-fareast-font-family:"Times New Roman";
mso-fareast-theme-font:minor-fareast;
mso-hansi-font-family:Calibri;
mso-hansi-theme-font:minor-latin;
mso-bidi-font-family:"Times New Roman";
mso-bidi-theme-font:minor-bidi;}
A client of us is having a very strange issue. They see a very load (initially just by watching the LEDs en got a software analyzer run on it. Now a software analyzer on a single port, even in promiscuous mode should only get its local data on a single switch port. The switch should only deliver local data to that port (thats why its switch, not a hub yes?) But to our surprise the analyze sees all the traffic, even the traffic that should get on to that specific switch, let a lone that port on the switch. It looks like everything is working like a big hub.
Hereunder is a screenshot of the installed network analyser:
v\:* {behavior:url(#default#VML);}
o\:* {behavior:url(#default#VML);}
w\:* {behavior:url(#default#VML);}
.shape {behavior:url(#default#VML);}
/* Style Definitions */
table.MsoNormalTable
{mso-style-name:Standaardtabel;
mso-tstyle-rowband-size:0;
mso-tstyle-colband-size:0;
mso-style-noshow:yes;
mso-style-priority:99;
mso-style-qformat:yes;
mso-style-parent:"";
mso-padding-alt:0cm 5.4pt 0cm 5.4pt;
mso-para-margin:0cm;
mso-para-margin-bottom:.0001pt;
mso-pagination:widow-orphan;
font-size:11.0pt;
font-family:"Calibri","sans-serif";
mso-ascii-font-family:Calibri;
mso-ascii-theme-font:minor-latin;
mso-fareast-font-family:"Times New Roman";
mso-fareast-theme-font:minor-fareast;
mso-hansi-font-family:Calibri;
mso-hansi-theme-font:minor-latin;
mso-bidi-font-family:"Times New Roman";
mso-bidi-theme-font:minor-bidi;}
Can anyone assist in finding where this is going wrong?
units in use:
SGE2000-EU
SRW224G4-EU
SRW224G4P-EU
SRW248G4-EU
Kind Regards

Hi RONVER-Systems,
I cannot see the first image, just doesn't want to come up. Knowing the behavior of a switch I can imagine "broadcast' traffic being received on each port.
It would be more relavvnt if you could use wireshark (a freeware 'sniffer' program) and try the same capture again and post the capture file as a .cap file.
But you obviously will see broadcast traffic arrive at each switch port. The switches will route at Layer 2 any unicast traffic. But lets check out the capture file you send in again.
Sorry for this bother, I just can't see the first image you posted.
regards Dave

Traffic Shapping on ESW500 switches

Similar Messages

Maybe you are looking for