Enterprise QoS Solution Reference Network Design Guide

More documents

Recommendations

Info

Catalyst 4500 Supervisor II+/III/IV/V—QoS Considerations and Design 2-68 CAT4500-SUP4(config-pmap-c)# exit CAT4500-SUP4(config-pmap)#exit CAT4500-SUP4(config)# CAT4500-SUP4(config)# CAT4500-SUP4(config)#interface FastEthernet2/1 CAT4500-SUP4(config-if)# service-policy input UNTRUSTED-SERVER CAT4500-SUP4(config-if)#exit CAT4500-SUP4(config)# CAT4500-SUP4(config)# CAT4500-SUP4(config)#ip access list extended SAP CAT4500-SUP4(config-ext-nacl)# permit tcp any range 3200 3203 any CAT4500-SUP4(config-ext-nacl)# permit tcp any eq 3600 any CAT4500-SUP4(config-ext-nacl)# CAT4500-SUP4(config-ext-nacl)#ip access list extended LOTUS CAT4500-SUP4(config-ext-nacl)# permit tcp any eq 1352 any CAT4500-SUP4(config-ext-nacl)# CAT4500-SUP4(config-ext-nacl)#ip access list extended IMAP CAT4500-SUP4(config-ext-nacl)# permit tcp any eq 143 any CAT4500-SUP4(config-ext-nacl)# permit tcp any eq 220 any CAT4500-SUP4(config-ext-nacl)#end CAT4500-SUP4# Catalyst 4500 QoS Verification Commands Enterprise QoS Solution Reference Network Design Guide Chapter 2 Campus QoS Design Catalyst 4500 QoS verification commands for the Catalyst 4500 Untrusted Server with Scavenger-Class QoS model include the following: show qos show qos maps show qos interface show class-map show policy-map show policy interface Catalyst 4500 —Conditionally-Trusted IP Phone + PC with Scavenger-Class QoS (Basic) Model Configuration This section includes the following topics: Configuration Catalyst 4500 QoS Verification Commands The Catalyst 4500 does not currently support per-port/per-VLAN policing. Therefore, access lists that include the VVLAN subnet are required to achieve granular policing of the VVLAN and DVLAN subnets, as shown below. Example 2-40 Catalyst 4500—Conditionally-Trusted IP Phone + PC + Scavenger (Basic) Model Configuration CAT4500-SUP4(config)#qos map cos 5 to dscp 46 ! Modifies CoS-to-DSCP mapping to map CoS 5 to DSCP EF Version 3.3
Chapter 2 Campus QoS Design Version 3.3 Catalyst 4500 Supervisor II+/III/IV/V—QoS Considerations and Design CAT4500-SUP4(config)#qos map dscp policed 0 24 to dscp 8 ! Excess DVLAN & VVLAN traffic will be marked down to Scavenger (CS1) CAT4500-SUP4(config)# CAT4500-SUP4(config)# CAT4500-SUP4(config)#class-map match-all VVLAN-VOICE CAT4500-SUP4(config-cmap)# match access-group name VVLAN-VOICE CAT4500-SUP4(config-cmap)# CAT4500-SUP4(config-cmap)#class-map match-all VVLAN-CALL-SIGNALING CAT4500-SUP4(config-cmap)# match access-group name VVLAN-CALL-SIGNALING CAT4500-SUP4(config-cmap)# CAT4500-SUP4(config-cmap)#class-map match-all VVLAN-ANY CAT4500-SUP4(config-cmap)# match access-group name VVLAN-ANY CAT4500-SUP4(config-cmap)# CAT4500-SUP4(config-cmap)# CAT4500-SUP4(config-cmap)#policy-map IPPHONE+PC-BASIC CAT4500-SUP4(config-pmap)#class VVLAN-VOICE CAT4500-SUP4(config-pmap-c)# set ip dscp 46 ! DSCP EF (Voice) CAT4500-SUP4(config-pmap-c)# police 128 kbps 8000 byte exceed-action drop ! Only one voice call is permitted per switchport VVLAN CAT4500-SUP4(config-pmap-c)#class VVLAN-CALL-SIGNALING CAT4500-SUP4(config-pmap-c)# set ip dscp 24 ! DSCP CS3 (Call-Signaling) CAT4500-SUP4(config-pmap-c)# police 32 kbps 8000 byte exceed-action policed-dscp-transmit ! Out-of-profile call signaling is marked down to Scavenger (CS1) CAT4500-SUP4(config-pmap-c)#class VVLAN-ANY CAT4500-SUP4(config-pmap-c)# set ip dscp 0 CAT4500-SUP4(config-pmap-c)# police 32 kbps 8000 byte exceed-action policed-dscp-transmit ! Unauthorized VVLAN traffic is marked down to Scavenger (CS1) CAT4500-SUP4(config-pmap-c)#class class-default CAT4500-SUP4(config-pmap-c)# set ip dscp 0 CAT4500-SUP4(config-pmap-c)# police 5 mbps 8000 byte exceed-action policed-dscp-transmit ! Out-of-profile data traffic is marked down to Scavenger (CS1) CAT4500-SUP4(config-pmap-c)# exit CAT4500-SUP4(config-pmap)#exit CAT4500-SUP4(config)# CAT4500-SUP4(config)# CAT4500-SUP4(config)#interface FastEthernet2/1 CAT4500-SUP4(config-if)# switchport access vlan 10 ! DVLAN CAT4500-SUP4(config-if)# switchport voice vlan 110 ! VVLAN CAT4500-SUP4(config-if)# qos trust device cisco-phone ! Conditional Trust CAT4500-SUP4(config-if)# service-policy input IPPHONE+PC-BASIC CAT4500-SUP4(config-if)#exit CAT4500-SUP4(config)# CAT4500-SUP4(config)# CAT4500-SUP4(config)#ip access list extended VVLAN-VOICE CAT4500-SUP4(config-ext-nacl)# permit udp 10.1.110.0 0.0.0.255 any range 16384 32767 ! Voice is matched by VVLAN subnet and UDP port-range CAT4500-SUP4(config-ext-nacl)#exit CAT4500-SUP4(config)# CAT4500-SUP4(config)#ip access list extended VVLAN-CALL-SIGNALING CAT4500-SUP4(config-ext-nacl)# permit tcp 10.1.110.0 0.0.0.255 any range 2000 2002 ! Call Signaling is matched by VVLAN subnet and TCP port-range CAT4500-SUP4(config-ext-nacl)#exit CAT4500-SUP4(config)# CAT4500-SUP4(config)#ip access list extended VVLAN-ANY CAT4500-SUP4(config-ext-nacl)# permit ip 10.1.110.0 0.0.0.255 any ! Matches all other traffic sourced from the VVLAN subnet CAT4500-SUP4(config-ext-nacl)#end CAT4500-SUP4# Enterprise QoS Solution Reference Network Design Guide 2-69
Page 1 and 2:
Enterprise QoS Solution Reference N
Page 3 and 4:
Version 3.3 Preface xiii Revision H
Page 5 and 6:
Version 3.3 Enterprise QoS Solution
Page 7 and 8:
Version 3.3 Catalyst 6500 CatOS QoS
Page 9 and 10:
Version 3.3 Cisco Documentation 3-4
Page 11 and 12:
Version 3.3 QoS Baseline (11-Class)
Page 13 and 14:
Version 3.3 Preface Revision Histor
Page 15 and 16:
Preface Version 3.3 Cisco Systems A
Page 17 and 18:
Preface Version 3.3 Obtaining Addit
Page 19 and 20:
QoS Overview What is QoS? Version 3
Page 21 and 22:
Chapter 1 Quality of Service Design
Page 23 and 24:
Page 25 and 26:
Page 27 and 28:
Page 29 and 30:
Page 31 and 32:
Page 33 and 34:
Page 35 and 36:
Page 37 and 38:
Page 39 and 40:
Page 41 and 42:
Page 43 and 44:
Page 45 and 46:
Page 47 and 48:
Page 49 and 50:
Page 51 and 52:
Page 53 and 54:
QoS Design Overview Version 3.3 Cam
Page 55 and 56:
Chapter 2 Campus QoS Design Version
Page 57 and 58:
Chapter 2 Campus QoS Design Call Si
Page 59 and 60:
Chapter 2 Campus QoS Design Trusted
Page 61 and 62:
Page 63 and 64:
Chapter 2 Campus QoS Design Cisco I
Page 65 and 66:
Chapter 2 Campus QoS Design AutoQoS
Page 67 and 68:
Page 69 and 70: Chapter 2 Campus QoS Design Catalys
Page 71 and 72: Chapter 2 Campus QoS Design Version
Page 81 and 82: Chapter 2 Campus QoS Design Figure
Page 113 and 114: Chapter 2 Campus QoS Design show ml
Page 115 and 116: Chapter 2 Campus QoS Design Figure
Page 119: Chapter 2 Campus QoS Design Version
Page 139 and 140: Chapter 2 Campus QoS Design show qo
Page 141 and 142: Chapter 2 Campus QoS Design show qo
Page 153 and 154: Chapter 2 Campus QoS Design WS-X674
Page 155 and 156: Chapter 2 Campus QoS Design Configu
Page 171 and 172:
Page 173 and 174:
Page 175 and 176:
Page 177 and 178:
Chapter 2 Campus QoS Design Referen
Page 179 and 180:
Version 3.3 WAN Aggregator QoS Desi
Page 181 and 182:
Chapter 3 WAN Aggregator QoS Design
Page 183 and 184:
Page 185 and 186:
Page 187 and 188:
Page 189 and 190:
Page 191 and 192:
Page 193 and 194:
Page 195 and 196:
Page 197 and 198:
Page 199 and 200:
Page 201 and 202:
Page 203 and 204:
Page 205 and 206:
Page 207 and 208:
Page 209 and 210:
Page 211 and 212:
Page 213 and 214:
Page 215 and 216:
Page 217 and 218:
Page 219 and 220:
Page 221 and 222:
Page 223 and 224:
Page 225 and 226:
Page 227 and 228:
Page 229 and 230:
Version 3.3 Branch Router QoS Desig
Page 231 and 232:
Chapter 4 Branch Router QoS Design
Page 233 and 234:
Page 235 and 236:
Page 237 and 238:
Page 239 and 240:
Page 241 and 242:
Page 243 and 244:
Page 245 and 246:
Page 247 and 248:
Page 249 and 250:
Page 251 and 252:
Page 253 and 254:
Version 3.3 MPLS VPN QoS Design CHA
Page 255 and 256:
Chapter 5 MPLS VPN QoS Design Versi
Page 257 and 258:
Chapter 5 MPLS VPN QoS Design Servi
Page 259 and 260:
Chapter 5 MPLS VPN QoS Design Call-
Page 261 and 262:
Page 263 and 264:
Page 265 and 266:
Page 267 and 268:
Page 269 and 270:
Page 271 and 272:
Page 273 and 274:
Chapter 5 MPLS VPN QoS Design Short
Page 275 and 276:
Page 277 and 278:
Page 279 and 280:
Page 281 and 282:
Page 283 and 284:
Page 285 and 286:
Chapter 5 MPLS VPN QoS Design Books
Page 287 and 288:
Version 3.3 IPSec VPN QoS Design CH
Page 289 and 290:
Chapter 6 IPSec VPN QoS Design Vers
Page 291 and 292:
Page 293 and 294:
Page 295 and 296:
Chapter 6 IPSec VPN QoS Design Pref
Page 297 and 298:
Chapter 6 IPSec VPN QoS Design Dela
Page 299 and 300:
Chapter 6 IPSec VPN QoS Design QoS
Page 301 and 302:
Page 303 and 304:
Chapter 6 IPSec VPN QoS Design Anti
Page 305 and 306:
Page 307 and 308:
Page 309 and 310:
Page 311 and 312:
Page 313 and 314:
Page 315 and 316:
Page 317 and 318:
Chapter 6 IPSec VPN QoS Design Digi
Page 319 and 320:
Chapter 6 IPSec VPN QoS Design DSL
Page 321 and 322:
Page 323 and 324:
Page 325 and 326:
Page 327 and 328:
Chapter 6 IPSec VPN QoS Design Summ
Page 329 and 330:
Chapter 6 IPSec VPN QoS Design Book
show all

Enterprise QoS Solution Reference Network Design Guide

Create successful ePaper yourself

Delete template?

Save as template?