Professional Documents
Culture Documents
Cat4500 QOS CENIC
Cat4500 QOS CENIC
Supervisor IV
Supervisor II-Plus
Catalyst 4503 Sup Redundancy Slots Ports (max) Dimensions (RUs) Chassis/19 rack Power Supplies Supervisors n/a 3 96+2 7 6 1+1 Sup II and higher
Catalyst 4507R Catalyst 4510R Yes 7 240+4 (SupV) 11 4 1+1 Sup II+/IV/V Yes 10 336+6 (SupV) 14 3 1+1 Sup V
3
Distribution
Si
Si
Access
Result
Even though the average link utilization is below 100%, buffers may still fill up and packets dropped
QoS Technical Update June 2004
Conclusions
Buffer Management can help reduce loss Buffering reduces loss but delay
sensitive application could be negatively impacted
QoS Terminology
QoS labels are used to prioritize traffic
COS, TOS, DSCP
Classification is selection of traffic based on labels, policy Marking is application of QoS labels to traffic Policing is process by which the switch limits the bandwidth consumed by a flow of traffic Queuing is placing of traffic in different transmit queues Scheduling is process of emptying the transmit queues
RST-3508 9805_05_2004_c1
2004 Cisco Systems, Inc. All rights reserved.
Three Bits Used for CoS (802.1D User Priority) PRI CFI VLAN ID
Layer 3 IPV4
Version Length ToS 1 Byte 6 IP Precedence Len ID Offset TTL Proto FCS IP-SA IPIP-DA IPData
Unused Bits; Flow Control for DSCP DSCP Standard IPV4: Three MSB Called IP Precedence (DiffServ May Use Six D.S. Bits Plus Two for Flow Control)
2002, Cisco Systems, Inc. All rights reserved
EF
001010 001100 001110 010010 010100 010110 011010 011100 011110 100010 100100 100110 000000
Best Effort
QoS Technical Update June 2004 2002, Cisco Systems, Inc. All rights reserved
10
S2
Cisco IOS-Based Supervisors IOSLayer 2, 3, or 4 QoS Per-port QoS Four Tx queues per port Strict priority queue Dynamic queue memory allocation Packet classification and marking Policing/bursting Shaping/sharing Queue 4
Queue 3
Queue 2
Queue 2 Queue 1
QoS Technical Update June 2004 2002, Cisco Systems, Inc. All rights reserved
11
Predictable Performance
48 Mpps/64 Gbps L2/L3/L4 switching Wirespeed High Touch Services on every port with no performance hit: 32K QoS ACL entries* 32K Security ACL entries* 2,048 Policers * (16Kbps-1Gbps per port) 4 Queues per port 128K uni/multi-cast addresses* 4,096 802.1Q/ISL VLANs* * Lower on Supervisor II-Plus
QoS Technical Update June 2004 2002, Cisco Systems, Inc. All rights reserved
12
Sharing and Shaping and Strict Priority Q3 to Schedule between Output queues
Queue 1
RX
Shared Memory
Classify
Police
DBL
Rewrite Info
13
14
QoS Examples
Rewrite all packets from a specific host with high-priority DSCP Trust DSCP of VOIP packets and place in Strict Priority Tx Queue Police all multicast to 30 mbps Mark down vlan 7 traffic beyond 50mbps Put video in Tx queue 2 and shape to 20mbps
QoS Technical Update June 2004 2002, Cisco Systems, Inc. All rights reserved
15
Define Class
Create Policy
Assign Interface
access-list 101 udp permit any any range 19000 19010 class-map video match access-group 101 policy-map vid-server class video set ip precedence 5 police 100m 15K exceed-action policed-dscp-transmit interface Gig2/1 service-policy input vidserver
17
Switching Module
Switching Module
Switching Module
12 Gbps bandwidth to each module Auto MDIX on 10/100/1000 Ports Modules are transparent:
Contain simple stub ASICs, PHYs No buffering or local switching
RST-3508 9805_05_2004_c1
2004 Cisco Systems, Inc. All rights reserved.
Switching Module
Switching Module
GbE connections from switch fabric straight to front-panel port or connect to stubs
6 Full-duplex Gbps Connections to Supervisor Switch Fabric
19
RST-3508 9805_05_2004_c1
Supervisor Uplink Ports WS-X4306-GBAll Ports Two 1000 Base-X Ports on the WS-X4232-GB-RJ First Two Ports on WS-X4418GB WS-X4302-GBBoth Ports
Oversubscribed GbE modules are ideal for deployments that are more bursty in nature such as Gigabit to the Desktop and Servers These interfaces are not recommended for uplinks or sustained connections
RST-3508 9805_05_2004_c1
2004 Cisco Systems, Inc. All rights reserved.
21
22
New w/ Sup5
// Sub ports 292 packets/queue or 1168 packets/port Command: show qos int <port>
23
Traffic Shaping Configuring the maximum bandwidth for a Queue Available on every port and queue with an IOS Supervisor Policing vs. Shaping on the Catalyst 4500 IOS Supervisor PolicingTakes place at forwarding engine; if you exceed limit, then packets are dropped (or marked down) ShapingTakes place between queue and physical wire; if you exceed limit, then continue to buffer and try again later
24
Data Lost
Traffic Rate
Policing
Time
Traffic
Traffic
Data Preserved
Traffic Rate
Shaping
Time
QoS Technical Update June 2004 2002, Cisco Systems, Inc. All rights reserved
Time
25
Scheduling: Shaping
Max rate (10K to 1 Gbps)
Shaped queue like a virtual wire Packets clock out exactly at shaped rate
26
27
Scheduling: Sharing
Minimum rate (32 Kbps to 1 Gbps)
Rate is guaranteed minimum
Scheduling algorithm:
If below share rate, queue is high priority High priority queues serviced first
Sharing only on non-blocking gigabit ports in Supervisor IV and II-Plus Supported on ALL ports on Supervisor Engine V
Shaper (Specifies Max BW) Non-Blocking Port TX Port Q Sharer (Specifies Min Guaranteed BW)
28
29
Queue 3 on all ports (default voice queue) Caveat: On blocking ports..strict priority can prevent other queues from being serviced
Shape the strict queue to avoid this! Reserve it for voice and control
QoS Technical Update June 2004 2002, Cisco Systems, Inc. All rights reserved
30
New w/ Sup5
Sharing is available on all the ports with Supervisor V Auto QoS macro automatically does sharing on subports
-- auto qos voip {cisco-phone| trust} Traffic Sharing Specifies the minimum bandwidth for a Queue ( similar to WRR) Used to implement a prioritized scheduling mechanism e.g. bandwidth over video servers Available on all physical ports Supervisor IV supported sharing only on non-blocking gigabit ports Traffic Shaping Configuring the maximum bandwidth for a Queue on a physical port Limited shaping is supported on Supervisor V
QoS Technical Update June 2004 2002, Cisco Systems, Inc. All rights reserved
31
New w/ Sup5
Per-Queue-Share = 1 Gbps / ( Num-Ports * Tx-Queues-Per-Port) For WS-X4424-RJ45 (24 port 10/100/1000), 1 Gbps / ( 4 Sub-ports * 4 tx-queueus-per-subport )
4510R#sh qos int Gi8/24 QoS is enabled globally Tx-Queue Bandwidth ShapeRate (bps) (bps) 1 62500000 disabled 2 62500000 disabled 3 62500000 disabled 4 62500000 disabled
QoS Technical Update June 2004
The bandwidth compares to the 4:1 mapping since 4 GTTD ports map to a 1GE port (STUB)
Priority N/A N/A high N/A QueueSize (packets) 292 292 292 292
33
//
34
Ethernet MAC
DSCP and CoS are rewritten on transmit Using the global tos-to-cos map DSCP value is the internal DSCP
QoS Technical Update June 2004 2002, Cisco Systems, Inc. All rights reserved
35
------------------------------------0 : 1 : 2 : 3 : 4 : 5 : 6 : 01 01 01 01 01 01 01 01 01 01 01 01 01 01 01 01 02 02 02 02 02 02 02 02 02 02 02 02 02 02 02 02 03 03 03 03 03 03 03 03 03 03 03 03 03 03 03 03 04 04 02 04 04 04 04 04 04 04 04 04 04 04 04 04
36
Tx Queue Scheduling
shaping
Q1 Q2 DSCP to queue map Q3 Q4 Queue selection based on internal DSCP
Default DSCP on Port Trust CoS/DSCP Via Service Policies
Ethernet MAC
Switch-wide DSCP to Tx Queue map, not per-port! Shaping: max rate per queue Sharing: min rate per queue Strict priority on queue 3 All in hardware at wire rate
QoS Technical Update June 2004 2002, Cisco Systems, Inc. All rights reserved
37
Determine the internal DSCP valuethis depends on the policymap and port trust configuration If a packet encounters both input and output classification policy:
Output policy has precedence If no output policy then input policy has precedence If no output/input policy then RX port trust is used
QoS Technical Update June 2004 2002, Cisco Systems, Inc. All rights reserved
38
InPkts 1024-1518 OutPkts 1024-1518 InPkts 1519-1548 OutPkts 1519-1548 0 4325 0 0 Tx-Bytes-Queue-1 1377824448 Tx-Drops-Queue-1 0 Tx-Bytes-Queue-2 Tx-Bytes-Queue-3 0 1904 Tx-Drops-Queue-2 Tx-Drops-Queue-3 0 0 Tx-Bytes-Queue-4 93071413 Tx-Drops-Queue-4 0
39
CPU queues
Protects important traffic when CPU usage is high BPDUs/routing updates get priority Can still telnet or SNMP query when CPU is high
QoS Technical Update June 2004 2002, Cisco Systems, Inc. All rights reserved
40
Two actions
exceed-action: drop, transmit, markdown conform-action: drop, transmit
41
Policing Issues
Make Sure the Correct Type of Policer Is Used
Cat4500# show policy-map interface Gig1/1 GigabitEthernet1/1 service-policy input: p1 class-map: c1 (match-all) 3435 packets match: access-group 100 police: Per-interface <----- This is a individual policer. Conform: 45454 bytes Exceed: 56345 bytes
Cat4500# show policy-map interface Gig1/2 GigabitEthernet1/1 service-policy input: p1 class-map: c1 (match-all) 335 packets match: access-group 100 police: policer1 <----- This is an aggregate or named policer. Conform: 4554 bytes Exceed: 563 bytes
42
43
44
45
Use of QoS for Security :Scavenger Class QoS Scavenger throttled back
Classify Throttle
Si
Scavenger Traffic is assigned its own queue/threshold Scavenger Queue is shallow with a large burst to penalize sustained loads Multiple queues are the only way to guarantee voice quality, protect mission critical and throttle abnormal sources Cisco switches with multiple queues Catalyst 3500, 4500, 6500
Si
Gold
RX
Data
RX
Scavenger
RX
TX
Voice
RX
Congestion AvoidanceWRED
Drop Probability 1
Drop All AF13 Drop All AF12 Drop All AF11
0. 5 0
Begin Dropping AF13 Begin Dropping AF12 Begin Dropping AF11
AF = Assured Forwarding
47
CREDITS
Max credits 15 (default) Aggressive credit limit 10 T0 T1 T2
T3
T4
Time 48
Typical Congestion Avoidance Technique : Dropping both AF and NAF Result : More re-transmission, less overall performance
49
DBL
Yes Yes Yes No Yes Yes Yes Yes
WRED
No Random No Yes Yes Yes Yes Yes (using IOS 12.2)
50
C4506# show interface gi1/1 counters detail ( truncated) Port Gi1/1 Port Gi1/1 Port Gi1/1 Tx-Bytes-Queue-1 315142608 Tx-Bytes-Queue-2 28919476 Tx-Bytes-Queue-3 94 Tx-Drops-Queue-3 0 Tx-Bytes-Queue-4 430984 Tx-Drops-Queue-4 0
Dbl-Drops-Queue-1 Dbl-Drops-Queue-2 0 0
Dbl-Drops-Queue-3 Dbl-Drops-Queue-4 0 0
51
52
set ip dscp 48
QoS Technical Update June 2004 2002, Cisco Systems, Inc. All rights reserved
53
C4506# show interface gi1/1 counters detail( truncated) Port Gi1/1 Port Gi1/1 Port Gi1/1 Tx-Bytes-Queue-1 10250756 Tx-Bytes-Queue-2 1656656 Tx-Bytes-Queue-3 0 Tx-Drops-Queue-3 0 Tx-Bytes-Queue-4 24204 Tx-Drops-Queue-4 0
Tx-Drops-Queue-1 Tx-Drops-Queue-2 0 0
Dbl-Drops-Queue-3 Dbl-Drops-Queue-4 0 0
54
Enable Trust boundary (phone, access, uplink/downlink) Enable Priority Queuing where required Modify Queue Admission criteria where required Modify CoS to DSCP and IP Prec to DSCP maps where required Tune TX queue parameters where required
QoS Technical Update June 2004
policy-map autoqos-voip-policy class class-default Dbl ! interface GigabitEthernet3/1 qos trust device voip trust qos trust cos tx-queue 3 priority high shape percent 30 service-policy output autoqos-voip-policy
55
Queue 1
RX
Shared Memory
Classify
Police
DBL
Rewrite info
POLICERS
Drop packets Exceed limit Drop packets BEFORE congestion, Before enqueuing the packet
QoS Technical Update June 2004 2002, Cisco Systems, Inc. All rights reserved
56
References
Cisco Documentation:
TAC Documents: Policing and Marking with Catalyst IOS Supervisor Engines
http://www.cisco.com/warp/customer/473/134.html
57
58