6 Replies Latest reply on Nov 3, 2014 9:41 AM by erich

    QoS Config Check

    erich New Member

      I am new to Adtran so I would like someone to verify my QoS settings if possible.

       

      Here's what I have.

       

      ADTRAN, Inc. OS version R10.9.3.E

      Mainline Version: ENM.13.100

      Boot ROM version 17.04.01.00

      Platform: NetVanta 4430, part number 1700630E1

      Flash: 33554432 bytes  DRAM: 268435455 bytes

      _______________________________________________________

       

      qos map Template-4 10

        match precedence 5

        priority percent 59

      qos map Template-4 20

        match precedence 2

        match precedence 3

        bandwidth percent 15

      qos map Template-4 30

        match precedence 0

        match precedence 1

        bandwidth percent 14

      qos map Template-4 40

        match precedence 4

        match precedence 6

        match precedence 7

        bandwidth percent 10

      !

      qos map setprecedence 10

        ! Implicit deny any

        set precedence 7

      qos map setprecedence 20

        match dscp 48

        match dscp cs6

        set precedence 6

      qos map setprecedence 30

        match dscp ef

        match ip list LW-Voice

        set precedence 4

      qos map setprecedence 40

        match dscp af41

        match ip list LW-Video

        match precedence 3

        set precedence 2

      qos map setprecedence 50

        match dscp 25

        match dscp 26

        match dscp 24

        match dscp af31

        match dscp cs3

        match ip list LW-Signal

        set precedence 6

      qos map setprecedence 60

        match dscp af21

        match ip list LW-Data

        set precedence 5

      qos map setprecedence 70

        match dscp 10

        match dscp 8

        match dscp af11

        match dscp cs1

        set precedence 1

      qos map setprecedence 80

        match dscp 0

        set precedence 0

      !

      qos map 10Meg-QOS 10

        match any

        shape average 10500000 burst 1200000 count-eth-overhead

        qos-policy Template-4

      !

      qos map 20Meg-QOS 10

        match any

        shape average 20900000 burst 1200000 count-eth-overhead

        qos-policy Template-4

      !

      qos map 10Meg 10

        match any

        shape average 10500000 burst 1200000 count-eth-overhead

      !

      qos map 20Meg 10

        match any

        shape average 20900000 burst 1200000 count-eth-overhead

      !

      qos map 30Meg 10

        match any

        shape average 31400000 burst 1200000 count-eth-overhead

      !

      qos map 40Meg 10

        match any

        shape average 41800000 burst 1200000 count-eth-overhead

      !

      qos map 50Meg 10

        match any

        shape average 52300000 burst 1200000 count-eth-overhead

      !

      qos map 60Meg 10

        match any

        shape average 62760000 burst 1200000 count-eth-overhead

      !

      qos map 70Meg 10

        match any

        shape average 73220000 burst 1200000 count-eth-overhead

      !

      qos map 80Meg 10

        match any

        shape average 83932000 burst 1200000 count-eth-overhead

      !

      qos map 90Meg 10

        match any

        shape average 94140000 burst 1200000 count-eth-overhead

      !

      qos map 100Meg 10

        match any

        shape average 146440000 burst 1200000 count-eth-overhead

      !

      !

      no ethernet cfm

      !

      interface gigabit-eth 0/1

        description xxxxxxxxxxxxxxxx

        speed 100

        ip address  xxxxxxxxxxxxxxxxxx

        ip flow ingress

        ip flow egress

        bandwidth 20900

        max-reserved-bandwidth 100

        qos-policy out 20Meg-QOS

        no shutdown

        no lldp send-and-receive

      !

      !

      interface gigabit-eth 0/2

        description LAN BLOCK

        speed 100

        ip address  10.220.0.21  255.255.255.240

        ip flow ingress

        ip flow egress

        qos-policy in setprecedence

        no shutdown

        no lldp send-and-receive

       

      ip access-list extended LW-Data

        permit tcp any  10.1.0.0 0.0.1.255 eq www

        permit tcp any  10.1.0.0 0.0.1.255 eq https

        permit tcp any  10.1.0.0 0.0.1.255 eq 1494

        permit tcp any  10.1.0.0 0.0.1.255 eq 2598

        permit tcp any  10.1.2.0 0.0.0.255 eq 2598

        permit tcp any  10.98.0.0 0.0.1.255 eq www

        permit tcp any  10.98.0.0 0.0.1.255 eq https

        permit tcp any  10.98.0.0 0.0.1.255 eq 1494

        permit tcp any  10.98.0.0 0.0.1.255 eq 2598

        permit tcp any  10.100.10.0 0.0.0.255 eq 1494

        permit tcp any  10.100.10.0 0.0.0.255 eq www

        permit tcp any  10.100.10.0 0.0.0.255 eq https

        permit tcp any  10.100.10.0 0.0.0.255 eq 2598

        permit tcp any  10.101.10.0 0.0.0.255 eq 2598

        permit tcp any  10.103.1.0 0.0.0.255 eq www

        permit tcp any  10.103.1.0 0.0.0.255 eq https

        permit tcp any  10.103.1.0 0.0.0.255 eq 1494

        permit tcp any  10.103.1.0 0.0.0.255 eq 2598

      !

      ip access-list extended LW-Signal

        permit tcp any  10.100.100.0 0.0.0.255

        permit udp any  10.100.100.0 0.0.0.255

      !

      ip access-list extended LW-Video

        permit ip any  10.105.0.0 0.0.0.255

        permit ip any  10.100.100.238 0.0.0.1

        permit ip any  10.100.100.240 0.0.0.3

        permit ip any  10.100.100.150 0.0.0.1

        permit ip any  host 10.100.100.152

        permit ip any  host 10.100.100.244

        permit ip any  host 10.1.2.239

        permit udp any  172.27.50.0 0.0.0.255 range 3230 3235

        permit tcp any  172.27.50.0 0.0.0.255 range 3230 3235

      !

      ip access-list extended LW-Voice

        permit tcp any  10.100.100.0 0.0.0.255

        permit udp any  10.100.100.0 0.0.0.255

      _____________________________________________________________________

       

      KS-Leavenworth#sh ip access-lists

      * - Indicates access list entry disabled by track.

      Extended IP access list LW-Data

         permit tcp any  10.1.0.0 0.0.1.255 eq www   (10 matches)

         permit tcp any  10.1.0.0 0.0.1.255 eq https   (0 matches)

         permit tcp any  10.1.0.0 0.0.1.255 eq 1494   (0 matches)

         permit tcp any  10.1.0.0 0.0.1.255 eq 2598   (903 matches)

         permit tcp any  10.1.2.0 0.0.0.255 eq 2598   (913 matches)

         permit tcp any  10.98.0.0 0.0.1.255 eq www   (6154 matches)

         permit tcp any  10.98.0.0 0.0.1.255 eq https   (30 matches)

         permit tcp any  10.98.0.0 0.0.1.255 eq 1494   (0 matches)

         permit tcp any  10.98.0.0 0.0.1.255 eq 2598   (2290 matches)

         permit tcp any  10.100.10.0 0.0.0.255 eq 1494   (0 matches)

         permit tcp any  10.100.10.0 0.0.0.255 eq www   (3 matches)

         permit tcp any  10.100.10.0 0.0.0.255 eq https   (0 matches)

         permit tcp any  10.100.10.0 0.0.0.255 eq 2598   (0 matches)

         permit tcp any  10.101.10.0 0.0.0.255 eq 2598   (0 matches)

         permit tcp any  10.103.1.0 0.0.0.255 eq www   (81524 matches)

         permit tcp any  10.103.1.0 0.0.0.255 eq https   (281 matches)

         permit tcp any  10.103.1.0 0.0.0.255 eq 1494   (0 matches)

         permit tcp any  10.103.1.0 0.0.0.255 eq 2598   (0 matches)

      Extended IP access list LW-Signal

         permit tcp any  10.100.100.0 0.0.0.255    (0 matches)

         permit udp any  10.100.100.0 0.0.0.255     (0 matches)

      Extended IP access list LW-Video

         permit ip any  10.105.0.0 0.0.0.255     (80858 matches)

         permit ip any  10.100.100.238 0.0.0.1     (0 matches)

         permit ip any  10.100.100.240 0.0.0.3     (0 matches)

         permit ip any  10.100.100.150 0.0.0.1     (0 matches)

         permit ip any  host 10.100.100.152     (0 matches)

         permit ip any  host 10.100.100.244     (0 matches)

         permit ip any  host 10.1.2.239     (0 matches)

         permit udp any  172.27.50.0 0.0.0.255 range 3230 3235    (0 matches)

         permit tcp any  172.27.50.0 0.0.0.255 range 3230 3235   (0 matches)

      Extended IP access list LW-Voice

         permit tcp any  10.100.100.0 0.0.0.255    (1065090 matches)

         permit udp any  10.100.100.0 0.0.0.255     (1772 matches)

       

      ____________________________________________________________________________

       

      LW#sh qos map interface gigabit-ethernet 0/1

       

      giga-eth 0/1

       

        qos-policy out: 20Meg-QOS

       

         map entry 10

           match any

           class shape rate: 20900 (kilobits/sec), average

           budget: 1200000/1200000 bytes (current/max)

           2612 bytes added to budget every 1 ms

           packets sent: 2779488

           packets waiting: 0

           packets dropped: 0

           packets delayed: 0

           qos submap Template-4

               submap entry 10

                 match precedence 5

                 priority bandwidth: 59 (% of total)

                 burst budget 308221/308275 bytes (current/max)

                 packets matched: 1060389, bytes matched: 93141280

                 packets dropped: 0, bytes dropped: 0

                 5 minute offered rate 110032 bits/sec, drop rate 0 bits/sec

               submap entry 20

                 match precedence 2

                 match precedence 3

                 class bandwidth:  15 (% of total)

                 conversation: 244

                 packets matched: 10320, bytes matched: 1603060

                 packets dropped: 0, bytes dropped: 0

                 5 minute offered rate 2032 bits/sec, drop rate 0 bits/sec

               submap entry 30

                 match precedence 0

                 match precedence 1

                 class bandwidth:  14 (% of total)

                 conversation: 245

                 packets matched: 1505349, bytes matched: 183414546

                 packets dropped: 0, bytes dropped: 0

                 5 minute offered rate 208496 bits/sec, drop rate 0 bits/sec

               submap entry 40

                 match precedence 4

                 match precedence 6

                 match precedence 7

                 class bandwidth:  10 (% of total)

                 conversation: 246

                 packets matched: 203421, bytes matched: 15979266

                 packets dropped: 0, bytes dropped: 0

                 5 minute offered rate 11704 bits/sec, drop rate 0 bits/sec

               submap entry default

                 packets matched: 10, bytes matched: 420

                 packets dropped: 0, bytes dropped: 0

                 5 minute offered rate 0 bits/sec, drop rate 0 bits/sec

       

        Input QoS Map not assigned for this interface

        • Re: QoS Config Check
          levi Employee

          erich:

           

          Thank you for asking this question in the support community!

           

          I will be happy to verify your QoS configuration, but when you get a chance, can you explain what you would like to accomplish, so I can attempt to determine if the configuration will satisfy that goal?

           

          Also, here is the Configuring QoS in AOS for reference.

           

          Levi

            • Re: QoS Config Check
              erich New Member

              I'm just trying to ensure that the types of traffic to the specific subnets defined in my ACL's will get the guaranteed bandwidth.

               

              I have since taken out a few of the match statements in the " qos map setprecedence XX " areas to be more granular and ensure that only the traffic I want is what matched the Qos.

               

              It looks like it is working but again, I am use to Cisco and not Adtran.

                • Re: QoS Config Check
                  levi Employee

                  erich:

                   

                  Based on the configuration example you submitted, only two of the ACLs will be used as match criteria (see below).  As you can see, you are applying an inbound QoS map (setprecedence) and an outbound QoS map (20Meg-QOS) to the interfaces. 

                   

                  interface gigabit-eth 0/1

                    qos-policy out 20Meg-QOS

                  !

                  interface gigabit-eth 0/2

                    qos-policy in setprecedence

                   

                  The inbound QoS map matches the following criteria and sets the corresponding precedence value.

                   

                  qos map setprecedence 10

                    ! Implicit deny any

                    set precedence 7

                  qos map setprecedence 20

                    match dscp 48

                    match dscp cs6

                    set precedence 6

                  qos map setprecedence 30

                    match dscp ef

                    match ip list LW-Voice

                    set precedence 4

                  qos map setprecedence 40

                    match dscp af41

                    match ip list LW-Video

                    match precedence 3

                    set precedence 2

                  qos map setprecedence 50

                    match dscp 25

                    match dscp 26

                    match dscp 24

                    match dscp af31

                    match dscp cs3

                    match ip list LW-Signal

                    set precedence 6

                  qos map setprecedence 60

                    match dscp af21

                    match ip list LW-Data

                    set precedence 5

                  qos map setprecedence 70

                    match dscp 10

                    match dscp 8

                    match dscp af11

                    match dscp cs1

                    set precedence 1

                  qos map setprecedence 80

                    match dscp 0

                    set precedence 0

                   

                  The outbound QoS map matches "any" traffic and sets the traffic-shaping rate:

                   

                  qos map 20Meg 10

                    match any

                    shape average 20900000 burst 1200000 count-eth-overhead

                   

                  Please, let me know what specific questions you have.  I will be happy to help in any way I can.

                   

                  Levi

                    • Re: QoS Config Check
                      erich New Member

                      So if I add the following will this accomplish what I am looking for, and do I need to remove the " match ip list " from the " qos map setprecedence XX "?

                       

                      qos map 20Meg-QOS 10

                        match ip list LW-Data

                        match ip list LW-Signal

                        match ip list LW-Voice

                        match ip list LW-Video

                        shape average 20900000 burst 1200000 count-eth-overhead

                        qos-policy Template-4

                       

                      And remove the ones in Bold

                       

                      qos map setprecedence 30

                        match dscp ef

                        match ip list LW-Voice

                        set precedence 4

                      qos map setprecedence 40

                        match dscp af41

                        match ip list LW-Video

                        match precedence 3

                        set precedence 2

                      qos map setprecedence 50

                        match dscp 25

                        match dscp 26

                        match dscp 24

                        match dscp af31

                        match dscp cs3

                        match ip list LW-Signal

                        set precedence 6

                      qos map setprecedence 60

                        match dscp af21

                        match ip list LW-Data

                        set precedence 5

                        • Re: QoS Config Check
                          levi Employee

                          erich:

                           

                          If you use the outbound QoS map that you have listed:

                           

                          qos map 20Meg-QOS 10

                            match ip list LW-Data

                            match ip list LW-Signal

                            match ip list LW-Voice

                            match ip list LW-Video

                            shape average 20900000 burst 1200000 count-eth-overhead

                            qos-policy Template-4

                          !

                          qos map Template-4 10

                            match precedence 5

                            priority percent 59

                          qos map Template-4 20

                            match precedence 2

                            match precedence 3

                            bandwidth percent 15

                          qos map Template-4 30

                            match precedence 0

                            match precedence 1

                            bandwidth percent 14

                          qos map Template-4 40

                            match precedence 4

                            match precedence 6

                            match precedence 7

                            bandwidth percent 10

                           

                          This QoS map will match any of the ACLs in the "match" section and provide a total of 20 Mbps.  Furthermore, the sub-policy or child map "Template-4" will match the various precedence values configured and give that traffic portions of the 20 Mbps. 

                           

                          Previously, you stated the goal of the QoS map was "I'm just trying to ensure that the types of traffic to the specific subnets defined in my ACL's will get the guaranteed bandwidth."  From my understanding of your goal, you will not need the child map, since you only want to ensure traffic matching the ACLs get the required bandwidth.

                           

                          Please, let me know what other questions you have.

                           

                          Levi

                            • Re: QoS Config Check
                              erich New Member

                              For some of the traffic that the ACL's reference they only require a specific amount of bandwidth.

                              So I assigned them to the various areas after setting the precedence

                               

                              Video 768k

                              qos map setprecedence 40

                                match dscp af41

                                match ip list LW-Video

                                match precedence 3

                                set precedence 2

                               

                              Voice 232k

                              qos map Template-4 40

                                match precedence 4

                                match precedence 6

                                match precedence 7

                                bandwidth percent 10

                               

                              Signal 80k

                              qos map setprecedence 50

                                match dscp 25

                                match dscp 26

                                match dscp 24

                                match dscp af31

                                match dscp cs3

                                match ip list LW-Signal

                                set precedence 6

                               

                              Data is king so I put it in the 59% section.

                              qos map setprecedence 60

                                match dscp af21

                                match ip list LW-Data

                                set precedence 5