Campus QoS Design—Simplified

BRKCRS-2501

Tim Szigeti, CCIE#9794

Senior Technical Leader
Agenda

 QoS Design Strategy Review

 Campus QoS Design Considerations & Recommendations
 Cisco Catalyst 2960/3560/3750 QoS Design
 Cisco Catalyst 3850 QoS Design
 Cisco Catalyst 4500 QoS Design
 Cisco Catalyst 6500 QoS Design
 Summary and References
 Appendix: AutoQoS for Medianet

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 3
Session Abstract

 This session discusses strategic factors driving network QoS

designs, including: new applications and business requirements,
new industry guidance and best practices and new platforms and
technologies
 Cisco QoS strategy for rich media networks will be presented and
campus-specific design considerations will be discussed.
 Then platform-specific designs for classification, policing and ingress
& egress queuing policies will be detailed for the:
• Cisco Catalyst 2960/3560/3750 G/E/X series switches
• Cisco Catalyst 3850 series switches (wired-only)
• Cisco Catalyst 4500 (Supervisor 7-E) and 4500-X series switches
• Cisco Catalyst 6500 (Supervisor 2T) series switches

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 4
QoS Design Strategy Review
Macro Trends in Internet Usage

By 2016…
 Global IP traffic will increase 3-fold
• Even after having increased 8-fold in the past 5 years
 The number of IP devices will be more than triple the global population
 Wireless traffic will exceed wired by 2014 and will be over 60% by 2016
 Non-PC traffic (smartphones, tablets etc.) will account for 31% of all traffic
 86% of consumer internet traffic will be video

http://www.cisco.com/en/US/solutions/collateral/ns341/ns525/ns537/ns705/ns827/white_paper_c11-481360.pdf
BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 5
QoS Design Strategy Review
Trends in Voice, Video and Data Media Applications

Data Convergence Media Explosion Collaborative Media

• Internet Streaming
• Internet VoIP

Ad-Hoc App
Unmanaged • YouTube
• MySpace
• Other

• IP Video Conf
• IP Video Conf
• Surveillance

TelePresence
Video Video • Video Telephony
• HD Video Conf
• VoD Streaming

• IP Telephony • IP Telephony
• HD Audio
Voice Voice • Softphone
• Other VoIP

WebEx
• App Sharing • App Sharing
Web • Web/Internet • Web/Internet
Data Data
Email • Messaging • Messaging
Apps •
Apps •
Messaging Email Email

Leveraging Experience
Connectivity Investment Co-Existence Assurance
BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 6
QoS Design Strategy Review
RFC 4594-Based Strategic QoS Recommendations
Application Per-Hop Admission Queuing & Application
Class Behavior Control Dropping Examples
VoIP Telephony EF Required Priority Queue (PQ) Cisco IP Phones (G.711, G.729)

Broadcast Video CS5 Required (Optional) PQ Cisco IP Video Surveillance / Cisco Enterprise TV

Realtime Interactive CS4 Required (Optional) PQ Cisco TelePresence

Multimedia Conferencing AF4 Required BW Queue + DSCP WRED Cisco Unified Personal Communicator, WebEx

Multimedia Streaming AF3 Recommended BW Queue + DSCP WRED Cisco Digital Media System (VoDs)

Network Control CS6 BW Queue EIGRP, OSPF, BGP, HSRP, IKE

Signaling CS3 BW Queue SCCP, SIP, H.323

Ops / Admin / Mgmt (OAM) CS2 BW Queue SNMP, SSH, Syslog

Transactional Data AF2 BW Queue + DSCP WRED ERP Apps, CRM Apps, Database Apps

Bulk Data AF1 BW Queue + DSCP WRED E-mail, FTP, Backup Apps, Content Distribution

Best Effort DF Default Queue + RED Default Class

Scavenger CS1 Min BW Queue (Deferential) YouTube, iTunes, BitTorent, Xbox Live

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 7
QoS Design Strategy Review
Business Requirements Will Continue to Evolve and Expand over Time
4-Class Model 8-Class Model 12-Class Model
Voice Voice
Realtime Interactive
Interactive Video
Realtime Multimedia Conferencing
Broadcast Video
Streaming Video
Multimedia Streaming
Signaling / Control Call Signaling Call Signaling
Network Control Network Control
Network Management
Critical Data
Critical Data Transactional Data
Bulk Data
Best Effort Best Effort
Best Effort
Time Scavenger Scavenger
BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 8
 QoS Design Strategy—At-A-Glance

http://www.cisco.com/en/US/docs/solutions/Enterprise/Video/qosmrn.pdf
BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 9
Campus QoS Design:
Considerations & Recommendations
Agenda

 QoS Design Strategy Review

 Campus QoS Design Considerations & Recommendations
 Cisco Catalyst 2960/3560/3750 QoS Design
 Cisco Catalyst 3850 QoS Design
 Cisco Catalyst 4500 QoS Design
 Cisco Catalyst 6500 QoS Design
 Summary and References
 Appendix: AutoQoS for Medianet

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 11
Campus QoS Design Considerations
The Case for Campus QoS

 The primary role of QoS in medianet campus networks is not to control latency
or jitter (as it is in the WAN/VPN), but to manage packet loss.
 In GE/10GE campus networks, it takes only a few milliseconds of congestion to
cause instantaneous buffer overruns resulting in packet drops.
 Rich media applications—particularly HD video applications—are extremely
sensitive to packet drops, to the point where even 1 packet dropped in
10,000 is discernable by the end-user.

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 12
Campus QoS Design Considerations
Implications of Video Compression on Packet Loss Tolerance
1920 lines of Vertical Resolution (Widescreen Aspect Ratio is 16:9) 1080 x 1920 lines =

2,073,600 pixels per frame

1080 lines of Horizontal

x 3 colors per pixel

Resolution

x 1 Byte (8 bits) per color

x 30 frames per second

= 1,492,992,000 bps

or 1.5 Gbps Uncompressed

Cisco H.264-based HD Codecs transmit 3-5 Mbps per 1080p image

which represents over 99.67% compression (300:1)
Therefore packet loss is proportionally magnified in overall video quality
Users can notice a single packet lost in 10,000—Making HD Video
One Hundred Times More Sensitive to Packet Loss than VoIP!
BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 13
Campus QoS Design Overview
VoIP vs. HD Video—At the Packet Level

1400
Voice Packets 1400
Video Packets
Video Video Video
Frame Frame Frame

1000 1000

Bytes
Audio
600 600
Samples

200 200

Time 20 msec 33 msec

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 14
 Campus QoS Design Considerations
How Long Can Queue-Buffers Accommodate Line-Rate Bursts?
Gbps Linecard Example (WS-X6148A-GE-TX)
GE Linecard Example (WS-X6148)

140
Gbps Line Rate
Gbps Line Rate: 1 Gbps = 125 MB/s
KBytes Per ms

120
100 or 125 KB/ms
80
60 Total Per-Port Buffer: 5.4 MB
40
20
Total Per-Queue Buffer*: 1.35 MB
0
Total Per-Queue Buffering Capacity: 10.8 ms
330

650

970
130
170
210
250
290

370
410
450
490
530
570
610

690
730
770
810
850
890
930
10
50
90

ms

*Assuming (4) equal-sized queues

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 15
 Campus QoS Design Considerations
How Long Can Queue-Buffers Accommodate Line-Rate Bursts?
Gbps Linecard Example (WS-X6148A-GE-TX)
10 GE Linecard Example (WS-X6904)
1400
10 Gbps Line Rate
Gbps Line Rate: 10 Gbps = 1.25 GB/s
KBytes Per ms

1200
1000 or 1250 KB/ms
800
600 Total Per-Port Buffer: 90 MB
400
200 Total Per-Queue Buffer*: 11.25 MB
0
130

370

610
170
210
250
290
330

410
450
490
530
570

650
690
730
770
810
850
890
930
970
10
50
90

Total Per-Queue Buffering Capacity: 9.0 ms

ms

*Assuming (8) equal-sized queues

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 16
Campus QoS Design Considerations
Strategic QoS Design Principles

 Always perform QoS in hardware rather than software when a choice exists
 Classify and mark applications as close to their sources as technically and
administratively feasible
 Police unwanted traffic flows as close to their sources as possible
 Enable queuing policies at every node where the potential for congestion exists

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 17
Campus QoS Design Considerations
Campus QoS Tools and Options

 MLS QoS vs. MQC QoS vs. C3PL QoS

 Global Default QoS Setting
 Trust States and Conditional Trust
 Per-Port QoS, Per-VLAN QoS, Per-Port/Per-VLAN QoS
 Ingress QoS Models
 Egress QoS Models
 EtherChannel QoS
 QoS Roles in a Medianet Campus

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 18
Campus QoS Design Considerations
MLS QoS vs. MQC QoS vs. C3PL QoS

 Catalyst 2960 / 3650 / 3750 are the last platforms to use Multilayer Switch QoS
(MLS QoS) syntax
• QoS is disabled by default and must be globally enabled with mls qos command
• Once enabled, all ports are set to an untrusted port-state
 Catalyst 3850 and 4500 are using IOS MQC QoS (like router platforms)
• QoS is enabled by default
• All ports trust at layer 2 and layer 3 by default
 Catalyst 6500 is using Cisco Common Classification Policy Language (C3PL)
QoS
• QoS is enabled by default (Sup2T) – Disabled by default (Sup720)
• All ports trust at layer 2 and layer 3 by default
• C3PL presents queuing policies similar to MQC

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 19
Campus QoS Design Considerations
Trust States and Operations

CoS = 5 CoS = 0
Untrusted Internal
DSCP = 46 no [mls] qos trust DSCP = 0 DSCP = 0

CoS-to-DSCP Mapping Table

CoS = 5 Trust CoS
[mls] qos trust CoS 0  0 CoS 4  32
DSCP = 46 cos CoS 1  8 CoS 5  40
CoS 2  16 CoS 6  48
CoS 3  24 CoS 7  56

mls qos map cos-dscp 0 8 16 24 32 40 48 56

Internal CoS = 5
DSCP = 40
DSCP = 40

CoS = 5 CoS = 5
Trust DSCP Internal
DSCP = 46 [mls] qos trust dscp DSCP = 46 DSCP = 46

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 20
Campus QoS Design Considerations
Conditional Trust Operation
Cisco TelePresence System (CTS) Endpoint Example
Trust Boundary

Successful “Condition” Met (i.e. CDP negotiation successful)

Trust is Dynamically Extended to Cisco CTS Primary Codec

1
2 Cisco 7975G IP Phone: Voice  CoS 5 & DSCP EF
Signaling  CoS 3 & DSCP CS3

3
CTS Primary Codec: Voice + Video  CoS 4 & DSCP CS4
Call-Signaling  CoS 3 & DSCP CS3
4
CoS-to-DSCP Map:
CoS 5  DSCP EF (46)
CoS 4  DSCP CS4 (32)
CoS 3  DSCP CS3 (24)

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 21
Campus QoS Design Considerations
Trust Boundaries

Trust Boundary
Access-Edge Switches

Conditionally Trusted Endpoints

Example: IP Phone + PC
mls qos trust device cisco-phone

Secure Endpoint
Example: Software-protected PC
With centrally-administered QoS markings
mls qos trust dscp

Trust Boundary
Unsecure Endpoint
no mls qos trust

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 22
Campus QoS Design Considerations
Per-Port QoS vs. Per-VLAN QoS

Per-Port QoS Per-VLAN QoS

Policy map is applied to the
logical VLAN interface
VLAN Interfaces VLAN Interfaces
VLAN 10 VLAN 20 VLAN 10 VLAN 20

Physical Ports Physical Ports

Policy map is applied to the
physical switch port

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 23
Campus QoS Design Considerations
Per-Port/Per-VLAN QoS

VLAN Interfaces
DVLAN 10

VVLAN 110

DVLAN policy map is applied Trunked Physical Ports

to the Data VLAN (only)
on a given trunked switch port VVLAN policy map is applied
to the Voice VLAN (only)
on a given trunked switch port

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 24
Campus Ingress QoS Models
No Trust (Untrusted)
Trust CoS
Trust DSCP
Trust Device / Conditional Trust

(if required and supported)

Ingress Queuing Policies
Marking Policies (Optional) Policing Policies

VVLAN Yes
VoIP Classifier Mark EF VoIP Policer (<128 kbps) No
Drop
Yes
Signaling Classifier Mark CS3 Signaling Policer (<32 kbps) No
Drop

Yes
Multimedia Conferencing Classifier
Mark AF41 MM-Conf Policer (<5 Mbps) No
Drop
DVLAN Yes
Signaling Classifier Mark CS3 Signaling Policer (<32 kbps) No
Drop
Yes
Transactional Data Classifier Mark AF21 Trans-Data Policer (<10 Mbps) No
Remark to CS1
Yes
Bulk Data Classifier Mark AF11 Bulk Data Policer (<10 Mbps) No
Remark to CS1
Yes
Scavenger Classifier Mark CS1 Scavenger Policer (<10 Mbps) No
Drop
Yes
Best Effort (Class-Default) Mark DF Best Effort Policer (<10 Mbps) No
Remark to CS1

25
Campus QoS Design Recommendations
Queuing and Dropping Recommendations

 Catalyst Queuing is done in hardware and varies by platform/linecard and can be expressed as:
xPyQzT
For Example: 1P3Q8T means: 1 PQ
3 non-priority queues, each with
Best Effort
8 drop-thresholds per queue ≥ 25% Realtime
≤ 33%
 Minimum queuing capabilities for medianet is 1P3QyT
Scavenger/Bulk
 Realtime (PQ) should be no more than 33% of link ≤ 5%

Guaranteed BW
 Best-Effort Queue should be guaranteed at 25% of link
 Scavenger/Bulk queue should be minimally provisioned
 Enable congestion-avoidance on non-priority queues (WRED, WTD, DBL)

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 26
Campus QoS Design Recommendations
EtherChannel QoS
 EtherChannels are comprised of logical (Port-Channel) interfaces and physical
(port-member) interfaces
 Ingress QoS policies are sometimes applied to the logical interfaces
– but not always
 Egress QoS policies (such as queuing) are always applied to the physical port-
member interfaces
Platform QoS Policies Applied to the QoS Policies Applied to the
(Logical) Port-Channel (Physical) Port-Member
Interface Interfaces
Catalyst 2960/3560/3750  Ingress & Egress

Catalyst 3850  Ingress  Egress

Catalyst 4500  Ingress  Egress
Catalyst 6500  Ingress  Egress

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 27
Campus QoS Design – Port QoS Roles
Untrusted Endpoint Port QoS:
Untrusted Endpoints • No Trust
• [Optional Ingress Marking and/or Policing]
• 1P3QyT Queuing
Access Distribution Core

Trusted Endpoint Trusted

Port QoS: Endpoints
• Trust-DSCP
• [Optional Ingress
Marking and/or
Policing]
• 1P3QyT Queuing

WAN/VPN
Block
Conditionally-
Trusted
Endpoints

Conditionally-Trusted Endpoint Port QoS Switch-to-Switch/Router Port QoS

• Conditional-Trust with Trust-CoS • Trust DSCP
• [Optional Ingress Marking and/or Policing] • 1P3QyT or 1P7QyT Queuing
• 1P3QyT Queuing

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 28
 Campus QoS Design—At-A-Glance

http://www.cisco.com/en/US/docs/solutions/Enterprise/Video/qoscampusaag.pdf

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 29
Cisco Catalyst 2960/3560/3750
QoS Design
Agenda

 QoS Design Strategy Review

 Campus QoS Design Considerations & Recommendations
 Cisco Catalyst 2960/3560/3750 QoS Design
 Cisco Catalyst 3850 QoS Design
 Cisco Catalyst 4500 QoS Design
 Cisco Catalyst 6500 QoS Design
 Summary and References
 Appendix: AutoQoS for Medianet

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 31
Catalyst 2960/3560/3750 Campus QoS Design
Catalyst 2960/3650/3750 QoS Roles in Campus Networks

No Trust +
Ingress Queuing +
Egress Queuing

Trust DSCP +
Ingress Queuing +
Egress Queuing

Conditional Trust +
Ingress Queuing +
C2960/ Egress Queuing
C3560/
C3750 Classification/Marking +
Access [Optional Policing] +
Switch Distribution Ingress Queuing +
Switches Egress Queuing

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 32
Catalyst 2960/3560/3750 Campus QoS Design
QoS Design Steps

1. Enable QoS
2. Configure Ingress QoS Model(s):
 Trust Models
 Conditional Trust Model
 Service Policy Models
3. Configure Ingress Queuing
4. Configure Egress Queuing

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 33
Catalyst 2960/3560/3750 Campus QoS Design
Enabling QoS and Trust Model Examples

Enabling QoS:
mls qos Shaded commands are global

Trust-CoS Model Example:

mls qos map cos-dscp 0 8 16 24 32 46 48 56
mls qos trust cos Highlighted commands are interface specific

Trust-DSCP Model Example:

mls qos trust dscp

Conditional-Trust Model Example:

mls qos trust device cisco-phone [or]
mls qos trust device cts [or]
mls qos trust device ip-camera [or]
mls qos trust device media-player

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 34
Catalyst 2960/3560/3750 Campus QoS Design
Conditional Trust to a Cisco IP Phone Example

Conditional Trust Policy to a Cisco IP Phone:

mls qos map cos-dscp 0 8 16 24 32 46 48 56
mls qos trust device cisco-phone
mls qos trust cos

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 35
Catalyst 2960/3560/3750 Campus QoS Design
Service Policy Model Example—Marking Policy

[class-maps omitted for brevity]

policy-map MARKING-POLICY
class VOIP Note: While the Catalyst 3750-E MQC syntax
includes an implicit class-default, any policy
set dscp ef
actions assigned to this class are not enforced.
class MULTIMEDIA-CONFERENCING
set dscp af41 Therefore, an explicit class DEFAULT is
class SIGNALING configured in to enforce a marking policy to
set dscp cs3 DSCP 0 for all other IP traffic.
class TRANSACTIONAL-DATA
set dscp af21
class BULK-DATA
set dscp af11
class SCAVENGER
set dscp cs1
class DEFAULT
set dscp default

service-policy input MARKING-POLICY

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 36
 Note: Remarking is performed by configuring a
Catalyst 2960/3560/3750 Campus QoS Design policed-DSCP map with the global configuration
command mls qos map policed-dscp, which
specifies which DSCP values are subject to
Service Policy Model Example—Marking & Policing Policy remarking if out-of-profile and what value these
should be remarked as.

mls qos map policed-dscp 0 10 18 to 8 In this example exceeding data classes are
remarked to Scavenger (CS1/DSCP 8).
[class-maps omitted for brevity]
policy-map MARKING&POLICING
class VVLAN-VOIP … (continued)
set dscp ef class BULK-DATA
police 128k 8000 exceed-action drop set dscp af11
class VVLAN-SIGNALING police 10m 8000 exceed-action policed-dscp-transmit
set dscp cs3 class SCAVENGER
police 32k 8000 exceed-action drop set dscp cs1
class MULTIMEDIA-CONFERENCING police 10m 8000 exceed-action drop
set dscp af41 class DEFAULT
police 5m 8000 exceed-action drop set dscp default
class SIGNALING police 10m 8000 exceed-action policed-dscp-transmit
set dscp cs3 service-policy input MARKING&POLICING
police 32k 8000 exceed-action drop
class TRANSACTIONAL-DATA
set dscp af21
police 10m 8000 exceed-action policed-dscp-transmit
…
BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 37
Catalyst 2960/3560/3750 Campus QoS Design
Per-VLAN QoS Design

Interface [range] GigabitEthernet:

mls qos vlan-based

Interface VLAN:
service-policy input MARKING

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 38
Catalyst 2960/3560/3750 Campus QoS Design
Ingress Queuing Model (1P1Q3T)
Application DSCP 1P1Q3T

Network Control (CS7) EF

CS5 Q2
Internetwork Control CS6 Priority Queue
CS4
VoIP EF
CS7 Q1T3
Broadcast Video CS5
CS6
Multimedia Conferencing AF4 CS3 Q1T2

Realtime Interactive CS4 AF4 Q1T1

Multimedia Streaming AF3 AF3

Signaling CS3 Queue 1

Non-Priority
Transactional Data AF2 AF2 Default Queue

Network Management CS2 CS2

Bulk Data AF1 AF1

Scavenger CS1 CS1

Best Effort
BRKCRS-2501
DF © 2013 Cisco and/or its affiliates. All rights reserved.
DF Cisco Public 39
Catalyst 2960/3560/3750 Campus QoS Design
Ingress Queuing Model (1P1Q3T) Example
! This section configures the ingress queues and thresholds
mls qos srr-queue input priority-queue 2 bandwidth 30
mls qos srr-queue input bandwidth 70 30
mls qos srr-queue input buffers 90 10
mls qos srr-queue input threshold 1 80 90

! This section configures the ingress CoS-to-Queue mappings

mls qos srr-queue input cos-map queue 1 threshold 1 0 1 2
mls qos srr-queue input cos-map queue 1 threshold 2 3
mls qos srr-queue input cos-map queue 1 threshold 3 6 7
mls qos srr-queue input cos-map queue 2 threshold 1 4 5

! This section configures ingress DSCP-to-Queue Mappings

mls qos srr-queue input dscp-map queue 1 threshold 1 0 8 10 12 14
mls qos srr-queue input dscp-map queue 1 threshold 1 16 18 20 22
mls qos srr-queue input dscp-map queue 1 threshold 1 26 28 30 34 36 38
mls qos srr-queue input dscp-map queue 1 threshold 2 24
mls qos srr-queue input dscp-map queue 1 threshold 3 48 56
mls qos srr-queue input dscp-map queue 2 threshold 3 32 40 46

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 40
Catalyst 2960/3560/3750 Campus QoS Design
Egress Queuing Model (1P3Q3T)
Application DSCP 1P3Q3T

Network Control (CS7) AF1 Queue 4 Q4T2

CS1 (5%) Q4T1
Internetwork Control CS6

VoIP EF Default Queue

DF
Broadcast Video CS5 Queue 3 (35%)

Multimedia Conferencing AF4 CS7 Q2T3

Realtime Interactive CS4 CS6

Multimedia Streaming AF3 CS3 Q2T2

Queue 2
Signaling CS3 AF4 (30%) Q2T1
Transactional Data AF2 AF3

Network Management CS2 AF2

CS2
Bulk Data AF1
EF
Scavenger CS1 Q1
CS5
Best Effort DF© 2013 Cisco and/or its affiliates. All rights reserved. Priority Queue
BRKCRS-2501
CS4 Cisco Public 41
Catalyst 2960/3560/3750 Campus QoS Design
Egress Queuing Model (1P3Q3T) Example–Part 1 of 2

! This section configures egress buffers and thresholds

mls qos queue-set output 1 buffers 15 30 35 20
mls qos queue-set output 1 threshold 1 100 100 100 100
mls qos queue-set output 1 threshold 2 80 90 100 400
mls qos queue-set output 1 threshold 3 100 100 100 400
mls qos queue-set output 1 threshold 4 60 100 100 400

! This section configures egress CoS-to-Queue mappings

mls qos srr-queue output cos-map
mls qos srr-queue output cos-map
mls qos srr-queue output cos-map
mls qos srr-queue output cos-map
mls qos srr-queue output cos-map
mls qos srr-queue output cos-map
queue 1 threshold 3 4 5
queue 2 threshold 1 2
queue 2 threshold 2 3
queue 2 threshold 3 6 7
queue 3 threshold 3 0
queue 4 threshold 3 1

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 42
Catalyst 2960/3560/3750 Campus QoS Design
Egress Queuing Model (1P3Q3T) Example–Part 2 of 2

! This section configures egress DSCP-to-Queue mappings

mls qos srr-queue output dscp-map queue 1 threshold 3 32 40 46
mls qos srr-queue output dscp-map queue 2 threshold 1 16 18 20 22
mls qos srr-queue output dscp-map queue 2 threshold 1 26 28 30 34 36 38
mls qos srr-queue output dscp-map queue 2 threshold 2 24
mls qos srr-queue output dscp-map queue 2 threshold 3 48 56
mls qos srr-queue output dscp-map queue 3 threshold 3 0
mls qos srr-queue output dscp-map queue 4 threshold 1 8
mls qos srr-queue output dscp-map queue 4 threshold 2 10 12 14

! This section configures interface egress queuing parameters

queue-set 1
srr-queue bandwidth share 1 30 35 5
priority-queue out

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 43
Catalyst 2960/3560/3750 Campus QoS Design
EtherChannel QoS Design

All QoS policies are configured on the physical port-member interfaces only

Platform QoS Policies Applied to the QoS Policies Applied to the

(Logical) Port-Channel (Physical) Port-Member
Interface Interfaces

Catalyst 2960/3560/3750  Ingress & Egress

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 44
 Catalyst 2960/3560/3750 QoS Design—At-A-Glance

http://www.cisco.com/en/US/docs/solutions/Enterprise/Video/qoscampuscat3xxxaag.pdf

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 45
Cisco Catalyst 3850 (Wired)
QoS Design
Agenda

 QoS Design Strategy Review

 Campus QoS Design Considerations & Recommendations
 Cisco Catalyst 2960/3560/3750 QoS Design
 Cisco Catalyst 3850 QoS Design
 Cisco Catalyst 4500 QoS Design
 Cisco Catalyst 6500 QoS Design
 Summary and References
 Appendix: AutoQoS for Medianet

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public
Catalyst 3850 Campus QoS Design
Catalyst 3850 QoS Roles in Campus Networks

No Trust +
Ingress Queuing +
Egress Queuing

Trust DSCP +
Ingress Queuing +
Egress Queuing

Conditional Trust +
Ingress Queuing +
C3850 Egress Queuing
Access
Switch Classification/Marking +
[Optional Policing] +
Distribution Ingress Queuing +
Switches Egress Queuing

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 48
Catalyst 3850 Campus QoS Design
QoS Design Steps

1. Configure Ingress QoS Model(s):

 DSCP-Trust Model* *Catalyst 3850 IOS MQC will trust DSCP by default
 Conditional Trust Models (therefore no explicit policy is required for DSCP trust)
 Service Policy Models
2. Configure Egress Queuing

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 49
 Catalyst 3850 Campus QoS Design
Conditional Trust Models Cisco IP Phone Conditional Trust Example
! This section defines the class-maps
Conditional-Trust Models: ! to match Voice and Signaling
trust device cisco-phone [or] class-map match-all VOICE
trust device cts [or] match cos 5
trust device ip-camera [or] class-map match-all SIGNALING
trust device media-player match cos 3

! This section defines the CoS-to-DSCP

! remarking policy-map
policy-map CISCO-IPPHONE
class VOICE
set dscp ef
class SIGNALING
set dscp cs3
class class-default
set dscp default
! This section applies conditional trust
! and the policy-map to the interface(s)
trust device cisco-phone
service-policy input CISCO-IPPHONE
BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 50
Catalyst 3850 Campus QoS Design
Service Policy Model Example – Marking Policy

[class-maps omitted for brevity]

policy-map MARKING-POLICY
class VOIP
set dscp ef
class MULTIMEDIA-CONFERENCING
set dscp af41
class SIGNALING
set dscp cs3
class TRANSACTIONAL-DATA
set dscp af21
class BULK-DATA
set dscp af11
class SCAVENGER
set dscp cs1
class DEFAULT
set dscp default

service-policy input MARKING-POLICY

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 51
http://www.cisco.com/en/US/docs/switches/lan/catalyst3850/software/release/3.2_0_se/qos/configuration_guide/b_mqc_qos_32se_3850_chapter_010.html#reference_BC97692D1F1
E4F8A8A335878B5F612D0

Catalyst 3850 Campus QoS Design

Service Policy Model Example – Marking & Policing Policy
…[continued]
policy-map MARKING&POLICING class TRANSACTIONAL-DATA
class VVLAN-VOIP set dscp af21 Reference table-map
set dscp ef police 10m
police 128k burst ? construct from IOS
conform-action transmit
conform-action transmit exceed-action TABLE-MAP
exceed-action drop class BULK-DATA
class VVLAN-SIGNALING set dscp af11
set dscp cs3 police 10m
police 32k conform-action transmit
conform-action transmit exceed-action TABLE-MAP
exceed-action drop class SCAVENGER
class MULTIMEDIA-CONFERENCING set dscp cs1
set dscp af41 police 10m
police 5m conform-action transmit
conform-action transmit exceed-action drop
exceed-action drop class class-default
class SIGNALING set dscp default
set dscp cs3 police 10m
police 32k conform-action transmit
conform-action transmit exceed-action TABLE-MAP
exceed-action drop
[continued]
service-policy input MARKING&POLICING
BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 52
Catalyst 3850 Campus QoS Design
Service Policy Model Example – Per-Port/Per-VLAN QoS (IP Phone Example)
Interface [range] GigabitEthernet
(in this example VLAN 10 is the Data VLAN
and VLAN 110 is the VVLAN)
class-map VVLAN
match vlan 110
class-map DVLAN
match vlan 10

policy-map VLAN-POLICERS
class VVLAN
police 192k burst ?
conform-action transmit
exceed-action drop
class DVLAN
police 50m
conform-action transmit
exceed-action drop
service-policy input VLAN-POLICERS

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 53
Catalyst 3850 Campus QoS Design
Egress Queuing (1P7Q3T with WTD) Model
Application DSCP 1P7Q3T WTD =
Weighted
Network Control (CS7) EF Tail
CS5 Drop
Internetwork Control CS6 PQ
CS4
VoIP EF
CS7 & CS6 Q7
Broadcast Video CS5
CS3 & CS2 (BW 10%)
Multimedia Conferencing AF4
Q6
AF4
Realtime Interactive CS4 (BW 10% + WTD)

Multimedia Streaming AF3 AF3 Q5

(BW 10% + DSCP-Based WTD)
Signaling CS3
Q4
Transactional Data AF2 AF2
(BW 10% + DSCP-Based WTD)
Network Management CS2
Q3
AF1
Bulk Data AF1 (BW 4% + DSCP-Based WTD)

Scavenger CS1 CS1 Q2 (BWR 1%)

Best Effort DF DF Q1 (25%)

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 54
 Catalyst 3850 Campus QoS Design
Egress Queuing (1P7Q3T) Example – Part 1 (Class-Maps)

! This section configures the class-maps

class-map match-any PRIORITY-QUEUE
match dscp cs4 cs5 ef
class-map match-any CONTROL-MGMT-QUEUE
match dscp cs7 cs6 cs3 cs2
class-map match-all MULTIMEDIA-CONFERENCING-QUEUE
match dscp af41 af42 af43
class-map match-all MULTIMEDIA-STREAMING-QUEUE
match dscp af31 af32 af33
class-map match-all TRANSACTIONAL-DATA-QUEUE
match dscp af21 af22 af23
class-map match-all BULK-DATA-QUEUE
match dscp af11 af12 af13
class-map match-all SCAVENGER-QUEUE
match dscp cs1

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 55
Catalyst 3850 Campus QoS Design
Egress Queuing (1P7Q3T) Example – Part 2 (Policy-Map)
! This section configures policy-map [continued]
policy-map 1P7Q3T class TRANSACTIONAL-DATA-QUEUE
class PRIORITY-QUEUE bandwidth percent 10
priority level 1 queue-limit dscp af23 percent 80
(video = priority l2) queue-limit dscp af22 percent 90
class CONTROL-MGMT-QUEUE queue-limit dscp af21 percent 100
bandwidth percent 10 class BULK-DATA-QUEUE
class MULTIMEDIA-CONFERENCING-QUEUE bandwidth percent 4
bandwidth percent 10 queue-limit dscp af13 percent 80
queue-limit dscp af43 percent 80 queue-limit dscp af12 percent 90
queue-limit dscp af42 percent 90 queue-limit dscp af11 percent 100
queue-limit dscp af41 percent 100 class SCAVENGER-QUEUE
class MULTIMEDIA-STREAMING-QUEUE bandwidth percent 1
bandwidth percent 10 class class-default
queue-limit dscp af33 percent 80 bandwidth remaining percent 25
queue-limit dscp af32 percent 90
queue-limit dscp af31 percent 100 ! This section attaches the policy to the int(s)
… service-policy output 1P7Q3T

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 56
Catalyst 3850 Campus QoS Design
Hierarchical Policies: Queuing within Shaped Rate Example

! This section configures Shaping policy-map

policy-map 50MBPS-SHAPER
class class-default
shape average 50000000
service-policy 2P6Q3T
! Nested service-policy statement invokes queuing policy within the shaped rate
! This section attaches the H-QoS policy to the int(s)
service-policy output 50MBPS-SHAPER

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 57
Catalyst 3850 Campus QoS Design
EtherChannel QoS Design

• Ingress QoS policies are configured on the logical Port-Channel interface

Typically these are simply to enable DSCP trust
(which requires no explicit configuration)

• Egress QoS policies are configured on the physical port-member interfaces

Platform QoS Policies Applied to the QoS Policies Applied to the
(Logical) Port-Channel (Physical) Port-Member
Interface Interfaces

Catalyst 3850  Ingress  Egress

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 58
Cisco Catalyst 4500 (Supervisor 7-E) and 4500-X
QoS Design
Agenda

 QoS Design Strategy Review

 Campus QoS Design Considerations & Recommendations
 Cisco Catalyst 2960/3560/3750 QoS Design
 Cisco Catalyst 3850 QoS Design
 Cisco Catalyst 4500 QoS Design
 Cisco Catalyst 6500 QoS Design
 Summary and References
 Appendix: AutoQoS for Medianet

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 60
Catalyst 4500 Campus QoS Design
Catalyst 4500 QoS Role in Campus Networks

Trust DSCP +
Egress Queuing

Access
Switches Catalyst 4500
Core Switches
Distribution
Switches

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 61
Catalyst 4500 Campus QoS Design
QoS Design Steps

1. Configure Ingress QoS Model(s):

 DSCP-Trust Model* *Catalyst 4500 IOS MQC will trust DSCP by default
 Conditional Trust Model (therefore no explicit policy is required for DSCP trust)
 Service Policy Models
2. Configure Egress Queuing

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 62
Catalyst 4500 Campus QoS Design
Conditional Trust Model – Cisco IP Phone Example
! This section defines the class-maps to match Voice and Signaling
class-map match-all VOICE
match cos 5
class-map match-all SIGNALING
match cos 3

! This section defines the CoS-to-DSCP remarking policy-map

policy-map CISCO-IPPHONE
class VOICE
set dscp ef
class SIGNALING
set dscp cs3
class class-default
set dscp default
! This section applies conditional trust and the policy-map to the interface(s)
qos trust device cisco-phone
service-policy input CISCO-IPPHONE

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 63
Catalyst 4500 Campus QoS Design
Service Policy Model Example – Marking Policy

[class-maps omitted for brevity]

policy-map MARKING-POLICY
class VOIP
set dscp ef
class MULTIMEDIA-CONFERENCING
set dscp af41
class SIGNALING
set dscp cs3
class TRANSACTIONAL-DATA
set dscp af21
class BULK-DATA
set dscp af11
class SCAVENGER
set dscp cs1
class DEFAULT
set dscp default

service-policy input MARKING-POLICY

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 64
Catalyst 4500 Campus QoS Design
Service Policy Model Example – Marking & Policing Policy
policy-map MARKING&POLICING …[continued]
class VVLAN-VOIP class TRANSACTIONAL-DATA
set dscp ef set dscp af21
police 128k bc 8000 police 10m bc 8000
conform-action transmit conform-action transmit
exceed-action drop exceed-action set-dscp-transmit af22
class VVLAN-SIGNALING class BULK-DATA
set dscp cs3 set dscp af11
police 32k bc 8000 police 10m bc 8000
conform-action transmit conform-action transmit
exceed-action drop exceed-action set-dscp-transmit af12
class MULTIMEDIA-CONFERENCING class SCAVENGER
set dscp af41 set dscp cs1
police 5m bc 8000 police 10m bc 8000
conform-action transmit conform-action transmit
exceed-action drop exceed-action drop
class SIGNALING class class-default
set dscp cs3 set dscp default
police 32k bc 8000 police 10m bc 8000
conform-action transmit conform-action transmit
exceed-action drop exceed-action set-dscp-transmit cs1
[continued]
service-policy input MARKING&POLICING
BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 65
Catalyst 4500 Campus QoS Design
Service Policy Model Example – Medianet Metadata (NBAR2) Classification
metadata flow
class-map match-any REALTIME
match application cisco-phone
match application rtp
class-map match-all REALTIME-INTERACTIVE
match application telepresence-media
class-map match-any MULTIMEDIA-CONFERENCING
match application webex-video
match application webex-voice
match application jabber
class-map match-any SIGNALING
match application h323
match application sip
match application telepresence-control
match application rtsp
class-map match-any TRANSACTIONAL-DATA
match application telepresence-data
match application webex-meeting
match application citrix
match application vmware-view
match application wyze-zero-client
match application xmpp-client
BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 66
Catalyst 4500 Campus QoS Design
Service Policy Model Example – Per-Port/Per-VLAN QoS (IP Phone Example)

Interface [range] GigabitEthernet

(in this example VLAN 10 is the Data VLAN and VLAN 110 is the VVLAN)
qos trust device cisco-phone
vlan 10
service-policy input DVLAN-POLICERS
vlan 110
service-policy input VVLAN-POLICERS

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 67
Catalyst 4500 Campus QoS Design
Egress Queuing (1P7Q1T+DBL) Model
Application DSCP 1P7Q1T (+DBL)

Network Control (CS7) EF

Internetwork Control CS6 CS5 PQ
CS4
VoIP EF
CS7 & CS6 Q7
Broadcast Video CS5
CS3 & CS2 (BWR 10%)
Multimedia Conferencing AF4
Q6
AF4
Realtime Interactive CS4 (BWR 10%)

Multimedia Streaming AF3 AF3 Q5

(BWR 10%)
Signaling CS3
Q4
Transactional Data AF2 AF2
(BWR 10%)
Network Management CS2
Q3 BWR =
AF1
Bulk Data AF1 (BWR 4%) Bandwidth
Remaining
Scavenger CS1 CS1 Q2 (BWR 1%)

Best Effort DF DF Q1 (25%)

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 68
 Catalyst 4500 Campus QoS Design
Egress Queuing (1P7Q1T+DBL) Example
! This section configures policy-map
! This section configures the class-maps policy-map 1P7Q1T
class-map match-all PRIORITY-QUEUE class PRIORITY-QUEUE
match dscp cs4 cs5 ef priority
class-map match-all CONTROL-MGMT-QUEUE class CONTROL-MGMT-QUEUE
match dscp cs7 cs6 cs3 cs2 bandwidth remaining percent 10
class-map match-all MULTIMEDIA-CONFERENCING-QUEUE class MULTIMEDIA-CONFERENCING-QUEUE
match dscp af41 af42 af43 bandwidth remaining percent 10
class-map match-all MULTIMEDIA-STREAMING-QUEUE class MULTIMEDIA-STREAMING-QUEUE
match dscp af31 af32 af33 bandwidth remaining percent 10
class-map match-all TRANSACTIONAL-DATA-QUEUE class TRANSACTIONAL-DATA-QUEUE
match dscp af21 af22 af23 bandwidth remaining percent 10
class-map match-all BULK-DATA-QUEUE dbl
match dscp af11 af12 af13 class BULK-DATA-QUEUE
class-map match-all SCAVENGER-QUEUE bandwidth remaining percent 4
match dscp cs1 dbl
class SCAVENGER-QUEUE
bandwidth remaining percent 1
! This section attaches the policy to the int(s)
class class-default
service-policy output 1P7Q1T
bandwidth remaining percent 25
BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. dbl Cisco Public 69
Catalyst 4500 Campus QoS Design
EtherChannel QoS Design

• Ingress QoS policies are configured on the logical Port-Channel interface

Typically these are simply to enable DSCP trust
(which requires no explicit configuration)

• Egress QoS policies are configured on the physical port-member interfaces

Platform QoS Policies Applied to the QoS Policies Applied to the
(Logical) Port-Channel (Physical) Port-Member
Interface Interfaces

Catalyst 4500  Ingress  Egress

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 70
 Catalyst 4500 Campus QoS Design—At-A-Glance

http://www.cisco.com/en/US/docs/solutions/Enterprise/Video/qoscampuscat4500aag.html
BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 71
Cisco Catalyst 6500 (Supervisor-2T)
QoS Design
Agenda

 QoS Design Strategy Review

 Campus QoS Design Considerations & Recommendations
 Cisco Catalyst 2960/3560/3750 QoS Design
 Cisco Catalyst 3850 QoS Design
 Cisco Catalyst 4500 QoS Design
 Cisco Catalyst 6500 QoS Design
 Summary and References
 Appendix: AutoQoS for Medianet

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 73
Cisco Catalyst 6500 Campus QoS Design
Catalyst 6500 Role in Campus Networks

Catalyst 6500
Core/Distribution
Switches

Trust DSCP
+ Ingress Queuing
+ Egress Queuing

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 74
Cisco Catalyst 6500 Campus QoS Design
QoS Design Steps—Cisco Catalyst 6500 Supervisor 2T

1. Configure Ingress Queuing Catalyst 6500 IOS C3PL will trust DSCP by default
(therefore no explicit policy is required for DSCP trust)
2. Configure Egress Queuing

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 75
Cisco Catalyst 6500 Campus QoS Design
8Q4T (Ingress) & 1P7Q4T (Egress) Queuing Model Examples
Application-Class DSCP 8Q4T/1P7Q4T

Network Control (CS7) EF

CS5 Realtime-Queue
Internetwork Control CS6 (10% BW/Priority)
CS4
VoIP EF
CS7 & CS6 Control Queue
Broadcast Video CS5
CS3 & CS2 (10% BW/BWR)
Multimedia Conferencing AF4 Multimedia-Conferencing Queue
AF4 (10% BW/BWR
Realtime Interactive CS4
+ DSCP-WRED)
BWR =
Multimedia Streaming AF3 Multimedia-Streaming Queue
AF3 Bandwidth
(10% BW/BWR
+ DSCP-based WRED) Remaining
Signaling CS3
Transactional Data
Transactional Data AF2 AF2 (10% BW/BWR
+ DSCP-based WRED)
Network Management CS2 Bulk Data
AF1 (4% BW/BWR
Bulk Data AF1 +DSCP-based WRED)
Scavenger CS1 CS1 Scavenger (1% BW/BWR)
Default Queue
Best Effort DF DF (25% BW/BWR
+ WRED)
BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 76
Cisco Catalyst 6500 Campus QoS Design
Queuing Policies: Part 1 of 3 (Common Ingress & Egress Queuing Class-Maps)
class-map type lan-queuing REALTIME-QUEUE
match dscp cs4 cs5 ef
class-map type lan-queuing CONTROL-QUEUE
match dscp cs2 cs3 cs6 cs7
class-map type lan-queuing MULTIMEDIA-CONFERENCING-QUEUE
match dscp af41 af42 af43
class-map type lan-queuing MULTIMEDIA-STREAMING-QUEUE
match dscp af31 af32 af33
class-map type lan-queuing TRANSACTIONAL-DATA-QUEUE
match dscp af21 af22 af23
class-map type lan-queuing BULK-DATA-QUEUE
match dscp af11 af12 af13
class-map type lan-queuing SCAVENGER-QUEUE
match dscp cs1

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 77
 Cisco Catalyst 6500 Campus QoS Design
Queuing Policies: Part 2 of 3 (8Q4T Ingress Queuing Policy-Map)

policy-map type lan-queuing INGRESS-8Q4T [continued]

class REALTIME-QUEUE class TRANSACTIONAL-DATA-QUEUE
bandwidth percent 10 bandwidth percent 10
class CONTROL-QUEUE random-detect dscp-based
bandwidth percent 10 random-detect dscp af21 percent 80 100
class MULTIMEDIA-CONFERENCING-QUEUE random-detect dscp af22 percent 70 100
bandwidth percent 10 random-detect dscp af23 percent 60 100
random-detect dscp-based class BULK-DATA-QUEUE
random-detect dscp af41 percent 80 100 bandwidth percent 4
random-detect dscp af42 percent 70 100 random-detect dscp-based
random-detect dscp af43 percent 60 100 random-detect dscp af11 percent 80 100
class MULTIMEDIA-STREAMING-QUEUE random-detect dscp af12 percent 70 100
bandwidth percent 10 random-detect dscp af13 percent 60 100
random-detect dscp-based class SCAVENGER-QUEUE
random-detect dscp af31 percent 80 100 bandwidth percent 1
random-detect dscp af32 percent 70 100 class class-default
random-detect dscp af33 percent 60 100 random-detect dscp-based
random-detect dscp default percent 80 100
service-policy type lan-queuing input INGRESS-8Q4T
BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 78
 Cisco Catalyst 6500 Campus QoS Design
Queuing Policies: Part 3 of 3 (1P7Q4T Egress Queuing Policy-Map)

policy-map type lan-queuing EGRESS-1P7Q4T [continued]

class REALTIME-QUEUE class TRANSACTIONAL-DATA-QUEUE
priority bandwidth remaining percent 10
class CONTROL-QUEUE random-detect dscp-based
bandwidth remaining percent 10 random-detect dscp af21 percent 80 100
class MULTIMEDIA-CONFERENCING-QUEUE random-detect dscp af22 percent 70 100
bandwidth remaining percent 10 random-detect dscp af23 percent 60 100
random-detect dscp-based class BULK-DATA-QUEUE
random-detect dscp af41 percent 80 100 bandwidth remaining percent 4
random-detect dscp af42 percent 70 100 random-detect dscp-based
random-detect dscp af43 percent 60 100 random-detect dscp af11 percent 80 100
class MULTIMEDIA-STREAMING-QUEUE random-detect dscp af12 percent 70 100
bandwidth remaining percent 10 random-detect dscp af13 percent 60 100
random-detect dscp-based class SCAVENGER-QUEUE
random-detect dscp af31 percent 80 100 bandwidth remaining percent 1
random-detect dscp af32 percent 70 100 class class-default
random-detect dscp af33 percent 60 100 random-detect dscp-based
random-detect dscp default percent 80 100
service-policy type lan-queuing output EGRESS-1P7Q4T
BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 79
Cisco Catalyst 6500 Campus QoS Design
EtherChannel QoS Design

 Ingress QoS policies are configured on the logical Port-Channel interface

– No ingress policies typically needed for C6500-Sup2T EtherChannels
(as all ports trust DSCP & CoS by default)
 Egress QoS policies are configured on the physical port-member interfaces
Platform QoS Policies Applied to the QoS Policies Applied to the
(Logical) Port-Channel (Physical) Port-Member
Interface Interfaces

Catalyst 6500  Ingress  Egress

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 80
 Cisco Catalyst 6500 QoS Design—At-A-Glance

http://www.cisco.com/en/US/docs/solutions/Enterprise/Video/qoscampuscat6500sup2taag.html

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 81
Summary & References
Agenda

 QoS Design Strategy Review

 Campus QoS Design Considerations & Recommendations
 Cisco Catalyst 2960/3560/3750 QoS Design
 Cisco Catalyst 3850 QoS Design
 Cisco Catalyst 4500 QoS Design
 Cisco Catalyst 6500 QoS Design
 Summary and References
 Appendix: AutoQoS for Medianet

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 83
Summary
Key Takeaways
 The explosion of rich media applications requires network architects to
reevaluate current QoS designs
 RFC 4594 provides an industry best-practice QoS strategy
 Campus QoS is needed primarily to control packet drops
– Some rich media applications require fewer than 1 drop per 10,000 packets
– QoS architects need to know how trust-states, Port-based QoS, VLAN-based QoS and
EtherChannel QoS can impact designs
– Hardware queuing (both ingress and egress) vary by platform & linecard
 Cisco provides many At-A-Glance guides to get up and running quickly
– As well as comprehensive in-depth design chapters for additional design reference
 AutoQoS for Medianet Feature is available on Catalyst 2960/3560/3750 and
Catalyst 3850 and 4500
BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 84
Campus QoS Design 4.0—At-A-Glance
Quick Start Guides

 QoS Design Strategy At-A-Glance

http://www.cisco.com/en/US/docs/solutions/Enterprise/Video/qosmrn.pdf

 Campus QoS Design At-A-Glance

http://www.cisco.com/en/US/docs/solutions/Enterprise/Video/qoscampusaag.html

 Cisco Catalyst 3560/3750 QoS Design At-A-Glance

http://www.cisco.com/en/US/docs/solutions/Enterprise/Video/qoscampuscat3xxxaag.html

 Cisco Catalyst 4500 QoS Design At-A-Glance

http://www.cisco.com/en/US/docs/solutions/Enterprise/Video/qoscampuscat4500aag.html

 Cisco Catalyst 6500 QoS Design At-A-Glance

http://www.cisco.com/en/US/docs/solutions/Enterprise/Video/qoscampuscat6500sup2taag.html

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 85
Campus QoS Design 4.0—In-Depth
Comprehensive Design Chapters

 Enterprise Quality of Service Design 4.0

http://www.cisco.com/en/US/docs/solutions/Enterprise/WAN_and_MAN/QoS_SRND_40/
QoSIntro_40.html

 Campus QoS Design 4.0

http://www.cisco.com/en/US/docs/solutions/Enterprise/WAN_and_MAN/QoS_SRND_40/
QoSCampus_40.html

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 86
Additional Sessions

 BRKCRS-2890 - Converged Access Quality of Service

 BRKRST-2513 - QoS Design For IPSec VPNs
 BRKRST-2509 - Mastering Data Center QoS
 BRKDCT-3346 - QoS Implementation and Operation in a Nexus 7000
environment
 BRKRST-2511 - Implementing in QoS for Enablement of Cloud Services using
AVC
 BRKRST-2512 - Validating QoS using Medianet Media Awareness
 TECRST-2501 - Enterprise QoS Design Strategy

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 87
Recommended Reading
 Expected Release Date: Nov 2013
 Comprehensive QoS design
guidance for PINs and platforms:
• Campus Catalyst 3750/4500/6500
• WLAN WLC 5508 / Catalyst 3850 NGWC
• Data Center Nexus 1000V/2000/5500/7000
• WAN & Branch Cisco ASR 1000 / ISR G2
• MPLS VPN Cisco ASR 9000 / CRS-3
• IPSec VPNs Cisco ISR G2
• ISBN: 1-58714-369-0
Ken Briley

http://www.amazon.com/End---End-QoS-Network-Design/dp/1587143690/
BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 88
Complete Your Online Session Evaluation
 Give us your feedback and
you could win fabulous prizes.
Winners announced daily.
 Receive 20 Cisco Daily Challenge
points for each session evaluation
you complete.
 Complete your session evaluation
online now through either the mobile
app or internet kiosk stations.
Maximize your Cisco Live experience with your
free Cisco Live 365 account. Download session
PDFs, view sessions on-demand and participate in
live activities throughout the year. Click the Enter
Cisco Live 365 button in your Cisco Live portal to
log in.
BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 89
Agenda

 QoS Design Strategy Review

 Campus QoS Design Considerations & Recommendations
 Cisco Catalyst 2960/3560/3750 QoS Design
 Cisco Catalyst 3850 QoS Design
 Cisco Catalyst 4500 QoS Design
 Cisco Catalyst 6500 QoS Design
 Summary and References
 Appendix: AutoQoS for Medianet

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 90
APPENDIX

91
AutoQoS for Medianet
Cisco Catalyst 2960/3560/3750 AutoQoS
AutoQoS SRND4 Models
auto qos voip [ cisco-phone | cisco-softphone | trust ]

1P1Q3T Ingress Queuing Policies

1P3Q3T Egress Queuing Policies

auto qos trust { cos | dscp }
auto qos video [ cts | ip-camera ]

auto qos classify auto qos classify { police }

Yes
Multimedia Conferencing Mark AF41 MM-Conf Policer (<5 Mbps) No
Drop
Classifier
Yes
Signaling Classifier Mark CS3 Signaling Policer (<32 kbps) No
Drop
Yes
Transactional Data Classifier Mark AF21 Trans-Data Policer (<10 Mbps) No
Remark to CS1
Yes
Bulk Data Classifier Mark AF11 Bulk Data Policer (<10 Mbps) No
Remark to CS1
Yes
Scavenger Classifier Mark CS1 Scavenger Policer (<10 Mbps) No
Drop
Yes
Best Effort (Class-Default) Mark DF Best Effort Policer (<10 Mbps) No
Remark to CS1

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 93
Cisco Catalyst 2960/3560/3750 AutoQoS
AutoQoS SRND4 – auto qos trust { cos | dscp }

Layer 2 Switch Port Example: Layer 3 Routed Interface Example:

C3750(config-if)# auto qos trust C3750(config-if)# auto qos trust
interface GigabitEthernet1/0/1 interface GigabitEthernet1/0/48
description L2-ACCESS-PORT description L3-ROUTED-INTERFACE
switchport access vlan 10 no switchport
switchport voice vlan 110 ip address 10.0.1.103 255.255.255.0
… …
mls qos trust cos mls qos trust dscp
! AutoQoS has configured static CoS-trust ! AutoQoS has configured static DSCP-trust
auto qos trust auto qos trust

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 94
Cisco Catalyst 2960/3560/3750 AutoQoS
AutoQoS SRND4 – auto qos video [ cts | ip-camera ]
C3750(config-if)# auto qos video cts C3750(config-if)# auto qos video ip-camera
interface GigabitEthernet1/0/1 interface GigabitEthernet1/0/1
description L2-ACCESS-PORT-TO-CTS description L2-ACCESS-PORT-TO-IPVS-CAMERA
switchport access vlan 10 switchport access vlan 10
switchport voice vlan 110 switchport voice vlan 110
… …
mls qos trust device cts mls qos trust device ip-camera
! AutoQoS has configured conditional-trust ! AutoQoS has configured a conditional-trust
! for Cisco TelePresence Systems ! for Cisco for IPVS cameras
mls qos trust cos mls qos trust dscp
! AutoQoS has configured CoS-trust ! AutoQoS has configured DSCP-trust
! to be dynamically extended ! to be dynamically extended
auto qos video cts auto qos video ip-camera

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 95
Cisco Catalyst 2960/3560/3750 AutoQoS
AutoQoS SRND4 – auto qos classify
C3750(config-if)# auto qos classify
policy-map AUTOQOS-SRND4-CLASSIFY-POLICY
class AUTOQOS_MULTIENHANCED_CONF_CLASS
set dscp af41
class AUTOQOS_BULK_DATA_CLASS
set dscp af11
class AUTOQOS_TRANSACTION_CLASS
set dscp af21
class AUTOQOS_SCAVANGER_CLASS
set dscp cs1
class AUTOQOS_SIGNALING_CLASS
set dscp cs3
class AUTOQOS_DEFAULT_CLASS
set dscp default

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 96
Cisco Catalyst 2960/3560/3750 AutoQoS
AutoQoS SRND4 – auto qos classify police
C3750(config-if)# auto qos classify police
Note: Class-maps and IP ACLs
policy-map AUTOQOS-SRND4-CLASSIFY-POLICE-POLICY omitted for brevity
class AUTOQOS_MULTIENHANCED_CONF_CLASS
set dscp af41
police 5000000 8000 exceed-action drop
class AUTOQOS_BULK_DATA_CLASS
set dscp af11
police 10000000 8000 exceed-action policed-dscp-transmit
class AUTOQOS_TRANSACTION_CLASS
set dscp af21
police 10000000 8000 exceed-action policed-dscp-transmit
class AUTOQOS_SCAVANGER_CLASS
set dscp cs1
police 10000000 8000 exceed-action drop
class AUTOQOS_SIGNALING_CLASS
set dscp cs3
police 32000 8000 exceed-action drop
class AUTOQOS_DEFAULT_CLASS
set dscp default
police 10000000 8000 exceed-action policed-dscp-transmit
BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 97
AutoQoS VoIP (SRND4) Models
auto qos voip trust

auto qos voip cisco-phone

Yes
VoIP Classifier Mark EF VoIP Policer (<128 kbps) No
Remark to CS1
Yes
Signaling Classifier Mark CS3 Signaling Policer (<32 kbps) No

1P1Q3T Ingress Queuing Policies

Remark to CS1

1P3Q3T Egress Queuing Policies

Yes
Best Effort (Class-Default) Mark DF Best Effort Policer (<10 Mbps) No
Remark to CS1

auto qos voip cisco-softphone

Yes
VoIP Classifier Mark EF VoIP Policer (<128 kbps) No
Remark to CS1
Yes
Signaling Classifier Mark CS3 Signaling Policer (<32 kbps) No
Remark to CS1
Yes
Multimedia Conferencing Mark AF41 MM-Conf Policer (<5 Mbps) No
Drop
Classifier
Yes
Signaling Classifier Mark CS3 Signaling Policer (<32 kbps) No
Drop
Yes
Transactional Data Classifier Mark AF21 Trans-Data Policer (<10 Mbps) No
Remark to CS1
Yes
Bulk Data Classifier Mark AF11 Bulk Data Policer (<10 Mbps) No
Remark to CS1
Yes
Scavenger Classifier Mark CS1 Scavenger Policer (<10 Mbps) No
Drop
Yes
Best Effort (Class-Default) Mark DF Best Effort Policer (<10 Mbps) No
Remark to CS1

98
Cisco Catalyst 2960/3560/3750 AutoQoS
AutoQoS SRND4 – auto qos voip cisco-phone
C3750(config-if)# auto qos voip cisco-phone
Note: Class-maps
policy-map AUTOQOS-SRND4-CISCOPHONE-POLICY omitted for brevity
class AUTOQOS_VOIP_DATA_CLASS
set dscp ef
police 128000 8000 exceed-action policed-dscp-transmit
class AUTOQOS_VOIP_SIGNAL_CLASS
set dscp cs3
police 32000 8000 exceed-action policed-dscp-transmit
class AUTOQOS_DEFAULT_CLASS
set dscp default
police 10000000 8000 exceed-action policed-dscp-transmit

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 99
 Cisco Catalyst 2960/3560/3750 AutoQoS
AutoQoS SRND4 – auto qos voip cisco-softphone
policy-map AUTOQOS-SRND4-SOFTPHONE-POLICY
class AUTOQOS_VOIP_DATA_CLASS
Note: Class-maps and IP ACLs
set dscp ef omitted for brevity
police 128000 8000 exceed-action policed-dscp-transmit
class AUTOQOS_VOIP_SIGNAL_CLASS
set dscp cs3
police 32000 8000 exceed-action policed-dscp-transmit
class AUTOQOS_MULTIENHANCED_CONF_CLASS
set dscp af41
police 5000000 8000 exceed-action drop
class AUTOQOS_BULK_DATA_CLASS
set dscp af11
police 10000000 8000 exceed-action policed-dscp-transmit
class AUTOQOS_TRANSACTION_CLASS
set dscp af21
police 10000000 8000 exceed-action policed-dscp-transmit
class AUTOQOS_SCAVANGER_CLASS
set dscp cs1
police 10000000 8000 exceed-action drop
class AUTOQOS_SIGNALING_CLASS
set dscp cs3
police 32000 8000 exceed-action drop
class AUTOQOS_DEFAULT_CLASS
set dscp default
BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 100
Cisco Catalyst 2960/3560/3750 AutoQoS
Ingress Queuing Model (1P1Q3T)
Application DSCP 1P1Q3T

Network Control (CS7) EF

Q2
CS5
Internetwork Control CS6 Priority Queue
CS4
VoIP EF
CS7 Q1T3
Broadcast Video CS5
CS6
Multimedia Conferencing AF4 Q1T2
CS3
Realtime Interactive CS4
AF4 Q1T1
Multimedia Streaming AF3 AF3
Signaling CS3 Queue 1
Non-Priority
Transactional Data AF2 AF2 Default Queue

Network Management CS2 CS2

Bulk Data AF1 AF1

Scavenger CS1 CS1

Best Effort DF DF
BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 101
Cisco Catalyst 2960/3560/3750 AutoQoS
Ingress Queuing Model (1P1Q3T)
! This section configures the ingress queues and thresholds
mls qos srr-queue input priority-queue 2 bandwidth 30
mls qos srr-queue input bandwidth 70 30
mls qos srr-queue input buffers 90 10
mls qos srr-queue input threshold 1 80 90

! This section configures the ingress CoS-to-Queue mappings

mls qos srr-queue input cos-map queue 1 threshold 1 0 1 2
mls qos srr-queue input cos-map queue 1 threshold 2 3
mls qos srr-queue input cos-map queue 1 threshold 3 6 7
mls qos srr-queue input cos-map queue 2 threshold 1 4 5

! This section configures ingress DSCP-to-Queue Mappings

mls qos srr-queue input dscp-map queue 1 threshold 1 0 8 10 12 14
mls qos srr-queue input dscp-map queue 1 threshold 1 16 18 20 22
mls qos srr-queue input dscp-map queue 1 threshold 1 26 28 30 34 36 38
mls qos srr-queue input dscp-map queue 1 threshold 2 24
mls qos srr-queue input dscp-map queue 1 threshold 3 48 56
mls qos srr-queue input dscp-map queue 2 threshold 3 32 40 46

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 102
Cisco Catalyst 2960/3560/3750 AutoQoS
Egress Queuing Model (1P3Q3T)
1P3Q3T
Application DSCP
CS1 Queue 4 Q4T2
Network Control (CS7)
AF1 (5%) Q4T1
Internetwork Control CS6
Default Queue
VoIP EF DF
Queue 3 (35%)
Broadcast Video CS5
CS7 Q2T3
Multimedia Conferencing AF4
CS6
Realtime Interactive CS4
CS3 Q2T2
Multimedia Streaming AF3 Queue 2
Signaling CS3 AF4 (30%) Q2T1
AF3
Transactional Data AF2
AF2
Network Management CS2
CS2
Bulk Data AF1
EF
Scavenger CS1 Q1
CS5
Priority Queue
CS4
Best Effort
BRKCRS-2501 DF© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 103
Cisco Catalyst 2960/3560/3750 AutoQoS
Egress Queuing Model (1P3Q3T) Example–Part 1 of 2

! This section configures egress buffers and thresholds

mls qos queue-set output 1 buffers 15 30 35 20
mls qos queue-set output 1 threshold 1 100 100 100 100
mls qos queue-set output 1 threshold 2 80 90 100 400
mls qos queue-set output 1 threshold 3 100 100 100 400
mls qos queue-set output 1 threshold 4 60 100 100 400

! This section configures egress CoS-to-Queue mappings

mls qos srr-queue output cos-map
mls qos srr-queue output cos-map
mls qos srr-queue output cos-map
mls qos srr-queue output cos-map
mls qos srr-queue output cos-map
mls qos srr-queue output cos-map
queue 1 threshold 3 4 5
queue 2 threshold 1 2
queue 2 threshold 2 3
queue 2 threshold 3 6 7
queue 3 threshold 3 0
queue 4 threshold 3 1

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 104
Cisco Catalyst 2960/3560/3750 AutoQoS
Egress Queuing Model (1P3Q3T) Example–Part 2 of 2

! This section configures egress DSCP-to-Queue mappings

mls qos srr-queue output dscp-map queue 1 threshold 3 32 40 46
mls qos srr-queue output dscp-map queue 2 threshold 1 16 18 20 22
mls qos srr-queue output dscp-map queue 2 threshold 1 26 28 30 34 36 38
mls qos srr-queue output dscp-map queue 2 threshold 2 24
mls qos srr-queue output dscp-map queue 2 threshold 3 48 56
mls qos srr-queue output dscp-map queue 3 threshold 3 0
mls qos srr-queue output dscp-map queue 4 threshold 1 8
mls qos srr-queue output dscp-map queue 4 threshold 2 10 12 14

! This section configures interface egress queuing parameters

queue-set 1
srr-queue bandwidth share 1 30 35 5
priority-queue out

BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 105
 AutoQoS for Medianet—At-A-Glance

http://www.cisco.com/en/US/docs/solutions/Enterprise/Video/autoqosmediacampus.pdf
BRKCRS-2501 © 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 106