service-policy command not getting applied to interface

Unanswered Question
Nov 26th, 2007

When setting up a policy-map containing a class map, and then applying that policy map to either the LAN interface or WAN interface of 2 particular routers, the policy is not getting applied. I type the command in, no errors, however when looking at the interface with show run it reveals no policy map has been applied. I've successfully applied the same policy maps to 2 other routers, but am having this behavior occur on 2 others. Both the problem routers are running IOS 12.4(11)T1

Is there possibly an IOS bug in these versions or something missing in the interface configs?

thank you,

Bill

update - i've checked out cisco's feature navigator to explore the possibility that the different images, (c2801-ipbasek9-mz.124-11 - router with the problem and c2800nm-advipservicesk9-mz - router without the problem) are the cause, but the only unique QoS related feature on either is QoS Policy Propagation via Border Gateway Protocol (QPPB) on the Advanced IP image and QOS: DirectConnect PDLM on the standard.

addtl update - I found a 3rd router with the same IOS image that does NOT have the same problem. Only 2 of them seem to be exhibiting this behavior.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
kevin.shi Thu, 11/29/2007 - 04:11

I also experienced the same issue on 1700.

Do you mean it looks like a hardware issue rather than IOS problem according to your findings?

WILLIAM STEGMAN Thu, 11/29/2007 - 05:53

I'm not sure what it might be yet, hardware or IOS. All I can say as of now there are 3 routers, all 2801s, which have the same image, but the command only works on 1 of them.

mmunoz-20 Mon, 12/03/2007 - 16:15

What message display the router in CLI, when you apply the policy-map in the interface?

Maybe you don''t have sufficient BW configured in the interface (bandwidth XXX command in the interface) or,

The policy-map configured is only for output traffic and you want to apply for inbound traffic or viceversa

And Finally

You have applied weigthed fair-queue in the interface or another queueing schema like RED, WRED and you need to remove first.

WILLIAM STEGMAN Tue, 12/04/2007 - 05:19

here's the sh int for the ethernet interface, which is where I'm trying to apply a policy map that marks traffic using dscp. It's configured for fifo, and has a bandwidth setting of 100000 Kbit. Below the interface settings are the configs for a simple test policy map.

SanDiego2801#sh int fa 0/0

FastEthernet0/0 is up, line protocol is up

Hardware is Gt96k FE, address is 0014.1c61.6c3e (bia 0014.1c61.6c3e)

Internet address is 10.2.0.1/16

MTU 1500 bytes, BW 100000 Kbit, DLY 100 usec,

reliability 255/255, txload 1/255, rxload 1/255

Encapsulation ARPA, loopback not set

Keepalive set (10 sec)

Full-duplex, 100Mb/s, 100BaseTX/FX

ARP type: ARPA, ARP Timeout 04:00:00

Last input 00:00:00, output 00:00:00, output hang never

Last clearing of "show interface" counters 14w4d

Input queue: 0/75/2905/0 (size/max/drops/flushes); Total output drops: 0

Queueing strategy: fifo

Output queue: 0/40 (size/max)

5 minute input rate 96000 bits/sec, 45 packets/sec

5 minute output rate 67000 bits/sec, 46 packets/sec

1514126399 packets input, 829835643 bytes

Received 68854494 broadcasts, 0 runts, 0 giants, 0 throttles

0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored

0 watchdog

0 input packets with dribble condition detected

1448619784 packets output, 4091330052 bytes, 0 underruns

0 output errors, 0 collisions, 1 interface resets

0 babbles, 0 late collision, 0 deferred

0 lost carrier, 0 no carrier

0 output buffer failures, 0 output buffers swapped out

've tried stripping it down to its simplest form for these 2 particular routers. I have only 1 class map, and 1 policy map and have attempted binding it to several interfaces. I've repeated the process on another router with the same results. Of course however as mentioned previously it works fine on 3 other routers.

SanDiego2801#sh class-map

Class Map match-any BUSINESSCRITICAL (id 1)

Match access-group 151

Match protocol citrix

Match protocol sqlserver

Match protocol http host "timesheets"

Match protocol http host "connect"

SanDiego2801#

SanDiego2801#sh policy-map

Policy Map LANEDGE-MARKING&WORMTRAFFIC

Class BUSINESSCRITICAL

set dscp af31

Extended IP access list 151

10 permit ip any host 10.4.0.72

20 permit tcp any host 10.4.0.54 eq www

30 permit tcp any host 10.4.0.11 eq www

40 permit tcp any host 10.4.0.45 eq www

50 permit tcp any host 10.4.0.72 eq www

60 permit tcp any host 10.4.0.37 eq www

SanDiego2801(config)#int fa 0/1

SanDiego2801(config-if)#servi

SanDiego2801(config-if)#service-policy input LANEDGE-MARKING&WORMTRAFFIC

SanDiego2801(config-if)#do sh run int fa 0/0

Building configuration...

Current configuration : 203 bytes

!

interface FastEthernet0/0

ip address 10.2.0.1 255.255.0.0

ip accounting output-packets

ip nbar protocol-discovery

ip flow ingress

ip flow egress

ip route-cache flow

speed auto

full-duplex

end

mmunoz-20 Tue, 12/04/2007 - 12:06

OK your policy-map is for inbound, but you apply the policy in the Interface Fa0/1

SanDiego2801(config)#int fa 0/1

SanDiego2801(config-if)#servi

SanDiego2801(config-if)#service-policy input LANEDGE-MARKING&WORMTRAFFIC

and you display the show running-command for the Fa0/0

SanDiego2801(config-if)#do sh run int fa 0/0

Building configuration...

You must be execute the command for the Interface Fa 0/1

" do sh run int fa0/1 "

WILLIAM STEGMAN Tue, 12/04/2007 - 13:37

I was hoping it was maybe my fault, but it doesn't look like it. This is happening on 2 routers, unlikely I made that mistake twice, but I did check the fa 0/1 int, no service policy command found and applied the policy map to the fa 0/0 interface with the same results, no service policy command again after running sh run int fa 0/0 or fa 0/1

WILLIAM STEGMAN Wed, 12/05/2007 - 14:09

I've looked at the logs after applying the service policy commands to an interface and on am getting traceback errors,

this is on the dallas router

*Dec 5 21:58:55.473 UTC: %ALIGN-3-TRACE: -Traceback= 0x61B56CE8 0x613A2EC8 0x613AAB70 0x613AC308 0x614855E8 0x614104AC 0x6141062C 0x6143BBBC

and this on the San Diego router

206.115.117.178: <187>196: Dec 5 22:07:05: %ALIGN-3-SPURIOUS: Spurious memory access made at 0x613B303C reading 0x28

206.115.117.178: <187>197: Dec 5 22:07:05: %ALIGN-3-TRACE: -Traceback= 0x613B303C 0x613AD19C 0x613AD4F8 0x613AC8D0 0x614855E8 0x614104AC 0x6141062C 0x6143BBBC

mmunoz-20 Sat, 12/08/2007 - 09:41

Hi.. I see in the Bug Toolkit that your IOS version have some many problems relationated with service-policy and memory management (messages ALIGN-3-TRACE anf ALIGN-3-SPURIOUS), the recomended IOS version is 12.4.T2 or 12.4.T4 this two lastest version, don't have any bug documented in Cisco Support Page

WILLIAM STEGMAN Wed, 12/12/2007 - 11:05

do you have a specific bug id? I'll need it for documentation relating to the requirement for upgrading the IOS on the problem routers.

thank you

Actions

This Discussion