10-03-2009 07:50 AM - edited 03-06-2019 07:59 AM
I'm in the process of implementing QoS on our network...I've already been using it on our Edge routers and that's working pretty well. However I'm having some issues doing it on the LAN, specifically on our 3750's.
To start I'm just trying to mark management traffic (ssh and telnet ports) with CS2 coming from my machine. The problem is that sho policy map int gi 3/0/43 doesn't increment the policy-map counters which I understand is a problem with all catalyst switches. However our 6500 I'm not seeing CS2 in netflow, and when I try to deny all traffic with CS2 just to test on the uplink on the 3750 it's blocking the traffic and the ACL counters for that line are not incrementing (deny ip any any dscp cs2). The uplinks on the 6500's have qos enabled and have mls qos trust on t he uplinks to the 3750, which is a Layer 3 Etherchannel port. Any ideas why this wouldn't work? Here is the config:
mls qos
Extended IP access list Management
10 permit tcp host 10.10.10.1 any eq 22
20 permit tcp host 10.10.10.1 any eq telnet
Class Map match-all management
Match access-group name Management
Policy Map standard-qos
Class management
set ip dscp cs2
police 1000000 64000 exceed-action policed-dscp-transmit
int gi 3/0/43
service-policy input standard-qos
10-03-2009 11:59 AM
Use 'sh mls qos interface [interface] statistics' on the 3750's uplinks to the 6500's, physical ports not the etherchannel. If DSCP is getting changed as per your policy map then you will see the outgoing counters rising for CS2.
If they are rising then the 3750 is doing what it's told.
10-04-2009 06:40 PM
Hi In your configuration
You configured ..CS-2 -> DSCP 16
So, Try another method
1) try other value value AF31- DSCP26
2) check the traffic marking via the monitor the port with
packet analyzer ( ex sniffer, etherreal )
3) check the status with the show command for the QoS
Cheers.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: