I have private IP WAN (fR), which consists of 5 branch offices in different cities and a head office, I want to have all citrix traffic (port 1494) to get priority over all other traffic in these branch offices connected to the head office via MPLS based core. The serial interfaces of branch offices routers communicate through an MPLS network (managed by provider) before it communicate with our head office.
My question is regarding the configuration required to achieve this task, is it only require configuring CE routers in my branch offices?
with something like this?
class-map match-any citrix
match protocol citrix
set precedence 5
int serial 0/0
service-policy output cit-traffic
The reading i have done so far, states that there needs to be some work done on PE router (setting experimental value) when marked packets entering MPLS network.
Can someone put some light on this to clarify my concept?
IF the SP says he will not do anything in the MPLS cloud, then you can ask him waht is the trust mapping he has configured, and also confirm with him whether he has any QOS implemented in his core at all.
If he has basic trust mapping of PREC-EXP then your PREC 5 should be treated as EXP 5.
Or he will have to do the same, or else if he is doing a FIFI through his core and till the point there is no congestion in his CORE it will not affect your applications, whatever priority they are.
I have applied the following on headoffice and 2 branch offices, but i dont see any packets marked in branch offices with what i have set, i can see packets marked in the one applied in headoffice
class-map match-all ica-rdp
match protocol citrix
match access-group 100
set ip precedence 5
priority percent 50
bandwidth percent 25
branch1#sh policy-map interface
Serial0/0/0.16: DLCI 16 -
Service-policy output: high
Class-map: ica-rdp (match-all)
0 packets, 0 bytes
5 minute offered rate 0 bps, drop rate 0 bps
Match: protocol citrix
Match: access-group 100
Packets marked 0
Output Queue: Conversation 72
Bandwidth 50 (%)
Bandwidth 524 (kbps) Burst 13100 (Bytes)
(pkts matched/bytes matched) 0/0
(total drops/bytes drops) 0/0
Class-map: class-default (match-any)
37692 packets, 6430816 bytes
5 minute offered rate 75000 bps, drop rate 0 bps
Output Queue: Conversation 73
Bandwidth 25 (%)
Bandwidth 262 (kbps)Max Threshold 64 (packets)
(pkts matched/bytes matched) 1244/1175530
(depth/total drops/no-buffer drops) 0/0/0
Another thing i can not understand is why applying this service-policy as outgoing on my branch offices routers, because the traffic we want to control/protect in branch office will be inbound and outbound for headoffice router.
The Cisco EPN system incorporates a network architecture designed to consolidate multiples services on a single Multiprotocol Label Switching (MPLS) transport network. This network is designed primarily based on Application Engineered...
Internet security is important with the increasing attacks that are happening every day. Many internet and browsing security solutions exist, but some are not very easy to use or maybe the question is how can I enable them?
Cisco Software Manager Server
This document describes the programmatic interfaces, RESTful APIs, which are supported by Cisco Software Manager Server (CSM Server).
CSM Server supports a set of finite RESTful APIs. The fir...