NBAR Protocol

Cisco IOS Quality of Service Update
Internet Technologies Division J u ne 2005
Cisco IOS QoS Update, 6/05
20 0 5 C i s c o S y s t e m s , I n c . A l l r i g h t s r e s e r v e d .
Cisco Public
A g en da
What is Quality of Service (QoS)? C isco I O S QoS b est p ractices T he C isco I O S QoS b ehavioral m od el N etw ork -B ased A p p lication R ecog n ition (N B A R ) C isco A utoQoS for the E n terp rise F uture: flex ib le flow B an d w id th E stim ation usin g C orvil B an d w id th m an ag em en t
Cisco Public
W h at is Quality of Service? T w o P erspectives

The user perspective
U sers p erceive that their ap p lication s are p erform in g p rop erly
Voice, video, and data
The n etw o rk m a n a g er perspective
N eed to m an ag e b an d w id th allocation s to d eliver the d esired ap p lication p erform an ce

C ontr ol del ay , j itter , and p ack et l os s
Cisco Public
M ultipurpose IP N etw ork s D eliverin g M ultiple T ypes of Services

R ea l-tim e tra f f ic
V oic e ov e r I P ( V oI P) V id e oc onf e re nc ing
Tra nsa ctiona l tra f f ic
S trea m ing tra f f ic
W eb content
Browsing S h op p ing
O rd e r p roc e ssing & b il l ing I nv e nt ory & sh ip p ing A c c ou nt ing & re p ort ing
V id e o on De m a nd ( V oD) Mov ie s
B u lk tra f f ic
E m a il Da t a b a c k u p s Print f il e s
C onvergence
IP N e tw o rk

All traffic is n o t alik e

Cisco Public
W h en is QoS Used?
If b a n d w i d t h i s a b u n d a n t , e c o n o m i c a l , r e lia b le a n d a v a ila b le , th e r e is n o n e e d fo r Q o S O th e r w is e , Q o S m e c h a n is m s a r e :
E sse nt ia l f or re a l -t im e a p p l ic a t ions
I m p ort a nt f or h igh -p riorit y d a t a a p p l ic a t ions Powe rf u l a nd h e l p f u l t o l im it u nd e sire d t ra f f ic

P otential s ecu rity th reats R es ou rce-cons u m ing b u t l ow p riority traffic R es p ons e-tim e s ens itive: I nteractive, trans actional
O ne way, s tream ing: M ovies , l ectu res
Two way, interactive: Voice, videoconferencing
A b il it y t o a ssign a l owe r p riorit y t o b u l k d a t a a p p l ic a t ions

E l as tic ap p l ications can wait and u s e data wh enever p ack ets arrive
Cisco Public
D ifferen t T ypes of T raffic H ave D ifferen t N eeds

R e a l -t i m e a p p l i c a t i o n s e s p e c ia lly s e n s itiv e to Q o S
I nt e ra c t iv e v oic e V id e oc onf e re nc ing
A p p l ic a tion E x a m p l es I nter a c tive V oic e a nd V id eo Str ea m ing V id eo T r a nsa c tiona l / I nter a c tive B u l k D a ta E m a il F il e T r a nsf er Sensitivity to Q oS M etr ic s D el a y J itter P a c k et L oss
C a u s e s o f d e g ra d e d p e rfo rm a n c e
Y N Y N
Y Y N N
Y Y N N
C onge st ion l osse s
T h e Q o S c h a lle n g e
V a ria b l e q u e u ing d e l a y s
Ma na ge b a nd wid t h a l l oc a t ions t o d e l iv e r t h e d e sire d a p p l ic a t ion p e rf orm a nc e
C ont rol d e l a y , j it t e r, a nd p a c k e t l oss
N eed to m a na ge b a nd w id th a lloca tions

Cisco Public
6
QoS Solution E x am p le
Cisco Public
B est E ffort Quality of Service

Without QoS p olicies, traffic is served w ith b est effort
N o d istinction b etw een high a nd low B u siness critica l vs. b a ck grou nd p riority
N o a llow a nces f or d if f erent a p p lica tion need s
N o p rob lem , un til con g estion occurs

IPp a c k e ts
R ea l-tim e voice/ vid eo vs. b u lk d a ta tra nsf er
Cisco Public
T raffic F low s w ith B est E ffort QoS N o Con g estion N o P rob lem
R ou ter
S erver
O n serial lin k s, lon g er p ack ets tak e lon g er to tran sm it Sm aller p ack ets can b e d elayed b ehin d lon g er on es
Cisco Public
Con g estion w ith out QoS P olicies E x am ple: User P rin ts to A ttach ed P rin ter
P rint p a ck ets d om ina te a va ila b le b a nd w id th R esp onse tim e slow s f or a ll u sers
R ou ter S erver
Print p a c k e t s
Cisco Public
10
Citrix ICA
P riority H igh M ed iu m L ow B a ck grou nd
P riority P ack et T ag g in g
IC A B its ( d ecim a l) 0 1 2 3 V irtu a l C ha nnel P riorities S a m p le V irtu a l C ha nnels V id eo, m ou se, a nd k ey b oa rd screen u p d a tes
P rogra m neighb orhood , clip b oa rd , a u d io m a p p ing, a nd license m a na gem ent C lient com m on eq u ip m ent ( C O M ) p ort m a p p ing, client d rive m a p p ing A u to client u p d a te, client p rinter m a p p ing, a nd O rigina l E q u ip m ent M a nu f a ctu re ( O E M ) cha nnels
C is co Network ing I ntegration with th e C itrix I C A P rotocol , www. s u p p ort. citrix . com / D ocu m ent I D : C TX 104 4 7 5 , J u l y 2004 , 17 p gs .
Cisco Public
11
M an ag in g Con g estion w ith QoS P olicies B ased on Citrix ICA V irtual Ch an n el P riorities
N on-p rinting u sers not a f f ected
R ou ter
S erver
W hile p rinting, low er p riority given to tha t session

Cisco Public
12
H ow
1 .
cl as s m m m cl as s m -m ap atch atch atch -m ap atch
T o R ate-L im it P rin t T raffic

m atch -any C itrix -h igh -m ediu m -l ow p rotocol citrix ica-tag 0 p rotocol citrix ica-tag 1 p rotocol citrix ica-tag 2 C itrix -b ack grou nd p rotocol citrix ica-tag 3
C onf igu re class maps t h a t c l a ssif y C it rix I C A t ra f f ic b y I C A t a g
2 .
C re a t e a po li cy map t h a t a l l oc a t e s b a nd wid t h f or t ra f f ic m a t c h e d b y t h e class maps
p ol icy-m ap C itrix -traffic cl as s C itrix -h igh -m ediu m -l ow b andwidth p ercent 20 < < < A s s ign 20% as m inim u m b andwidth cl as s C itrix -b ack grou nd b andwidth p ercent 5 < < < A s s ign 5 % as m inim u m b andwidth p ol ice cir 128 000 < < < L im it b its -p er-s econd to 128 k b p s ( e. g. , on 1. 5 M b p s T1 l ink ) conform -action trans m it < < < Trans m it now if traffic with in th e 128 k b p s l im it ex ceed-action drop < < < D rop now ( TC P wil l retrans m it l ater) if ab ove l im it I nterface S erial 0/ 0 s ervice-p ol icy ou tp u t C itrix -traffic
3 .
A ssign t h e po li cy map t o t h e rou t e r int e rf a c e ( s) wit h a se r v i ce po li cy
< < < S p ecify th e rou ter interface < < < A p p l y th e policy-m a p to ou tb ou nd traffic
Cisco Public
13
T h e C i t r i x P D L M i s a l r e a d y i n p r o d u c t i o n i n n e tw o r k . It is d e p lo y e d in o u r H Q C is c o 7 3 R o u te r s , r e m o te s ite s w ith C is c o 1 7 0 0 a n d S e r ie s R o u te r s . It r e c o g n iz e d C itr ix IC A 0 , g iv e p r io r ity to a ll, b u t lim it IC A 3 . N o m o r e b u t e x c e lle n t, e x c e lle n t, e x c e lle n t!

C is co C u s tom er
o u r 0 1 2 6 0 0 1 , 2 , 3 , w e w o rd s ,
Cisco Public
14
Custom ers Usin g Cisco IOS QoS
The World Bank Group
an d m an y m ore!
Cisco Public
15
T h e W orld B an k V ideocon feren cin g over Satellite L in k s w ith Cisco IOS QoS
T he World B an k G lob al D evelop m en t L earn in g N etw ork : w w w . cisco. com / g o/ q os/

Cisco Public
16
C isco I O S QoS B ehavioral M od el
Cisco Public
17
Cisco IOS QoS B eh avioral M odel

Queuin g System
q u e u e
P ack et stream
C l as s ification
O p tiona l P r eQ u eu ing O p er a tor s
q u e u e
S ch edu l er
O p tiona l P ostQ u eu ing O p er a tor s
q u e u e
Cisco Public
18
Specify M atch Con dition s an d P olicy A ction s

M a tch C ond itions P olicy A ctions
Q u e u in g S y s te m
O p tiona l P r eQ u eu ing O p er a tor s
q u e u e q u e u e q u e u e
S ch edu l er
C l as s ification
O p tiona l P ostQ u eu ing O p er a tor s
C la s s ific a tio n C la s s ify T r a ffic
Pr e -Q u e u i n g Im m e d i a t e A c tio n s
Q u S c C o n M a n a n d
e u in h e d g e s a g e A v o
g a n d u lin g tio n m e n t id a n c e
Po s t -Q u e u i n g L in k E ffic ie n c y M e c h a n is m s
Cisco Public
19
Operators for T raffic Classification an d QoS P olicy A ction s

M a tc h C o n d itio n s
k e y word : c l a ss-m a p C l a ssif ic a t ion Pre -Q u e u ing k e y word : p ol ic y -m a p Q u e u ing a nd S c h e d u l ing Post -Q u e u ing
Po l i c y A c t i o n s
C l a ssif y T ra f f ic
I m m e d ia t e A c t ions
( Set Q oS va l u es)
Q R B F P S
M atch one or m ore attrib u tes ( p artial l is t) :
M ark P D C E
A C L l ist C O S D if f er entia ted Ser vic es C od e P oint ( D SC P ) I np u t-inter f a c e M ed ia A c c ess C ontr ol ( M A C ) a d d r ess P a c k et l eng th P r ec ed enc e P r otoc ol V L A N
ol ice rop ou nt s tim ate B andwidth
u eu e-L im it andom -D etect andwidth air-Q u eu e riority h ap e
C onge st ion Ma na ge m e nt a nd A v oid a nc e
Link E f f ic ie nc y Me c h a nism s
C om p res s H eader F ragm ent
( L ink F r a g m enta tion a nd I nter l ea ving , L a yer 2 )
Cisco Public
20
QoS B est P ractices A t-a-G lan ce Sum m aries
Cisco Public
21
W h at is Quality of Service? T w o P erspectives

T h e U se r P e rsp e ctiv e
U sers p erceive that their ap p lication s are p erform in g p rop erly
Voice, Video, and Data
T h e N e tw o rk M an ag e r P e rsp e ctiv e
N eed to m an ag e b an d w id th allocation s to d eliver the d esired ap p lication p erform an ce

C ontr ol Del ay , J itter , and P ack et L os s
Cisco Public
22
22
QoS B est P ractices

A su c c e ssf u l Q oS d e p l oy m e nt inc l u d e s t h re e k e y p h a se s:
1 ) Str a teg ic a l l y d ef ining th e b u siness ob j ec tives to b e a c h ieved via Q oS 2 ) A na l yz ing th e ser vic e-l evel r eq u ir em ents of th e tr a f f ic c l a sses 3 ) D esig ning a nd testing Q oS p ol ic ies
1) S t r a t e g i c a l l y d e f i n i n g t h e b u s i n e s s o b je c tiv e s to b e a c h ie v e d b y Q o S
Business QoS objectives need to be defined: I s th e objective to ena bl e V oI P onl y , or is video a l so r eq uir ed? I f so, is video-confer encing r eq uir ed str ea m ing video or both ? A r e th er e a p p l ica tions th a t consider ed m issioncr itica l ? I f so, w h a t a r e th ey ? D oes th e or g a niz a tion w ish to sq uel ch cer ta in ty p es of tr a ffic? I f so, w h a t a r e th ey ? D oes th e business w a nt to use QoS tool s to m itig a te D oS/ w or m a tta ck s? H ow m a ny cl a sses of ser vice a r e needed to m eet th e business objectives? Beca use QoS intr oduces a sy stem of m a na g ed unfa ir ness, m ost QoS dep l oy m ents inevita bl y enta il p ol itica l a nd or g a niz a tiona l r ep er cussions w h en im p l em ented. T o m inim iz e th e effects of th ese non-tech nica l obsta cl es to dep l oy m ent, a ddr ess th ese p ol itica l a nd or g a niz a tiona l issues a s ea r l y a s p ossibl e, g a r nish ing ex ecutive endor sem ent w h enever p ossibl e.
2 )A n a ly z e th e a p p lic a tio n s e r v i c e -l e v e l r e q u i r e m e n t s .
3 )D e s ig n a n d te s t th e Q o S P o lic ie s .
C l a ssify , m a r k , a nd p ol ice a s cl ose to th e tr a ffic-sour ces a s p ossibl e; fol l ow D iffer entia ted-Ser vices sta nda r ds, such a s R F C 2 4 7 4 , 2 4 7 5 , 2 5 9 7 , 2 6 9 8 , a nd 3 2 4 6 .
A p p l i c a t i on R ou t i n g V oi c e In te r a c tiv e V id S tr e a m in g V id M i s s i on C r i t i c C a l l -S i g n a l l i n T r a n s a c t i on a l D Ne t w or k M g m B u lk D a ta S c a v e n g e r B e s t E f f or t L 3 C l a s s i f i c a t i on P H B D S C P C S 6 4 8 E F 4 6 A F 4 1 3 4 C S 4 3 2 A F 3 1 2 6 C S 3 2 4 A F 2 1 1 8 C S 2 1 6 A F 1 1 1 0 C S 1 8 0 0
V oic e
P r e d i c a b l e F l ow s U D P P r i or i t y 3 0m s jitte r 1 % l os s
D r op + D e l a y S e n s i t i v e 1 5 0 m s on e -w a y d e l a y
1 7 k b p s -1 06 k b p s V oI P + C a l l -S i g n a l i n g
V id e o

e o e o a l g a ta t
U n p r e d i c a b l e F l ow s D r op + D e l a y S e n s i t i v e U D P P r i or i t y 1 5 0 m s on e -w a y d e l a y 3 0m s jitte r 1 % l os s O v e r p r ov i s i on s t r e a m b y 2 0% t o a c c ou n t f or h e a d e rs + b u rs ts
P r ovision q ueuing in a consistent m a nner ( a ccor ding to p l a tfor m ca p a bil ities) .

B e s t E f f or t S c a v e n g e r B u lk S t r e a m i n g -V i d e o Ne t M g m t T r a n s a c t i on a l B e s t E f f or t R e a l -t i m e 2 5 % 3 3 % C r itic a l D a ta R ou t i n g V oi c e In te r a c tiv e V id e o
Da t a

No on e -s i z e f i t s a l l S m oot h / B u r s t y B e n ig n /G r e e d y T C P R e tr a n s m its / U D P d oe s n ot
T h or oug h l y test QoS p ol icies p r ior to p r oduction-netw or k dep l oy m ent.
C a l l -S i g n a l i n g M i s s i on -C r i t i c a l
Cisco Public
23
Scaven g er - Class QoS Strateg y for D en ial of Service/ W orm A ttack M itig ation
Q oS t ools a n d st r a t e g ic d e sig n s ca n m it ig a t e t h e e f f e ct s of w or m s a n d k e e p cr it ica l a p p lica t ion s a v a ila ble d ur in g D oS a t t a ck s. r r e d toa sS t w o-st e p t a f ir st - a n d n d r e a ct ion f f ic. loy in g S lica t ion or m a l v e n ce in ca v e n g e r ct ica l se con d -or d e r t o D oS / w or m D oS a n d w or m a t t a ck s a r e e x p on e n t ia lly in cr e a sin g in f r e q ue n cy , com p le x it y , a n d scop e of d a m a g e . O n ly t r a f f ic in e x ce ss of t h e n or m a l/ a bn or m a l t h r e sh old is r e m a r k e d t o S ca v e n g e r . S ca v e n g e r D S CP CS 1 A k e y p oin t of t h is st r a t e g y is t h a t le g it im a t e t r a f f ic f low s t h a t t e m p or a r ily e x ce e d t h r e sh old s a r e n ot p e n a liz e d by S ca v e n g e r -cla ss Q oS . Only sust a in e d , a bn or m a l st r e a m s g e n e r a t e d sim ult a n e ously by m ult ip le h ost s ( h ig h ly in d ica t iv e of D oS / w or m a t t a ck s) a r e subj e ct t o a g g r e ssiv e d r op p in g a n d such d r op p in g on ly occur s a f t e r le g it im a t e t r a f f ic h a s be e n f ully se r v ice d .
N ot e t h a t a n om a lous t r a f f ic is n ot d r op p e d or p e n a liz e d a t t h e e d g e ; it is sim p ly r e m a r k e d .
A p p lica t ion t r a f f ic e x ce e d in g t h is n or m a l r a t e w ill be subj e ct t o f ir st -or d e r a n om a ly d e t e ct ion a t t h e Ca m p us A cce ss-E d g e , sp e cif ica lly : e x ce ss t r a f f ic w ill be m a r k e d d ow n t o S ca v e n g e r ( D S CP CS 1 / 8 ) .
T h e Q oS w h a ( w it
T h is st r a t e g y is r e f e cla ss Q oS , it use s a a p p r oa ch t o p r ov id e a n om a ly d e t e ct ion a a t t a ck -g e n e r a t e d t r a
N or m al /A b n or m al T h r esh ol d
f ir st st e p in d e p is t o p r of ile a p p t con st it ut e s a n h in a 9 5 % con f id
ca v e n g e r -cla ss s t o d e t e r m in e s. a bn or m a l f low t e r v a l) .
Ca m p us A cce coup le d w it h p olicie s on t h D ist r ibut ion L
S ca v e n g e r is d r op p e d t h e m ost a g g r e ssiv e ly ( on ly a f t e r a ll ot h e r t r a f f ic t y p e s h a v e be e n f ully -se r v ice d ) .
A n om a lous t r a f f ic p r e v iously m a r k e d t o
Q ue uin g p olicie s on ly e n g a g e w h e n lin k s a r e con g e st e d . T h e r e f or e , on ly if up lin k s be com e con g e st e d d oe s t r a f f ic be g in t o be d r op p e d .
ss-E S ca v e up a y e r
d g e p olicin g p olicie s a r e e n g e r -cla ss q ue uin g lin k s t o t h e Ca m p us .
T h e Ca m p us up lin k s a r e n ot t h e on ly p oin t s in t h e n e t w or k in f r a st r uct ur e w h e r e con g e st ion could occur . T y p ica lly W A N a n d V PN lin k s a r e t h e f ir st t o con g e st . T h e r e f or e , E f f or t q ue n e t w or k d e ( a ccor d in g
B e s t E f f or t
S ca v e n g e r -cla ss le ss-t h a n -B e st uin g sh ould be p r ov ision e d on a ll v ice s in a con sist e n t m a n n e r t o p la t f or m ca p a bilit ie s) .

V oi c e
P ol ic ing P ol ic y N or m a l T r a f f ic
P ol ic ing P ol ic y N or m a l T r a f f ic
Sc a veng er
B u lk
B e s t E f f or t 2 5 %
R e a ltim e 3 3 %
In te r a c tiv e V id e o
C r itic a l D a ta R ou t i n g C a l l -S i g n a l i n g M i s s i on -C r i t i c a l
S tr e a m in g V id e o
Ne t M g m t T r a n s a c t i on a l
A nom a l ou s T r a f f ic
A nom a l ou s T r a f f ic
Q u eu ing P ol ic y
T h or oug h ly t e st Q oS p olicie s p r ior t o p r od uct ion -n e t w or k d e p loy m e n t . Cisco Public

24
Cam pus QoS D esig n

T h r e e m a in t y p e s of Q oS p olicie s a r e r e q uir e d w it h in t h e Ca m p us: Q oS p olicie s sh ould a lw a y s be e n a ble d in Cisco Ca t a ly st S w it ch h a r d w a r e r a t h e r t h a n r out e r sof t w a r e w h e n e v e r a ch oice e x ist s.
S T A R T
A ccess-E dg e p ol icer s, such a s th is one, detect a nom a l ous fl ow s a nd r em a r k th ese to Sca veng er ( D SC P C S1 ) .
Y e s 1 2 8k b p s No Y e s Y e s Y e s
Q u e u i n g p ol i c i e s w i l l v E .g . 1 P 3 Q P = P r i or i t y Q u e u e Q = T = W R E D T h D S C P C oS C S 7 C S 6 A F 4 1 A F 3 1 A F 2 1 A F 1 1 C S 1 0 C S 2 C S 3 C S 4 E F C oS 7 C oS 6 C oS 5 C oS 4 C oS 4 C oS 3 C oS 3 C oS 2 C oS 2 C oS 1 C oS 1 0
a r y b y p l a t f or m : 1 T Non -P r i or i t y Q u e u e r e s h ol d 1 P 3 Q 1 T Q u e u e 4 P r i or i t y Q u e u e C oS 5 Q C oS C oS C oS C oS C oS
1 ) Cla ssif ica t ion a n d M a r k in g 3 ) Q ue uin g 2 ) Policin g a n d M a r k d ow n
V V L A N+ D S C P E F No V V L A N+ D S C P C S 3 No V V L A N A NY No D V L A N A NY
T r ust a nd T r a nsm it D r op T r ust a nd T r a nsm it R em a r k to D SC P C S1
Cla ssif ica t ion , m a r k in g , a n d p olicin g sh ould be p e r f or m e d a s close t o t h e t r a f f ic-sour ce s a s p ossible , sp e cif ica lly a t t h e Ca m p us A cce ss-E d g e . Q ue uin g , on t h e ot h e r h a n d , n e e d s t o be p r ov ision e d a t a ll Ca m p us L a y e r s ( A cce ss, D ist r ibut ion , Cor e ) d ue t o ov e r subscr ip t ion r a t ios. Cla ssif y a n d m a r k a s close t o t h e t r a f f ic-sour ce s a s p ossible f ollow in g Cisco Q oS B a se lin e m a r k in g r e com m e n d a t ion s, w h ich a r e ba se d on D if f e r e n t ia t e d -S e r v ice s st a n d a r d s, such a s: R F C2 4 7 4 , 2 5 9 7 & 3 2 4 6 .
A p p l i c a t i on R ou t i n g V oi c e In te r a c tiv e V id S tr e a m in g V id M i s s i on C r i t i c C a l l -S i g n a l l i n T r a n s a c t i on a l D Ne t w or k M g m B u lk D a ta S c a v e n g e r B e s t E f f or t L 3 C l a s s i f i c a t i on P H B D S C P C S 6 4 8 E F 4 6 A F 4 1 3 4 C S 4 3 2 A F 3 1 2 6 C S 3 2 4 A F 2 1 1 8 C S 2 1 6 A F 1 1 1 0 C S 1 8 0 0
3 2 k b p s No
u e u e 3 7 0% 7 6 4 3 2
Y e s
3 2 k b p s No
Y e s
R em a r k to D SC P 0 R em a r k to D SC P C S1
Q u e u e 2 2 5 % C oS 0 Q u e u e 1 5 % C oS 1
Y e s 5 M b p s No
Y e s
R em a r k to D SC P 0 R em a r k to D SC P C S1
T h e d i a g r a m b e l ow s h ow s where i n t h e C a m p u s wha t Q oS p ol i c i e s a r e n e e d e d . No T r + Q u e C on d P ol i c u s t + P ol i c i n g u in g i t i on a l T r u s t + in g + Q u e u in g
V V L A N = V oice V L A N D V L A N = D a ta V L A N
e o e o a l g a ta t
T r u s t D S C P + Q u e u in g P e r -U s e r M i c r of l ow P ol i c i n g S e rv e r F a rm s
I P P h on e s + P C s
Cisco Public
I P P h on e s + P C s
25
N etw ork -B ased A p p lication R ecog n ition
Cisco Public
26
N B A R
Overview
M y ap p l ication is too s l ow!
F ull-p ack et, stateful in sp ection id en tifies traffic typ e
L in k U tiliz a tio n
C it rix N e t sh ow F a st t ra c k F T P H T T P
P rotocol d iscovery an alyz es m ulti-p ack et b ehavior an d ap p lication sig n atures E n ab les ap p lication of QoS p olicies to traffic flow s
2 5 1 5 1 0 3 0 2 0
% %
% %
Ma rk C it rix a s int e ra c t iv e t ra f f ic a nd p ol ic e F T P A ssu re b a nd wid t h f or C it rix !
Cisco Public
27
N B A R : F ull-P ack et In spection

Stateful and dynamic inspection
I P Pa c k e t
ToS P rotocol S ou rce I P A ddr D es t I P A ddr
T C P/ U DP Pa c k e t
S rc P ort D s t P ort
Da t a Pa c k e t
S u b -P ort/ D eep I ns p ection
I d en tifies over 9 0 ap p lication s an d p rotocols T C P an d U D P p ort n um b ers

Statically assigned D ynam ically assigned du r ing co nnectio n estab lish m ent
N on -T C P an d n on -U D P I P p rotocols
D ata p ack et in sp ection for m atchin g values

Cisco Public
28
N B A R User-D efin ed Custom Classification

I P Pa c k e t
ToS P rotocol S ou rce I P A ddr D es t I P A ddr
A pplication
Da t a Pa c k e t
F F F F 0000M oonb eam F F F F
T C P/ U DP Pa c k e t
S rc P ort D s t P ort
N a m e N a m e th e m a tc h c r iter ia u p to 2 4 c h a r a c ter s lunar_light O f f set Sp ec if y th e b eg inning b yte of str ing or va l u e to b e m a tc h ed in th e d a ta p a c k et, c ou nting f r om z e ro f or th e f ir st b yte S k ip f irs t 8 b y te s F or m a t D ef ine th e f or m a t of th e m a tc h c r iter ia A SC I I , h ex or d ec im a l as c ii V a l u e Sh ou l d m a tc h w ith th e va l u e in th e p a c k et I f A SC I I , u p to 1 6 c h a r a c ter s M o o nb e am [ Sou r c e or d estina tion p or t] O p tiona l l y r estr ic t th e d ir ec tion of p a c k et insp ec tion; d ef a u l ts to b o th d ir ec tions if not sp ec if ied [ s o urc e | d e s tinatio n] T C P or U D P I nd ic a te th e p r otoc ol enc a p su l a ted in th e I P p a c k et tc p R a ng e o r sel ec ted p or t nu m b er ( s) r a ng e w ith sta r t a nd end p or t nu m b er s, u p to 1 0 0 0 one to six teen ind ivid u a l p or t nu m b er s R ange 2 0 0 0 2 9 9 9
E x am p le
ip nbar custom lunar_light 8 ascii Moonbeam tcp range 2000 2999 class-map solar_system match protocol lunar_light policy-map astronomy class solar_system set ip dscp AF21 interface <> service-policy output astronomy
12/03 Cisco Public
29
N B A R
H T T P Classification
E x te nd e d I ns p e c tio n: N B A R lo o k s f o r an H T T P -s p e c if ic s ignature in p o rts b e y o nd w e ll-k no w n T C P p o rt 8 0 H T T P G E T re q ue s t c o ntains H o s t/ U R L s tring
H TTP G E T R eq u es t R ou ter X H TTP C l ients R es p ons es to H TTP G E T

H T T P re s p o ns e s m ay b e f urthe r c las s if ie d b y M I M E -ty p e
R ou ter Y
H TTP S erver
router(con fig -cm ap )# m atch p rotocol http ?

h o st u rl m im e host-n a m e -str i n g u r l -str i n g M I M E -ty p e
M atch p rotocol h ttp : www. cis co. com / en/ U S / p rodu cts / s w/ ios s wrel / p s 5 18 7 / p rodu cts _ com m and_ reference_ ch ap t er09 18 6 a008 017 cf0e. h tm l # 11127 8 9
-- M atch H o st N am e -- M atch U R L Str ing -- M atch M I M E T yp e
Cisco Public
30
N B A R R eal-T im e T ran sport P rotocol P ayload Classification

Statef u l identif icatio n o f r eal tim e au dio and v ideo tr af f ic, dif f er entiatio n o n th e b asis o f au dio and v ideo co decs
I P H eader U D P H eader R TP H eader A u dio/ Video/ D ata
0 1 2 3 01234567890123456789012345678901 +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ |V=2|P|X| CC |M| PT | sequence number | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | timestamp | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | synchronization source (SSRC) identifier | +=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+ | contributing source (CSRC) identifiers | | .... | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
R TP p rofil e for au dio and video conferences with m inim al control R F C 18 9 0
R eal -Tim e Trans p ort P rotocol ( R TP ) R F C
18 8 9
Cisco Public
31
NBAR-Ne t w o r k Ad d r e s s T r a n s l a t i o n Re a l T i m e S t r e a m i n g P r o t o c o l I n t e g r a t i o n
N B A d R e (R A R p r d re s s a l T im T S P) p o v id e s N e tw T r a n s la tio n e S tr e a m in g a r s in g r e s u o rk (N A T ) w ith Pr o t o c o l lts
R T S P Pa c k e t
PA CK E T
R T ru n T ra m o
R T S P-b a s e d a p p l i c a t i o n s in c lu d e
S P-b a s e d a p p l i c a t i o n s c a n i n N A T s Po r t A d d r e s s n s l a t i o n ( PA T ) c o n f i g u r a t i o n d e
R e a l S y st e m G 2 b y R e a l N e t work s W ind ows Me d ia S e rv ic e s ( W MS ) b y Mic rosof t Q u ic k T im e b y A p p l e I PT V b y C isc o
+ Pa r se
PA CK E T
N B A R
Parse
N A T
P D L M
P D L M
P D L M
N e w N BA R PDLM id e nt if ie s R T S P t ra f f ic
Cisco Public
32
N ew N B A R P ack et D escription L an g uag e M odules in 2 0 0 4 -2 0 0 5

Pe e r -t o -Pe e r T r a f f i c
e Donk e y & e Mu l e
update
W inMX
C o r p o r a te A p p lic a tio n s
C it rix I C A Priorit y Pa c k e t T a gging S A P
Pr o t o c o l s
Bit T orre nt G nu t e l l a Dire c t C onne c t Coming S k y p e
C l ient A p p l ication S erver C l ient M es s age S erver A p p S erver A p p S erver
S e ssion I nit ia t ion Prot oc ol ( S I P) S k inny
R e a l -T im e S t re a m ing Prot oc ol ( R T S P)
U s e r -D e f i n e d C u s t o m C la s s ific a tio n
H T T P H e a d e r F ie l d C l a ssif ic a t ion 1 2 Coming
.3 (1 1 )T
Coming C it rix I C A Pu b l ish e d A p p l ic a t ions 1 2 . 4 ( 2 ) T O ra c l e A p p s P ot e nt ia l
Me d ia G a t e wa y C ont rol Prot oc ol ( MG C P) R e a l T im e C ont rol Prot oc ol ( R T C P)
Coming
La y e r 2 T u nne l ing Prot oc ol ( L2 T P) P ot e nt ia l Mu l t ip rot oc ol La b e l S wit c h ing ( MPLS ) -t o-I P su p p ort H .3 2 3

( ex tens ions )
C onne c t e d ( T LM)
Mu l t ip l e Ma t c h e s Pe r Port 1 2 . 4 ( 2 ) T
A l t iris R e c ov e ry S ol u t ion
C isc o S of t wa re Downl oa d : N BA R Pa c k e t De sc rip t ion La ngu a ge Mod u l e s www. c isc o. c om / p c gi-b in/ t a b l e b u il d . p l / p d l m
Cisco Public
33
N B A R B en efit F ootprin t an d H ardw are Support

E nter p r ise B a c k b one E nter p r ise P r em ise E d g e Ser vic e P r ovid er A g g r eg a tion E d g e Ser vic e P r ovid er C or e
A p p l ic a t ion c l a ssif ic a t ion Pre c ise Q oS t re a t m e nt

C is co C atal ys t 6 5 00 S eries S witch and C is co 7 6 00 S eries R ou ter
M SF C P I SA f or Su p 3 2 I T A SC A B l a d e
A p p l ication s tatis tics for b andwidth p rovis ioning Top -n views C is co C atal ys t 6 5 00 S eries S witch and C is co 7 6 00 S eries R ou ter
F l ex W A N , M W A M P I SA f or Su p 3 2 I T A SC A B l a d e
C is co C atal ys t 6 5 00 S eries S witch and C is co 7 6 00 S eries R ou ter

F l ex W A N , M W A M P I SA f or Su p 3 2 I T A SC A B l a d e
C is co 7 200, 7 301 and 7 5 00 S eries R ou ters C is co 8 300, 17 00, 18 00, 26 0026 00X M , 28 00, 36 00, 37 00, and 38 00 S eries R ou ter
C is co 7 200, 7 301, and 7 5 00 S eries R ou ter
Cisco Public
34
P rotocol D iscovery: T raffic Classification an d R eal-T im e Statistics

A utom atically uses all P D L M s
R u n p r o to co l disco v er y instead o f sp ecif ying indiv idu al p r o to co ls
I n clud es statistics for traffic id en tified w ith userd efin ed custom ap p lication classification Statistics p er-in terface, p er-p rotocol
B it r ate ( b p s) B yte co u nts P ack et co u nts
Cisco Public
35
N B A R P rotocol D iscovery M an ag em en t In form ation B ase

P rovid es statistics p er ap p lication , p er in terface via SN M P
D isp lay p r o to co l disco v er y statistics E nab le o r disab le p r o to co l disco v er y p er inter f ace
C o nf igu r e and v iew m u ltip le to p -n tab les listing p r o to co ls b y b andw idth u sage C o nf igu r e th r esh o lds: r ep o r t b r each es and send no tif icatio ns w h en th ese th r esh o lds ar e cr o ssed
Cisco Public
36
N B A R P rotocol D iscovery M an ag em en t In form ation B ase ( Con t. )

Su p p o r ted b y C isco Q o S p ar tner s
C o n c o r d C o m m u n ic a tio n s In f o V i s t a : T r a f f i c m o n i t o r i n g ; D o S a t t a c k m i t i g a t i o n
N B A R (M IB )
p r o to co l disco v er y M anagem ent I nf o r m atio n B ase
C isco N B A R P r o to co l D isco v er y M I B
w w w . c i s c o . c o m / e n / U S / c u s t o m e r / p r o d u c t s / s w / i o s s w r e l / p s 18 3 9 / p r o d u c t s _ f e a t u r e _ g u i d e 0 9 18 6 a 0 0 8 0 15 3 e f c . h t m l w w w . c i s c o . c o m / e n / U S / p r o d u c t s / s w / i o s s w r e l / p s 18 3 9 / p r o d u c t s _ f e a t u r e _ g u i d e 0 9 18 6 a 0 0 8 0 15 3 e f c . h t m l
Cisco Public
37
C isco A utoQoS for the E n terp rise
Cisco Public
38
G oal: T o deploy consistent, end-to-end Q oS for v oice, v ideo, and data
QoS D eploym en t for Con verg ed N etw ork s
W A N
C l as s ification and Tru s t B ou ndary M ark ing / R em ark ing E gres s Q u eu e S ch edu l ing B u ffer M anagem ent
A c c ess Layer
WAN
I ntel l igent C l as s ification B andwidth P rovis ioning A dm is s ion C ontrol S h ap ing L ink F ragm entation and I nterl eaving H eader C om p res s ion
L ayer 3 P ol icing E gres s S ch edu l ing ( m u l tip l e q u eu es with W R R ) P riority Q u eu ing for Voice over I P ( VoI P ) B u ffer M anagem ent
Cisco Public
39
Distribution Layer
QoS D eploym en t - M an ual A pproach w ith out Cisco A utoQoS in th e W A N

Id e n t i f y a p p l i c a t i o n s a n d p r o t o c o l s o f i n t e r e s t U n -t r u s t e d e d g e v e r s u s t r u s t e d e d g e R e m a r k tr a ffic b a s e d o n c la s s ific a tio n
D e te r m in e c la s s o f s e r v ic e m a p p in g s fo r a p p lic a tio n a n d q u e u in g th a t s h o u ld b e e n a b le d D e te r m in e c la s s b a n d w id th r e q u ir e m e n ts C o n fig u r e tr a n s p o r t s p e c ific fe a tu r e s
T r a f f i c s h a p i n g , M u l t i l i n k PPP ( M L PPP) , a n d T X -R i n g s e t t i n g s E n a b le b a n d w id th s p e c ific Q o S fe a tu r e s H e a d e r c o m p r e s s i o n a n d f r a g m e n t a t i o n s e t t i n g s ( M L P/ L i n k F r a g m e n t a t i o n a n d In t e r l e a v i n g ( L F I) o r F R F . 12 ) C o n fig u r e a la r m

a n d e v e n t s e ttin g s fo r m o n ito r in g p u r p o s e s
Cisco Public
40
Cisco A utoQoS for th e E n terprise Com preh en sive QoS D eploym en t

A u to m atically p r o v isio ns u p to ten tr af f ic classes P r o cedu r e:
1. In v o k e " a u t o d i s c o v e r y q o s " o n th e a p p lic a b le lin k
Traffic C l as s I P R ou ting I nteractive Voice I nteractive Video S tream ing Video Tel ep h ony S ignal ing Trans actional / I nteractive Network M anagem ent B u l k D ata B es t E ffort S cavenger
D S C P C S 6 E F A F 4 1 C S 4 C S 3 A F 21 C S 2 A F 11 0 C S 1
Cisco Public
41
2 . A u to m a tic a lly c o n fig u r e th e lin k w i t h "a u t o q o s " c o m m a n d U s e " s h o w a u to q o s " to d is p la y th e Q o S p o lic y s e ttin g s d e p lo y e d
U s e " s h o w a u to d is c o v e r y q o s " to v ie w d a ta c o lle c tio n in p ro g re s s
Cisco A utoQoS D iscovery in P rog ress

show auto discovery qos R eview Q oS s tatis tics and s u gges ted p ol icy
AutoQoS Discovery enabled for applications Discovery up time: 2 days, 55 minutes AutoQoS Class information: Class VoIP: Recommended Minimum Bandwidth: 517 Kbps/50% (PeakRate) Detected applications and data: Application/ AverageRate PeakRate Total Protocol (kbps/%) (kbps/%) (bytes) rtp audio 76/7 517/50 703104 Class Interactive Video: Recommended Minimum Bandwidth: 24 Kbps/2% (AverageRate) Detected applications and data: Application/ AverageRate PeakRate Total Protocol (kbps/%) (kbps/%) (bytes) rtp video 24/2 5337/52 704574 Class Transactional: Recommended Minimum Bandwidth: 0 Kbps/0% (AverageRate) Detected applications and data: Application/ AverageRate PeakRate Total Protocol (kbps/%) (kbps/%) (bytes) citrix 36/3 74/7 30212 sqlnet 12/1 7/<1 1540
F ra m e R e la y
Cisco Public
42
Cisco A utoQoS D iscovery Sug g ested P olicy

Suggested AutoQoS Policy for the current uptime:
!
class-map match-any AutoQoS-Voice-Et3/1 match protocol rtp audio

!
class-map match-any AutoQoS-Inter-Video-Et3/1 match protocol rtp video

!
S u g g e s te d p o lic y is b a s e d o n A u to D is c o v e r y s ta tis tic s

O p t ions
C ontinu e A u toD is covery ( p ol icy m ay ch ange)
class-map match-any AutoQoS-Signaling-Et3/1 match protocol sip match protocol rtcp

!
class-map match-any AutoQoS-Transactional-Et3/1 match protocol citrix

!
C op y and ch ange th e p ol icy ( offl ine)
class-map match-any AutoQoS-Bulk-Et3/1 match protocol exchange policy-map AutoQoS-Policy-Et3/1 class AutoQoS-Voice-Et3/1 priority percent 1 set dscp ef class AutoQoS-Inter-Video-Et3/1 bandwidth remaining percent 1 set dscp af41 class AutoQoS-Signaling-Et3/1 bandwidth remaining percent 1 set dscp cs3
. . . class AutoQoS-Transactional-Et3/1 bandwidth remaining percent 1 random-detect dscp-based set dscp af21 class AutoQoS-Bulk-Et3/1 bandwidth remaining percent 1 random-detect dscp-based set dscp af11 class class-default fair-queue
Cisco Public
43
Cisco A utoQoS for th e E n terprise: T rust Option for D SCP -M ark ed T raffic
E d ge Be h ind t h e e d ge
D S C P -m ark ed p ack ets Traffic cl as s ification and D S C P m ark ing ( NB A R , A C L s , M Q C p ol icy)
>auto discovery trust

U s e w h e n D S C P v a l u e s a lr e a d y a s s ig n e d A u t o D i s c o v e r y d o e s n o t in s p e c t a n d r e c la s s ify tr a ffic Q o s ta m a b y S p tis t rk e ro u
o lic y b a s e d o n i c s f o r D S C Pd tr a ffic r e c e iv e d te r
A cces s C ontrol L is t ( A C L ) D ifferentiated S ervices C ode P oint ( D S C P ) M odu l ar Q u al ity-of-S ervice ( Q oS ) C L I ( M Q C ) Network -B as ed A p p l ication R ecognition ( NB A R )
Cisco Public
44
Cisco A utoQoS for th e E n terprise: D iffServ F un ction s A utom ated

A u to m atio n and sim p lif icatio n o f th e ex isting u ser inter f ace to ex p edite dep lo ym ent o f Q o S f eatu r es f o r v o ice, v ideo , and data F ine-tu ning o f C isco A u to Q o S gener ated p ar am eter s b y u ser , if desir ed
D iffS erv F u nction C is co I O S Q oS F eatu res
N B A R , I P P r ec ed enc e D if f Ser v C od e P oint ( D SC P ) , P or t C l a ss-B a sed M a r k ing P er c enta g (L L Q ), C la Q u eu ing ( W eig h ted e-b a ss-B C B W R ou sed L ow L a tenc y Q u eu ing a sed W eig h ted F a ir F Q ) nd R ob in ( W R R )
B eh avior
C l a ssif ic a tion of voic e, vid eo, a nd d a ta tr a f f ic b a sed on p a c k et a ttr ib u tes u p to ten c l a sses of ser vic e Set L a yer 2 a nd L a yer 3 a ttr ib u tes to c a teg or iz e p a c k ets into a c l a ss P r ovid es ex p ed ited a ssu r ed f or w a r d ing E nter p r ise R esou r c ef f or t tr ea tm ent f or f or w tr ea ep la d ef a
C l a ssif ic a tion M a r k ing C ong estion M a na g em ent Sh a p ing C ong estion A void a nc e
C l a ss-b a sed sh a p ing or F r a m e R el a y T r a f f ic Sh a p ing ( F R T S) W eig h ted R a nd om (W R E D ) E a r l y D etec tion
Sh a p e to C om m itted I nf or m a tion R a te ( C I R ) to p r event b u r st a nd sm ooth tr a f f ic f r om c onf ig u r ed r a te I ntel l ig ent p a c k et d r op d ec isions to p r event ta il d r op s a c r oss m u l tip l e T r a nsm ission C ontr ol P r otoc ol ( T C P ) sessions R ed u c e V oI P b a nd w id th r eq u ir em ent a nd j itter ex p er ienc e b y voic e p a c k ets
a r d ing tr ea tm ent f or voic e, tm ent f or vid eo a nd nning ( E R P ) d a ta a nd b est u l t tr a f f ic
L ink E f f ic ienc y H ea d er c om p r ession, l ink f r a g m enta tion M ec h a nism a nd inter l ea ving

Cisco Public
45
Cisco A utoQoS F ram ew ork R T P P ayload T ype Classification

E ases classif icatio n o f v o ice and v ideo tr af f ic
S t r e a m i n g a n d R e a l -t i m e V id e o V o i c e o v e r IP ( V o IP)
G . 7 1 1 ( A ud io) G . 7 21 ( A ud io) G . 7 22 ( A ud io) G . 7 23 ( A ud io) G . 7 28 ( A ud io) G . 7 29 ( A ud io) H . 26 1 ( V id eo) M P E G -1 ( A / V ) Dynam ic M P E G -2 ( A / V )
C O D E C
0 ( m u-l aw ) 8 ( a-l aw ) 2 9 4 1 5 1 8 3 1 1 4 ( A ud io) , 3 2 ( V id eo) , 3 3 ( A -V ) 96 - 1 27
Payload Type
D istingu ish es b etw een R T P p ack ets b ased o n p aylo ad typ e and C O D E C
F a x o v e r IP
A u d io /V id e o C o n fe r e n c in g
N o t dep endent o n U D P p o r t r ange o r D SC P m ar k ings
Cisco Public
46
B an d w id th E stim ation : C orvil B an d w id th T echn olog y
Cisco Public
47
Corvil B an dw idth T ech n olog y

C orvil B an d w id th p rovid es q uan tified an sw ers to the relation ship s b etw een :
A ctu al tr af f ic lo ad Q o S tar gets B andw idth allo catio n
C orvil B an d w id th an sw ers the follow in g q uestion :
W h at is th e m inim u m b andw idth needed to m eet a Ser v ice L ev el A gr eem ent ( SL A ) at th e cu r r ent tr af f ic lo ad?
Cisco Public
48
W h at is Corvil?
C o r v il is a so f tw ar e and h ar dw ar e co m p any b ased in D u b lin, I r eland
M a th e m a tic s e x p e r tis e F o u n d e d in A p r il 2 0 0 0 w w w .c o r v il.c o m
K ey I nsigh t ( 1 9 9 3 ) :
C o r v il B andw idth is C o r v il-p atented tech no lo gy
M e a s u r e d i r e c t l y t h e e n t r o p y o f p a c k e t t r a f f i c
C isco is a m ino r ity inv esto r in C o r v il and h as licensed C o r v il B andw idth f o r inclu sio n in C isco I O S So f tw ar e
Cisco Public
49
Corvil B an dw idth
A d e q u a te b a n d w id th is e s s e n tia l fo r a p p lic a tio n p e rfo rm a n c e
T oo M u c h B a nd w id th
W h a t y ou ne e d t o k now: C O R V I L BA N DW I DT H
T oo l it t l e b a nd wid t h : u nu sa b l e b u sine ss se rv ic e s T oo m u c h b a nd wid t h : c ost l y
Bandwidth
F or B a n f or a ch 2 5 0 m
e x a m p le , t h e Cor v il d w id t h is 4 6 0 k bp s t h is a p p lica t ion t o ie v e n o m or e t h a n s d e la y & 0 . 1 % loss
R ea l -T im e T r a f f ic B u
C o r v il B a n d w id th p r o v id e s th e m in im u m b a n d w id th r e q u ir e d to r sts m e e t a Q o S t a r g e t
A b il it y t o ob t a in b a nd wid t h v a l u e s f or u se r-sp e c if ie d Q oS t a rge t s d ist ingu ish e s C orv il Ba nd wid t h
T oo L ittl e B a nd w id th
W h a t y ou se e t od a y
M ea n T r a f f ic R a te F or ex a m p l e, 3 0 0 k b p s over a 5 -m inu te p er iod
T im e
U se C orv il Ba nd wid t h v a l u e s t o a l l oc a t e b a nd wid t h u sing e x ist ing C isc o I O S Q oS p ol ic y m e c h a nism s

Cisco Public
50
Usin g Corvil B an dw idth in Cisco IOS Softw are

C ommence ob ser v ation for a tr affic class
Sp ecif y to ler ance f o r p ack et lo ss Sp ecif y to ler ance f o r delay du r atio n
p a c k e t d rop a nd < 0 . 5 %
U se estimate bandwidth co m m and in an M Q C p o licy m ap
T o sp e c if y < 1 %
of p a c k e t s d e l a y e d m ore t h a n 5 0 m il l ise c ond s:
estimate bandwidth drop-one-in 100 delay-one-in 200 milliseconds 50
D isp lay C o r v il B andw idth v ia show policy-map interface co m m and

show policy-map interface Quality of Service targets: Drop no more than one packet in 100 (Packet loss < 1.000%) Delay no more than one packet in 200 by more than 50 milliseconds (Confidence: 99.500%) Corvil Bandwidth: 249 kbits/sec
C orvil B andwidth es tim ate
Cisco Public
51
Q oS targets
A pplyin g Corvil B an dw idth

Link S iz ing: De t e rm ine a ggre ga t e b a nd wid t h f or a l ink
R e m ot e O f f ic e H e a d q u a rt e rs
Voice S tream ing Video
By A p p l ic a t ion R e q u ire m e nt : De t e rm ine b a nd wid t h b y t y p e of t ra f f ic
Trans actional / I nteractive B u l k D ata
R e m ot e O f f ic e
Cisco Public
52
Corvil B an dw idth : F ield T rials W ell R eceived

F ina nc ia l se rv ic e s E nt e rp rise
R an l ive at s m al l s ite W h en [ we] firs t s aw th e C orvil B andwidth val u e ap p earing on th e ou tp u t from th e s h p ol icy-m ap int com m and, we b oth s aid W O W !
E F T Solution Scen ario

C orv il V iew C orv il R ep orter
I nt e rne t S e rv ic e Prov id e r
W e can s ee [ it] s aving u s a great deal of tim e and effort
Tes ted C orvil B andwidth with s ix tes t s cenarios
I ntens ive l ab accu racy tes ting
C is co R ou ter C B in C is co I O S S oftware
very s atis fied with accu racy of tes t res u l ts
C LI sh ow outp ut
CTDs
Cisco Public
B andwidth es tim ates b roadl y in l ine with ou r own b u t arrived at m u ch m ore q u ick l y
Corvil Base
53
P erform an ce T estin g B an dw idth E stim ation Usin g Corvil B an dw idth

R o u te r C is C is C is C is C is C is C is c o 7 2 c o 3 8 c o 2 6 c o 2 6 c o 18 c o 17 c o 8 3 0 0 (NPE-G1) 2 5 9 1 5 1X M 4 1 0 0 1 In c r e m e n t a l C PU p e r -c l a s s 0 .2 % 0 .2 2 % 0 .3 % 1. 6 % 0 .4 % 1. 5 % 1-2 % im p a c t o f e n a b lin g
M e a s u r e s o f t h e l a r g e s t o b s e r v e d p e r -c l a s s C PU C B (F e b ru a ry 2 0 0 5 )
N u m b e r s o f c l a s s e s r a n g i n g b e t w e e n 1 a n d 10 0
C o m p e n s a te d fo r C T D
T r a ffic r a te s r a n g in g b e tw e e n 4 0 0 K b p s a n d 2 0 M b p s
c o n fid e n c e (s a m p lin g s u ffic ie n c y )

Cisco Public
54
F eature L icen ses for Corvil B an dw idth

Hardware C i s c o 8 0 0 S eri es R o u t er C i s c o 1 7 0 0 S eri es R o u t er C i s c o 1 8 0 0 S eri es R o u t er C i s c o 2 6 0 0 S eri es R o u t er C i s c o 2 8 0 0 S eri es R o u t er C i s c o 3 7 0 0 S eri es R o u t er C i s c o 3 8 0 0 S eri es R o u t er C i s c o 7 2 0 0 S eri es R o u t er C i s c o 7 3 0 1 R o u t er P art N u m b er F L 8 -C B F L 1 7 -C B F L 1 8 -C B F L 2 6 -C B F L 2 8 -C B F L 3 7 -C B F L 3 8 -C B F L 7 2 -C B F L 7 3 0 1 -C B C F eat u re L i c en s e P ri c e $1 0 0 $9 0 0 $9 0 0
$1 , 9 0 0 $1 , 9 0 0 $3 , 5 0 0 $3 , 5 0 0 $6 , 5 0 0 $6 , 5 0 0
T h e B a te c h n o a s s h o T h e r ig lic e n s e
n d lo g w n h t fo
w id th E s tim a tio n fe a tu r e u s in g C o r v il B a n d w id th y r e q u i r e s p u r c h a s e o f C i s c o IO S S o f t w a r e f e a t u r e l i c e n s e to u s e is s e p a r a te fr o m r th e s o ftw a r e im a g e

t h e " b a s e " C i s c o IO S S o f t w a r e
Cisco Public
55
F lex ib le F low
M an ag em en t
Cisco Public
56
F lex ib le F low
M an ag em en t
A C L Q oS N A T
T r af f ic classif icatio n f o r m u ltip le client ser v ices in a h igh v o lu m e, distr ib u ted env ir o nm ent
D y n a m ic u p d a te s a v a ila b le C o n s is te n t C o m p r e h e n s iv e
E ffic ie n t
C o m m o n C la s s ific a tio n E n g in e
F ire wa l l I PS N e t F l ow IS A R ou t ing
Cisco Public
57
F lex ib le F low M an ag em en t Con trol P lan e A rch itectural M odel

Prov isioning I nt e rf a c e s: C LI , X ML, a nd A PI All Use Class-B ased P o li c y M o d el
C 3 P L (C L I)
P rovision in g L ayer
C 3 P L X M L P ol ic y Ser ver Sig na l ing P r otoc ol
F e a t u re M C ont rol Pl a ne
F ea tu r e M
A P I
F e a t u re N C ont rol Pl a ne
F ea tu r e N
A P I
C l ie nt F e a t u re s A c c e ss C l ie nt C ont rol Pl a ne A PI Pl a t f orm -I nd e p e nd e nt / -De p e nd e nt A PI a . k . a . H W A PI Pl a t f orm C h oic e s Driv e H a rd wa re a nd S of t wa re C l a ssif ic a t ion E ngine s
C l i e n t C o n t r o l Pl a n e A PI
C on trol P lan e E n g in e
Pl a t f o r m -D e p e n d e n t C o n t r o l Pl a n e
H W E ng ine 2 H W E ng ine 3 . . .
H W /S W
A PI
H W E ng ine 1
SW E ng ine
58
Cisco Public
F lex ib le F low M an ag em en t P rovision in g : E volution from M QC to Class-b ased P olicy

C o nf igu r atio n L angu age Q o S B eh av io r al M o del
MQ C CBQoS MIB
1 : cbQosServicePolicy 2 : cbQosInterfacePolicy 3 : cbQosFrameRelayVCPolicy 4 : cbQosATMPVCPolicy 5 : cbQosObjects 6 : 7 : 8 : 9 : 10: 11: 12: 13: 14: 15: 16: 17: 18: 19: 20: cbQosPolicyMapCfg cbQosClassMapCfg cbQosMatchStmtCfg cbQosQueueingCfg cbQosREDCfg cbQosREDClassCfg cbQosPoliceCfg cbQosTSCfg cbQosSetCfg cbQosClassMapStats cbQosMatchStmtStats cbQosPoliceStats cbQosQueueingStats cbQosTSStats cbQosREDClassStats
Mod u l a r Q oS C LI ( MQ C ) T od a y
U niform
A general cl as s -p ol icy l angu age Q oS as th e target ap p l ication
interface acros s h ardware p l atform s
C l a ss-b a se d Pol ic y ( C PL) La ngu a ge : More sop h ist ic a t e d a nd f u nc t iona l

P ol icy: A ny b eh avior ( control p l ane or data p l ane) ap p l ied to a cl as s
C l as s : A ny traffic s tream of interes t ( ie: interface x , p vc y, L 2-L 7 p rotocol , z ) to cu s tom er ( ie: cu s tom er wants to ap p l y a b eh avior/ p ol icy to th e traffic s tream )
Cisco Public
59
Custom er B en efits
U n ified classification for m ultip le n etw ork services
C lassif icatio n w ith a su p er io r engine w ill im p r o v e th e p r ecisio n and sp ecif icity f o r p er f o r m ing r esp ectiv e f u nctio ns
C lassification con sisten cy
P r o v ides co nsistent p r o to co l and ap p licatio n su p p o r t, r em o v ing th e p o tential o f inco nsistent b eh av io r
Cisco Public
60
Custom er B en efits ( Con t. )

F aster tim e-to-m ark et for n ew m od ules I m p roved p erform an ce
So f tw ar e lev er age
traffic id en tification
I ncr eased f eatu r e v elo city b y dev elo p ing m o du les o nly o nce f o r o ne classif icatio n engine D esign f o cu s f o r str eam lined p r o cessing and h ar dw ar e im p lem entatio n
H ar dw ar e assist
Cisco Public
61
Cisco Public
62

NBAR Protocol

Încărcat de

Informații document

Drepturi de autor

Formate disponibile

Partajați acest document

Partajați sau inserați document

Opțiuni de partajare

Vi se pare util acest document?

Este necorespunzător acest conținut?

Drepturi de autor:

Formate disponibile

NBAR Protocol

Încărcat de

Drepturi de autor:

Formate disponibile

Cisco IOS Quality of Service Update

Internet Technologies Division J u ne 2005

Cisco IOS QoS Update, 6/05

Cisco IOS QoS Update, 6/05

W h at is Quality of Service? T w o P erspectives

The n etw o rk m a n a g er perspective

N eed to m an ag e b an d w id th allocation s to d eliver the d esired ap p lication p erform an ce

Cisco IOS QoS Update, 6/05

M ultipurpose IP N etw ork s D eliverin g M ultiple T ypes of Services

Tra nsa ctiona l tra f f ic

S trea m ing tra f f ic

All traffic is n o t alik e

I m p ort a nt f or h igh -p riorit y d a t a a p p l ic a t ions Powe rf u l a nd h e l p f u l t o l im it u nd e sire d t ra f f ic

O ne way, s tream ing: M ovies , l ectu res

Two way, interactive: Voice, videoconferencing

A b il it y t o a ssign a l owe r p riorit y t o b u l k d a t a a p p l ic a t ions

Cisco IOS QoS Update, 6/05

D ifferen t T ypes of T raffic H ave D ifferen t N eeds

C onge st ion l osse s

Ma na ge b a nd wid t h a l l oc a t ions t o d e l iv e r t h e d e sire d a p p l ic a t ion p e rf orm a nc e

C ont rol d e l a y , j it t e r, a nd p a c k e t l oss

N eed to m a na ge b a nd w id th a lloca tions

Cisco IOS QoS Update, 6/05

Cisco IOS QoS Update, 6/05

B est E ffort Quality of Service

N o a llow a nces f or d if f erent a p p lica tion need s

N o p rob lem , un til con g estion occurs

R ea l-tim e voice/ vid eo vs. b u lk d a ta tra nsf er

Cisco IOS QoS Update, 6/05

Cisco IOS QoS Update, 6/05

W hile p rinting, low er p riority given to tha t session

T o R ate-L im it P rin t T raffic

C onf igu re class maps t h a t c l a ssif y C it rix I C A t ra f f ic b y I C A t a g

C re a t e a po li cy map t h a t a l l oc a t e s b a nd wid t h f or t ra f f ic m a t c h e d b y t h e class maps

A ssign t h e po li cy map t o t h e rou t e r int e rf a c e ( s) wit h a se r v i ce po li cy

Cisco IOS QoS Update, 6/05

Cisco IOS QoS Update, 6/05

Custom ers Usin g Cisco IOS QoS

The World Bank Group

T he World B an k G lob al D evelop m en t L earn in g N etw ork : w w w . cisco. com / g o/ q os/

C isco I O S QoS B ehavioral M od el

Cisco IOS QoS Update, 6/05

Cisco IOS QoS B eh avioral M odel

O p tiona l P r eQ u eu ing O p er a tor s

O p tiona l P ostQ u eu ing O p er a tor s

Cisco IOS QoS Update, 6/05

Specify M atch Con dition s an d P olicy A ction s

O p tiona l P ostQ u eu ing O p er a tor s

C la s s ific a tio n C la s s ify T r a ffic

Cisco IOS QoS Update, 6/05

Operators for T raffic Classification an d QoS P olicy A ction s

M atch one or m ore attrib u tes ( p artial l is t) :

ol ice rop ou nt s tim ate B andwidth

u eu e-L im it andom -D etect andwidth air-Q u eu e riority h ap e

C onge st ion Ma na ge m e nt a nd A v oid a nc e

C om p res s H eader F ragm ent

( L ink F r a g m enta tion a nd I nter l ea ving , L a yer 2 )

Cisco IOS QoS Update, 6/05

QoS B est P ractices A t-a-G lan ce Sum m aries

Cisco IOS QoS Update, 6/05

W h at is Quality of Service? T w o P erspectives

N eed to m an ag e b an d w id th allocation s to d eliver the d esired ap p lication p erform an ce

Cisco IOS QoS Update, 6/05

QoS B est P ractices