Cisco Systems uBR7200 Security Features, Weighted Random Early Detection, Weighted Fair Queueing

Page 10

Configuring Headend Broadband Access Router Features

Security Features

Weighted Random Early Detection

Weighted Random Early Detection (WRED) enables you to specify traffic handling policies to maximize throughput under congestion conditions. Random early detection (RED) works in conjunction with TCP to intelligently avoid network congestion. WRED combines IP precedence and RED capabilities to provide differentiated performance characteristics for different classes of service, thus providing preferential traffic handling for higher priority traffic. You can define minimum and maximum queue depth thresholds and drop probabilities for each class of service.

For more information on this feature, refer to the Cisco IOS Quality of Service Solutions Configuration Guide.

Weighted Fair Queueing

Weighted Fair Queueing (WFQ) performs priority output queueing and custom queueing to grant resources to important sessions when network bandwidth is saturated; it is typically used for digitized voice packets to help reduce delay. WFQ provides expeditious handling for high priority traffic, requiring low delay, while fairly sharing the remaining bandwidth between lower priority traffic. WFQ divides link traffic into high and low priority flows based on metrics including IP precedence and traffic volume.

For more information on this feature, refer to the Cisco IOS Quality of Service Solutions Configuration Guide.

Resource Reservation Protocol

Resource Reservation Protocol (RSVP) works in conjunction with WFQ; it helps the router establish a weight for different types of packets that affect the order in which the packets enter the output queue and are placed on the cable network for transmission. Voice packets are routed through the interface with a QoS method that allows the packets to receive priority over standard data frames. A router that supports RSVP gives priority to packets that fall into a reservation within RSVP.

For more information on this feature, refer to the Cisco IOS Quality of Service Solutions Configuration Guide.

Committed Access Rate (CAR)

Committed Access Rate (CAR) provides the means to allocate and limit bandwidth to traffic sources and destinations, and specify policies to handle traffic exceeding the bandwidth allocation. CAR policies can be utilized at the ingress or egress of the network. CAR uses token bucket filters to measure traffic load and limit sources to bandwidth allocations.

Security Features

The following sections describe features that enhance the security of devices attached to the

Cisco uBR7200 series cable access routers.

Cisco IOS Multiservice Applications Configuration Guide

MC-528

Image 10
Contents Configuring Headend Broadband Access Router Features MC-519Headend Overview MC-520Topology of a Typical Broadband Network Voice over IP Services Telco Return MC-523MC-524 TODMultiple Service IDs QoS FeaturesService Class Profiles MC-525QoS Profile Enforcement TAG/NetFlow SwitchingMC-526 Netflow Switching Tag SwitchingMC-527 Weighted Fair Queueing Security FeaturesWeighted Random Early Detection Committed Access Rate CARUpstream Address Verification Cable Modem and Multicast Authentication Using RadiusDocsis Baseline Privacy MC-529Dynamic Ranging Traffic Shaping FeaturesOperations and Provisioning Features MC-530Downstream Frequency Override Downstream Channel ID ConfigurationBurst Profile Configuration CPE LimitationSpectrum Management Headend Broadband Access Router Configuration Prerequisites MC-533Headend Broadband Access Router Configuration Tasks MC-534CMTS01config# interface cable 6/0 Configuring the Downstream Cable InterfaceCMTS01# configure terminal Activating the Downstream CarrierVerifying the Downstream Carrier Setting the Downstream Center FrequencyTroubleshooting Tips MC-536Verifying the Downstream Center Frequency CMTS01config-if#cable downstream frequencyMC-537 Verifying the Downstream Channel ID Setting the Downstream Channel IDSetting the Downstream Mpeg Framing Format Annex B MC-538Verifying the Downstream Modulation Setting the Downstream ModulationVerifying the Downstream Mpeg Framing Format MC-539Verifying the Downstream Interleave Depth Setting the Downstream Interleave DepthCMTS01config-if#cable downstream interleave-depth MC-540Verifying the Downstream Helper Address Setting the Downstream Helper AddressMC-541 Setting Downstream Rate Limiting MC-542Verifying Downstream Rate Limiting Configuring the Upstream Cable InterfaceMC-543 Setting the Upstream Frequency MC-544MC-545 Verifying the Upstream FrequencyCMTS01# show controllers cable 6/0 u0 MC-546 Setting the Upstream Channel WidthVerifying Upstream Channel Width Channel-width widthSetting the Upstream Input Power Level MC-547Verifying Upstream Admission Control Verifying the Upstream Input Power LevelActivating Upstream Admission Control MC-548Activating Upstream FEC MC-549Verifying Upstream FEC Router# more systemrunning-configSpecifying Upstream Minislot Size MC-550Verifying Upstream Minislot Size Activating the Upstream ScramblerMC-551 Verifying the Upstream Scrambler CMTS01config-if#cable upstream usport scramblerCMTS01# more systemrunning-config MC-552Verifying Upstream Differential Encoding Activating Upstream Differential EncodingActivating Upstream Rate Limiting MC-553Verifying Upstream Rate Limiting CMTS01config-if#no cable upstream usport rate-limitMC-554 Frequency-adjust averaging percentage Activating Upstream Frequency AdjustmentMC-555 Verifying Upstream Frequency Adjustment Activating Upstream Power AdjustmentMC-556 MC-557 Activating Upstream Timing AdjustmentVerifying Upstream Power Adjustment Continue secondsActivating the Upstream Ports Verifying Upstream Timing AdjustmentMC-558 Verifying the Upstream Ports Setting Upstream Backoff ValuesMC-559 Data-backoff start end CMTS01config-if#cable upstream usport rangeMC-560 Data-backoff automaticVerifying Upstream Data Backoff Automatic Configuring and Activating Baseline PrivacyMC-561 CMTS01config-if#cable privacy kek grace-time Configuring KEK PrivacyMC-562 Verifying TEK Privacy Configuring TEK PrivacyVerifying KEK Privacy MC-563Verifying Baseline Privacy Configuring and Activating Frequency AgilityActivating Baseline Privacy MC-564Combiner Groups MC-565Frequency Management Policy MC-566Determining the Upstream Ports Assigned to a Combiner Group MC-567Verifying Spectrum Groups Configuring and Activating Spectrum GroupsCreating Spectrum Groups MC-568Command Purpose MC-569MC-570 Verifying Frequency Hopping Verifying Spectrum Group ConfigurationMC-571 Configuring Spectrum Group Characteristics MC-572MC-573 Verifying Spectrum Group CharacteristicsCMTS01config# cable spectrum-group groupnum hop Threshold percentActivating Cable ARP Requests Activating IP Address Resolution ProtocolAssigning the Spectrum Group and the Upstream Ports Verifying Spectrum Group and Upstream Port AssignmentsVerifying ARP Requests Activating Host-to-Host Communication Proxy ARPMC-575 Activating Cable Relay Agent Configuring Dhcp OptionsActivating Cable Proxy ARP Requests Verifying Cable Proxy ARP RequestsVerifying Dhcp giaddr Activation Activating Dhcp giaddrMC-577 Configuring ToD Service Setting Service OptionsSetting Optional IP Parameters Verifying ToD ServiceVerifying IP Multicast Echo Activating IP Multicast EchoActivating IP Broadcast Echo MC-579Verifying IP Broadcast Echo Configuring Cable ProfilesConfiguring Cable Modulation Profiles MC-580Number profile MC-581Verifying Cable Modulation Profiles Configuring QoS ProfilesMC-582 Verifying QoS Profiles MC-583Verifying QoS Permission Setting QoS PermissionEnforcing a QoS Profile Assignment MC-584Verifying a QoS Profile Assignment Managing Cable Modems on the HFC NetworkMC-585 Activating Cable Modem Authentication Configuring Sync Message IntervalConfiguring Telco Return Verifying Sync Message IntervalActivating Cable Modem Upstream Address Verification Verifying Cable Modem AuthenticationMC-587 Verifying Cable Modem Upstream Address Verification CMTS01config-if#cable source-verify dhcpActivating Cable Modem Insertion Interval MC-588Verifying Cable Modem Insertion Interval CMTS01config-if#cable insertion-interval automaticMC-589 Verifying the Maximum Number of Hosts Configuring Cable Modem Registration TimeoutMC-590 Verifying Registration Timeout Clearing and Resetting Cable ModemsMC-591 Clearing Cable Modem Counters Verifying Cable Modem Clearing and ResettingMC-592 Verifying Ping Docsis Using Ping DocsisVerifying that Cable Modem Counters are Cleared MC-593Spectrum Management Configuration Example MC-594Virtual Private Network Configuration Example MC-595MC-596 Ip http server Ip http authentication local No cdp run MC-597VoIP Configuration Example MC-598MC-599 Ip subnet-zero No ip domain-lookupTelco Return Configuration Example MC-600Cable telco-return enable MC-601MC-602 QoS Profile Enforcement Configuration ExampleCable Modem all reset Cable RegCMTS01config# cable flap-list aging days Troubleshooting Using Cable Flap ListsSetting Cable Flap List Aging MC-603Verifying Cable Flap List Aging Setting Cable Flap List Insertion TimeSetting Cable Flap List Power Adjustment Threshold Verifying Cable Flap List Insertion TimeCMTS01config# cable flap-list miss-threshold misses Setting Cable Flap List Miss ThresholdVerifying Cable Flap List Power Adjustment Threshold Verifying Cable Flap List Miss ThresholdVerifying Cable Flap List Size Setting Cable Flap List SizeClearing Cable Flap List MC-606
Related manuals
Manual 88 pages 21.59 Kb