Page 21
Filters and QoS Configuration for ERS 5500 | | |
Technical Configuration Guide | v2.0 | NN48500-559 |
5.1 Actual Bucket Size
When configuring a meter or shape rate, a fixed token bucket is also configured which is derived from the committed rate, burst rate, and burst duration configured. If a burst duration is not configured, the largest bucket size is automatically selected which would be 512K for a 10/100 Mbps or 1 GigE port. If you wish to use another bucket size, you must calculate the burst duration by using the actual size of the bucket - Sections 5.2 and 5.3 provide examples. The following table, Table 7, shown below displays the actual bucket size in bytes.
Table 7: Actual Bucket Size in Bytes
Bucket Size | Actual size in bytes | Interface |
4K | 4,096 | 10/100 Mbps and GigE |
8K | 8,192 | 10/100 Mbps and GigE |
16K | 16,384 | 10/100 Mbps and GigE |
32K | 32,768 | 10/100 Mbps and GigE |
64K | 65,536 | 10/100 Mbps and GigE |
128K | 131,072 | 10/100 Mbps and GigE |
256K | 262,144 | 10/100 Mbps and GigE |
512K | 524,288 | 10/100 Mbps and GigE |
1024K | 1,048,576 | 10 GigE (5530) |
4096K | 2,097,152 | 10 GigE (5530) |
8192K | 8,388,608 | 10 GigE (5530) |
5.2 Policing Traffic
When configuring traffic policing, the committed rate, burst rate, and burst duration can be configured using the following command:
•5530-24TFD(config)#qos meter <1-55000> committed-rate <64-10230000 Kbits/sec> max-burst-rate <64-4294967295 Kbits/sec> max-burst-duration <1-4294967295 Milliseconds> in-profile-action <1-55000> out-profile-action [<1-1><9-55000>]
QoS parameters:
Parameter | Description |
| |
<1-55000> | Enter an integer to specify the QoS meter; range is 1 to 55000. |
| |
name <WORD> | Specify name for meter; maximum is 16 alphanumeric |
| characters. |
committed-rate | Specifies rate that traffic must not exceed for extended periods to |
<64-10230000> | be considered in-profile. Enter the rate in Kb/s for in-profile traffic |
| in increments of 1000 Kbits/sec; range is 64 to 10230000 |
| Kbits/sec. |
max-burst-rate | Specifies the largest burst of traffic that can be received in a |
<64-4294967295> | given time for the traffic to be considered in-profile. Used in |
| calculating the committed burst size. Enter the burst size in Kb/s |
| for in-profile traffic; range is 64 to 294967295 Kbits/sec |
max-burst-duration | Specifies the amount of time that the largest burst of traffic can |
<1-4294967295> | be received for the traffic to be considered in-profile. Used in |
| calculating the committed burst size. Enter the burst duration in |
| ms for in-profile traffic; range is 1 to 4294967295 ms. |
in-profile-action <1-55000> | Specify the in-profile action ID; range is 1 to 55000. |
in-profile-action-name | Specify the in-profile action name. |
<WORD> | |
___________________________________________________________________________________________________________________________
Nortel Confidential Information Copyright © 2008 Nortel Networks. All Rights Reserved. | |
External Distribution | 20 |
Contents
Ethernet Routing Switch
NN48500-559
Abstract
Table of Contents
List of Tables
List of Figures
Symbols
Document Updates
Conventions
Text
Overview Ethernet Routing Switch 5500 QoS and Filtering
Untrusted Ports
Classification
Unrestricted Ports
ƒ Layer 2 Classifier Elements
Statistics
Actions Supported
QoS Flow Chart
Filter Functionality
Overall Classification Functionality
Classifier Block Functionality
7, 15, 31, 63 255, 511, 1025 4095, 8191 32762, or Min =
Port Range Functionality
Policies
Default Policy Drop Action
NN48500-559
5520-24T-PWRconfig#qos agent buffer large maximum regular
5520-24T-PWRconfig#default qos agent buffer
Queue Sets
Egress CoS Queuing
Ethernet Routing Switch 5500 Egress CoS Queuing
CoS
5520-24T-PWRconfig#qos agent queue set
5520-24T-PWRconfig#show qos queue-set-assignment
5520-24T-PWRconfig#default qos agent queue-set
5520-24T-PWRconfig#qos agent reset-default
Egress Queue Recommendations
Bucket Size
Traffic Meter and Shaping
Policing Traffic
Actual Bucket Size
Actual Bucket Size in Bytes Actual size in bytes Interface
Parameter Description
Example
Interface Shaper
Meter Bucket Size and Duration
Bucket Size Max burst rate Committed rate Duration MSec
5530-24TFDconfig#show qos if-shaper port
Default Nortel CoS Markings
Default Nortel Class of Service
Binary
Hex Decimal
ACL Configuration
QoS Access Lists ACL
IP-ACL Configuration
Config#qos ip-acl name 1..16 character string ?
ACL-Assign Configuration
2 L2-ACL Configuration
ACL Configuration Example
Config#qos l2-acl name 1..16 character string ?
Verification
5530H-24TFD#show qos acl-assign
5530H-24TFD#show qos ip-acl
5530H-24TFD#show qos policy
5500config#no qos acl-assign 1 port 1/19
5500config#no qos acl-assign
5500config#no qos ip-acl
Changing ACL
Dhcp Snooping Configuration
IP Security Features
Dynamic ARP Inspection Configuration
Dhcp Snooping
IP Source Guard
IP Source Guard Configuration
Bpdu Filtering
Bpdu Filtering Configuration
QoS Interface Applications
QoS Applications Number of Classifiers Used Feature
ARP Spoofing
Configuration Example
Dhcp Snooping
Dhcp Attacks
10.3 DoS
Bpdu Blocking
Role Combination
Configuration Steps Policy Configuration
ERS5500-48T#show qos if-assign
ERS5500-48T#show qos if-group
Classification
ERS5500-48Tconfig#qos ip-element 1-64000?
Adding IP and L2 Element
IP Element
Adding a Classifier Block
Adding a Classifier
Parameters and variables Description
Meters
Add a New Policy
Configuration Examples
Pre-defined Values
QoS Action
12.2.1 ERS5500 Configuration Using Policies
Configuration Example 1 Traffic Meter Using Policies
Configure the Interface Role Combination
Configure the IP elements
Configure Meters
Configure the Classifier Block
ERS5500 Create the classifier block
Verify Operations
Configure the Policy
ERS5500 Create the policy
Verify the Role Combination
Name m1
Verify Classifier and Classifier Block Configuration
ERS5500-24T#show qos classifier-block
Verify Policy Configuration Verify that the QoS Policy
IP ACL, Dhcp Snooping, ARP Inspection, and Source Guard
12.3.1 ERS5500 Configuration
ERS5500 Add IP address to Vlan 700 and enable Ospf
ERS5500 Enable ARP-Inspection for VLAN’s 110
Verify DHCP-Snooping
ERS5500 Assign the IP-ACL’s to ports
VID
Verify ARP Inspection
Verify IP Source Guard
Verify ACL Configuration
NN48500-559
NN48500-559
ERS5500-24T#show qos acl-assign
TCP Port Range
Configuration Example 3 Port Range Using ACL or Policy
Configuration Using Policies
Configure the Policies
ERS5500 Create IP elements for UDP port range
ERS5500 Remark all other traffic to Bronze
Configuration Using IP-ACL’s
Create Policy
12.5.1 ERS5500 Configuration Using Policies
12.5.2 ERS5500 Configuration Using IP-ACL’s
ERS5500 Pass all other traffic with standard CoS
ERS5500 Assign the L2-ACL’s to ports
12.6.1 ERS5500 Configuration Using Policies
Configuration Example 5 L2 and L3 Classification
ERS5500 Add L2 elements for Vlan 110
Configure Classifier and Classifier Blocks
Dscp Mapping via Un-restricted Port Role
12.7.1 ERS5500 Configuration
Policy Configuration
ACL Configuration
ID ID
View the Queue Assignments
Configuration Example 7 Interface Shaping
Enable Shaping on Port
Verify Shape Rate Configuration
Reference Documentation
Software Baseline
Contact us
