it is my intention to trust incoming COS values on the UNI Ingress of an ASR903 (RSP3, IOS 3.18.05.SP.156-2.SP5 ). On the UNI port, a service instance ethernet with an associated bridge domain is configured. DSCP is not analyzable in this setup.
In the first approach, I've configured a mapping of the incoming COS values with conditionally set QoS groups using a CIR threshold. Conform action should use the set-qos-transmit command to set a QoS group corresponding to the original COS value. Exceeding action, also with set-qos-transmit should perform an implicit COS downmarking to a lower COS using a "lower" QoS group.
BUT, using this policy in an input service-policy on the UNI leads to this failure message:
ASR903(config-if-srv)#service-policy input UNI_INGRESS exceed action: set-qos-transmit cannot be configured for this interface Configuration failed on GigabitEthernet0/1/2: EFP 21
I've discovered that the set-qos-transmit command is usable only with RSP1 and RSP2, but not with RSP3.
But, I don't see any other possibilities to downmark incoming traffic if this traffic exceeds a configured CIR:
ASR903(config-pmap-c-police)#exceed-action ? drop drop packet set-dscp-transmit set dscp and send it set-prec-transmit rewrite packet precedence and send it set-qos-transmit set qos-group and send it transmit transmit packet
How should I downmark exceeding traffic if L3 QoS parameters are not usable and set-qos-transmit is not allowed?
I would be deeply grateful for any helpful advice!
show controller npu voq-usage interface all instance all location all
NPU/CORE/VOQ Base information + NPU to port mapping
show platform cpu
Operational Status of all CPU based cards
show platform secur...
Crosswork Cloud - Crosswork Trust Insights FAQ
Cisco Crosswork Trust Insights is a Cloud-hosted Software as a Service platform that helps to track, analyze, and prove hardware and software components running in your network. Trust Insights works w...
Some of you may have watched the session at Cisco’s first all-digital Cisco Live and I hope you found it helpful. This is the first in a series of companion blogs that will later cover in more detail the topics discussed in the session today. ...
CCO documentation lists out the ability to do a password recovery for eXR with a ZTP/PXE boot.
One can also perform the operation manually, like a "turboboot" for classic XR in this facinity.
this procedure will wipe out the complete system and install a...
Below is a link to a video showing how to analyze traceroute output in L3VPN and look up CEF forwarding and MPLS/TE/SR/SR-TE forwarding for labels through a domain. Some basic examples of traffic engineering are used but the concepts lend the...