Applying QoS for NMS

azi123 · ‎05-29-2019

Hi everybody,

Is there any standard or usual way to configure LAN equipment to put NMS packets in high priority? Base on RFC 4594, network control packets or telephony packets could have the highest priority among different classes. NMS is responsible for configuring network equipment through different methods, i.e by SSH or SNMP or even HTTPS. How to make these packets have high priority?
1- By defining an ACL which sperate packets whose destination or source IP address is NMS IP address and the set a high priority DSCP value for them during classification or

2- By defining an ACL which sperate packets whose destination or source MAC address is NMS MAC address and the set a high priority DSCP value for them during classification or

3- Any other way??

your help is greatly appreciated!

Sheetanshu Shekhar · ‎05-29-2019

Hi Azi,

What type of LAN device are you using? Does it support NBAR for application identification? If yes, then you can match protocols in the ACL for classification

If you don't want all the packets destined to NMS to be classified, you can use a combination of ports with the IP addresses for classification.

E.g. If NMS IP is <NMS_IP> and the managed device in LAN has an IP <LAN_IP>. Then the ACL that will be used for classification of a SSH packet coming from the LAN side, and destined to the NMS, can be as follows

access-list extended MATCH_NMS

10 permit tcp host <LAN_IP> host <NMS_IP> eq 22

This can be matched in a class-map to match the relevant traffic. The on the LAN port, in the inbound direction, you can have a policy that sets the appropriate DSCP value to this traffic. With this DSCP marking, the downstream router(s) and network components can provide appropriate priority in the network, provided these routers have appropriate QoS policies.