Thank you for your reply Paul.

For the routing class, we are doing BGP, I assume I could just mark the class for cs6?

 

class-map match-any routing
match dscp cs6

Also, in regards to the bandwidth xx, do you know what would be the recommended allocation for a BGP session? 

Last one, the bandwidth percent command, that only applies during congestion correct? 

This may be an extremely stupid question but if you were simply doing static routing over such a circuit, it is fair to say no class allocation would be needed for "routing". 

Correct.

"For the routing class, we are doing BGP, I assume I could just mark the class for cs6?"

Cisco routers mark CS6, for BGP, by default. Also I recall BGP traffic will obtain PAK priority.

@joseph

isn't wfq applicable to only for packets dropped into the class-default queue and not for the specific define classes?

"isn't wfq applicable to only for packets dropped into the class-default queue and not for the specific define classes?"

Technically, not since HQF QoS.

Logically, if the class can congest, and if flows in the class are VBR, and if the two prior criteria are detrimental to the network applications using that class, FQ is often a benefit. (Basically same criteria applies to any class, class-default included.)

As an example, notice I suggested placing BGP into the same class as VDI. If there were a large BGP update, it might impact concurrent VDI flows, but with FQ, it probably won't. The alternative would be to place BGP into its own defined class, but then we need to juggle bandwidth allocation of it relative to other classes, and that allocation would de-prioritize VDI relative to other traffic.

FQ, in a class, often is one queue per flow (NB: not always though), and when than happens, you generally don't need tiered priority, but when you do, you can do it for a whole class in CBWFQ.

Sometimes to show how well FQ works, I'll have a telnet session going and then start a bandwidth test in the same class. W/o FQ, telnet performance becomes almost impossible to use. Activate FQ in the class, telnet again operates much like it does w/o the bandwidth test running concurrently. Again, the alternative would be to place the telnet and bandwidth test traffic into different defined classes, which works, but with FQ, you often don't need too.

Since FQ is dynamic, it also avoids nasty surprises, such as (true story), the day we had our "interactive traffic" class, w/o FQ and which had both telnet and SSH mapped into it, crushed by someone doing SCP.

Thank you, I appreciate the discussion.

It makes me a bit paranoid to place BGP within the same class as the VDI traffic. I am not worried about BGP affecting VDI (small tables), but worried about VDI affecting BGP. I understand your point with FQ, and it probably would never be an issue, just something that would make me paranoid. 

How would I know if my device counts L2 overhead (to adjust the shape appropriately)? I'm using 4331 ISR's. 

Would IP SLA's configured on the ISR fall into any QOS class? 

Thank you,

Well, if you're paranoid (laugh), go ahead and place the BGP (NB: remember BGP, unlike [?] VDI, uses TCP, which has it's own implications) traffic into it's own class. Again, though, there shouldn't be a much, if any, risk of VDI impacting it using FQ; also you need to determine this new class's and other classes bandwidth allocation (as I mentioned earlier [I harp on this because although you're defining bandwidth "allocations", what's actually happening is you're defining relative dequeuing priorities.]).

BTW, if you're worried about VDI impacting BGP, your original policy had data with priority level 2, which has priority over all other traffic (except priority level 1). That's much more likely to impact concurrent (i.e. other level 2, because of shared FIFO queue) and subordinate priority traffic, such as your BGP (if it's also not in same class).

"How would I know if my device counts L2 overhead (to adjust the shape appropriately)? I'm using 4331 ISR's. "

Send a "known" flow rate of traffic and "see" what the device reports for xfer rate. (NB: on software based routers, such as your 4331, such features can vary between IOS versions.)

"Would IP SLA's configured on the ISR fall into any QOS class?"

Good question! I'm not sure because sometimes traffic sourced on the same device is excluded from some egress functions. I would expect it to be fully subject to your policy, but best to test your device to insure it is.

Such information isn't always documented, or if it is, you need to find it some supplemental note or white paper. Good example (true story), years ago I had a QoS policy on a 7500 which, to me, just didn't seem to be providing the results I expected. Came across a Cisco white paper explaining how QoS on ATM interfaces (NB: I wasn't using ATM) "overflowed" from the interface TX ring FIFO queue into the CBWFQ queues; and that the TX ring queue might mitigate function of CBWFQ. The "solution" was to decrease the TX ring queue. I did that, and lo and behold, traffic QoS behavior began to meet my expectation. (NB: seems TX ring is an issue with CBWFQ on other interface types too, and I recall coming across later IOS version release notes mentioning that on these later versions the IOS would automatically decrease the default TX ring size when CBWFQ applied [although I found the newer defaults, IMO, still too large. Also, BTW, shouldn't be an issue for you since you should be using a shaper.].)

I made a class for icmp, sure enough it would hit that class every time the SLA initiated it's ping. 

QOS has always been a subject I've never had to dive into much, but this has been good for me. I appreciate the help from you Joseph and Paul. 

I slept on it, and then read up a little more on FQ. I am going to take your suggestion and run with it. I did have around 5 classes yesterday (voice, data, IT (SNMP, SSH, etc), routing, class-default). I took data, IT and routing and bundled them and set the class with FQ. 

I think this will be my last question - On a policy-map, if you do not define the class-default at the end, is it still there no matter what? Like, look below where I have it at the end, with the remaining 5 % of BW defined. If I did not put that there, what setting would assume the default? 

policy-map QOS
class voip
priority level 1
police cir percent 15
class data
bandwidth remaining percent 80
fair-queue
class class-default
bandwidth remaining percent 5
fair-queue

"On a policy-map, if you do not define the class-default at the end, is it still there no matter what?"

Yes, but it will only be FIFO and bandwidth allocation will be . . .

"Like, look below where I have it at the end, with the remaining 5 % of BW defined. If I did not put that there, what setting would assume the default?"

. . . I really don't know what the bandwidth allocation would be. That's an item I don't recall seeing documented.

BTW, when you use bandwidth remaining, those classes can total up to 100% because its the bandwidth not used by the classes defined without it. In your case, your class data is 80% of 85%.

@joseph

i did have Hqos in mind when I queried it with you but I couldn’t remember ever reading any different behaviour for it regards FQ so I was quite certain in my thinking I was correct.

After your very informative reply I did manage to find a HQF doc from 2008 which obviously supports what you have said - 

Concerning part is I have a couple of Cisco press books on qos later than 2008 that either don’t cover hqos or even come close explaining what you have stated here.

I am fully aware as engineers we need to keep abreast of the latest feature sets enhancements etc regards any new software/ hardware Cisco bring out and I am also aware how dynamic networking g is but sometimes this kind of thing not only p@@@ me off  it makes me think some of these authors are just in it to make a few quid and plagiarise Cisco documentation to meet their own ends and not provide a full picture of the topic 

Anyway rant over and thanks once again for  the clarification - very much appreciated   

 

Paul, you're most welcome, and I appreciate your kind remarks.

The link you provide, BTW, would be one I would have referenced for the QoS changes that came out with HQF. FQ changes were actually pretty significant. So much so, in some aspects, I was troubled that the same syntax would/could cause different operational results. I thought, new parameters or keywords should have been provided so you would be "forced" to confront the different operational results. (Ideally, it would have been nice to have both an old way, pre-HQF, and new way, HQF, functionally supported for some period of IOS upgrades; again, ideally, with different syntax.)

Regarding QoS books after 2008, don't forget there's a time lag in book publishing, so books published within two or there years of an IOS release stand a good chance of being out-of-date, even when hot off the press. (NB: if the author has an "in" with the vendor, they might be provided NDA information so that a book might be concurrent with an IOS release at about the same time.)

I'm sure some authors do indeed don't delve into the subject as deeply as they should, possibly for some of the reasons you note, but on the subject of QoS, I believe many just don't really understand the subject too well. Either they don't grasp how important QoS can be (e.g. all you really need is to obtain more bandwidth, and/or prioritize VoIP [heck even Internet2 uses the bandwidth premise]), or they approach it in a manner that, I think, is not as effective as it might be (e.g. let's have 12 [RFC] classes of kinds of traffic; let's have three different drop levels, except when we don't; let's have . . .). (BTW, I believe the best way to grok QoS is much like resource management is done for CPU or disk access.)

Laugh, and speaking of rants, we could get into OER, PfR, etc,, again often not appreciated or well understood too. Of course, in my first couple of decades of IT I was a software developer, so to me, many issues should be solved with a program. So, I do look at things a bit differently from the "typical" network engineer. ;)