let me ask the question in a

Dr.X · ‎02-04-2016

Hi ,

i have been working in an ISP and i have issues with QOS always .

i couldn't have QOS 100 % as i want .

well i have cisco ASR from the provider with etherchannel from proivder with 1900Mbps on gi0/0/0 & gi0/0/3

the provider loads the balance to my ports gi0/0/0 & gi0/0/3 in equal way 950Mbps ALMOST per each Link

the ports 0/0/1 & 0/0/2 are going to my LAN .

the ports 0/0/0 & 0/0/3 go to other router and i have EIGRP in those 2 links that also loadbalance the traffic that goes to lan.

so for now we can say that the out of gi0/0/0 & gi0/0/3 is equal and almost =950Mbps in the rush Hour

ALL what i need is a QOS that gurantee the bw for specific ips int he download direction

im not caring about the Upload .

to achieve that , i have done as below ::

i did parent child QOS

in the child i limited the bw to 1880Mbps which the real bw from provider is 1900Mbps

and applied the child QOS that has the CBWFQ.

the thing that im gonna ask is ,

when i apply the QOS and say im giving a host like 20 Mbps gurantee

i feel like the host have like 8mbps not the 20Mbps

im sure 2000 % that its not from the qos config.

im asking here that question becuase i feel like the INTERNET PROVIDER still do shape his side although im cutting my side to 1880

i did the cut 1880 to escape from the provider shaping that down my QOS.

i noticed a strange thing.

the traffic on the gi0/0/0 & gi0/0/3 is like 950 for each one which is total = 1900

but the traffic out gi0/0/1 & gi0/0/2 is like what the shaper do which is 940 for each Link which is total 1880

the question is being asked is

1-what is that happening ???

2- the 2nd question , do i need to do also other shaping or police for the traffic comes from ISP to me ???

will that help me to escape from provider shaping that down my QOS ?

3-what is the best way to check QOS performace on cisco ASR 1002 ?

((((dont tell me (sh policy-map int gi0/0/0) :) :) :) )))))

i hope for people that worked on ISP QOS for download to give me their best practices and their experience on that way

my kind regards

Philip D'Ath · ‎02-05-2016

If you want to guarantee the performance of your clients downloads, then the QoS needs to go on the client facing ports.

Are gi0/0/0 & gi0/0/3 separate layer 3 routed ports, or a port-channel (port-channel makes life easier ...).

How do the clients connect to you? PPPoE via Virtual-Templates, direct fibre/Ethernet connections setup as normal routed ports?

Dr.X · ‎02-07-2016

let me ask the question in a nutshell

see the topology here :

http://store1.up-00.com/2016-02/145484867167511.jpg

as u see

i have speed total from provider 1900 Mbps loaded on 2 interfaces in portchannel 2

from provider to my ASR each link carry 950 Mbps

gi0/0//0 -->950

gi0/0/3-->950

the interfaces on gi0/0/1 & gi0/0/2 go to LAN

and i have done QOS and shaping on them

shapped as

gi0/0/1 -->940Mbps

gi0/0/2 -->940Mbps

the problem is :

the total speed out of (gi0/0/1 & gi0/0/2 ) = 1880

and total incomming speed is 1900

how could that happeen ??

is there something in shapping i dont understand ???

i want the incomming speed = the outgoing speed

how to do that ?

Philip D'Ath · ‎02-08-2016

There are several ways of doing of doings this. Can you show us the config being used for the shaping on gi0/0/1 & gi0/0/2?

If you remove the shaping config do you see the throughput lift to 1900Mb/s?

Dr.X · ‎02-09-2016

Gateway-ASR1002#sh run int gigabitEthernet 0/0/0
Building configuration...

Current configuration : 118 bytes
!
interface GigabitEthernet0/0/0
no ip address
load-interval 30
negotiation auto
channel-group 2 mode active
end

Gateway-ASR1002#sh run int gigabitEthernet 0/0/3
Building configuration...

Current configuration : 118 bytes
!
interface GigabitEthernet0/0/3
no ip address
load-interval 30
negotiation auto
channel-group 2 mode active
end

Gateway-ASR1002#sh run int gigabitEthernet 0/0/1
Building configuration...

Current configuration : 184 bytes
!
interface GigabitEthernet0/0/1
description ASR-7600-Link1
ip address xxxx.1 255.255.255.252
ip nat inside
load-interval 30
negotiation auto
service-policy output isp
end

Gateway-ASR1002#sh run int gigabitEthernet 0/0/2
Building configuration...

Current configuration : 184 bytes
!
interface GigabitEthernet0/0/2
description ASR-7600-Link2
ip address xxxxxx 255.255.255.252
ip nat inside
load-interval 30
negotiation auto
service-policy output isp
end

Gateway-ASR1002#sh run int port
Gateway-ASR1002#sh run int port-
Gateway-ASR1002#sh run int port-channel 2
Building configuration...

Current configuration : 155 bytes
!
interface Port-channel2
description ASR-port-channel
ip address xxxx 255.255.255.252
ip nat outside
load-interval 30
negotiation auto
end

Gateway-ASR1002#

agian ,

in all cases if i put shape on my LAN ports or didnt put shape .............

always in the rush hour the taffic entering my ports (0/0/0 & 0/0/3) always reach the limit which is about 1900
and thats i dont want

i dont want the ISP shape my taffic i want only me to be responcible to shape my taffic

so that i need ??

i need to limit my download traffic , say like 1870 or 1880 Mbps

then i do CBWQ on my 2 lan interfaces .

but so far , i do Shape and CBWFQ /LLQ but not fine 100 % becuase the traffic reach my limit and the ISP comes agian to shape

my traffic.

how can you help me ??

here is my policmay
Gateway-ASR1002#sh policy-map isp
Policy Map isp
Class class-default
Average Rate Traffic Shaping
cir 940000000 (bps)
service-policy internet
Gateway-ASR1002#sh pol
Gateway-ASR1002#sh policy-map
Gateway-ASR1002#sh policy-map internet
Policy Map internet
Class badguys
priority 10000 (kbps)
Class cir
bandwidth 40000 (kbps)
Class sensitive
bandwidth 20000 (kbps)
Class VIP
bandwidth 180000 (kbps)
Gateway-ASR1002#

as u see above

if i do shape to 940M on each interface
tge total bw download goes to my lan is (940+940) = 1880

but the traffic hit my router and enter it ( on 0/0/0 & 0/0/3 = (port-channel 2))from internet = 1900

i need to solve this issue

====i want to traffic entering my router = the traffic exit from my router =====

do i need to change some config in shape ?
do i need wred ?
or Fairqueue ?

can u advise me ?

kind regards

Giuseppe Larosa · ‎02-09-2016

Hello Ahmed,

>> but the traffic hit my router and enter it ( on 0/0/0 & 0/0/3 = (port-channel 2))from internet = 1900

You need to understand that this is NOT under your control but under ISP control how much traffic is sent to you on portchannel2.

You try to avoid to hit the max speed by shaping on downstream links to C7600 using nested policy isp that is a shaper at 940 Mbps that invokes a child policy that is a CBWFQ but these are other links.

So in my opinion you should accept the results that you have achieved.

The request of downstream bandwidth on the user TCP flows travel upstream from your network to ISP network and you cannot control this, unless you use appliances like SCE8000 as mentioned by Philip.

I would take your results as good for your current network setup.

Hope to help

Giuseppe

Dr.X · ‎02-09-2016

thanks for reply . now if i did shape for the out that go to lan by 1980 why the incomming = 1900 where is the 20 M go ?

Dr.X · ‎02-09-2016

wanted to tell you

i have already done shape on the corresponding 7600 ROUTER that has the connect the 2 LAN interfaces on ASR to policr traffic to

940 on each Link

BUT the WAN hit the ASR from the provider stayed the same as 1900 Mbps

!!!

Philip D'Ath · ‎02-05-2016

Have you considered using a dedicated appliance to do this, like an SCE 8000?

http://www.cisco.com/c/en/us/products/collateral/service-exchange/sce-8000-series-service-control-engine/data_sheet_c78-492987.html

QOS for ISPs , best practise