Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
749
Views
0
Helpful
4
Replies

QoS Question

Go to solution
Brian Green
Level 1
Level 1

‎04-06-2016 08:40 AM - edited ‎03-05-2019 03:44 AM

I'm not sure if this can be done without a bunch of manual configuration.

I have a router (an ISR 2921 running 15.4(3)M3) that is connected to other ISR routers (2921s running 15.4(3)M3 and 4451-Xs running 15.4(3)S3) using DMVPNs.  The DMVPN tunnels could be over several different speed transports from Satellite links with bandwidth of 0.5Mbps to Internet-based links running at a much higher speed.  I'm trying to run QoS between the two routers - right now, the problem I am facing is that I can only apply one service-policy to the outbound interface - so if I have several different speed links, I'm only doing QoS traffic shaping for the slowest speed.  What I would like to do is have the QoS set to use a different policy based on the subnet - I'm thinking I would need to have one policy-map with a whole bunch of match access-group statements in it, and matching ACLs based on the subnet of each device.  Just to further complicate this, there are several tunnels on the inside of the router.

 

Thanks in advance for any ideas!

Quick drawing:

 

Labels:
Preview file
55 KB
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Joseph W. Doherty
Hall of Fame
Hall of Fame
In response to Brian Green

‎04-06-2016 10:21 AM

Disclaimer

The Author of this posting offers the information contained within this posting without consideration and with the reader's understanding that there's no implied or expressed suitability or fitness for any purpose. Information provided is for informational purposes only and should not be construed as rendering professional advice of any kind. Usage of this posting's information is solely at reader's own risk.

Liability Disclaimer

In no event shall Author be liable for any damages wha2tsoever (including, without limitation, damages for loss of use, data or profit) arising out of the use or inability to use the posting's information even if Author has been advised of the possibility of such damage.

Posting

I don't recall the actual command, although likely it's one of the NHRP commands.

No, the policy only applies to traffic on the hub going to one specific spoke.

For spoke to hub traffic, you can QoS manage "normally".

BTW, in one the later IOS versions, DMVPN also supports dynamic shaping (i.e. it reacts to end-to-end congestion), which might work in both directions.

View solution in original post

0 Helpful
4 Replies 4

Go to solution
Joseph W. Doherty
Hall of Fame
Hall of Fame

‎04-06-2016 08:49 AM

Disclaimer

The Author of this posting offers the information contained within this posting without consideration and with the reader's understanding that there's no implied or expressed suitability or fitness for any purpose. Information provided is for informational purposes only and should not be construed as rendering professional advice of any kind. Usage of this posting's information is solely at reader's own risk.

Liability Disclaimer

In no event shall Author be liable for any damages wha2tsoever (including, without limitation, damages for loss of use, data or profit) arising out of the use or inability to use the posting's information even if Author has been advised of the possibility of such damage.

Posting

Later versions of DMVPN, support per logical device QoS policies.  The remote requests the policy for the DMVPN hub to use to it.  These policies can have different shaper limits.

0 Helpful

Go to solution
Brian Green
Level 1
Level 1
In response to Joseph W. Doherty

‎04-06-2016 09:27 AM

That would be using the ip nhrp group statement on the Spoke side of the tunnel, correct?  And would that apply to all traffic traversing the tunnel, regardless of the direction?

0 Helpful

Go to solution
Joseph W. Doherty
Hall of Fame
Hall of Fame
In response to Brian Green

‎04-06-2016 10:21 AM

Disclaimer

The Author of this posting offers the information contained within this posting without consideration and with the reader's understanding that there's no implied or expressed suitability or fitness for any purpose. Information provided is for informational purposes only and should not be construed as rendering professional advice of any kind. Usage of this posting's information is solely at reader's own risk.

Liability Disclaimer

In no event shall Author be liable for any damages wha2tsoever (including, without limitation, damages for loss of use, data or profit) arising out of the use or inability to use the posting's information even if Author has been advised of the possibility of such damage.

Posting

I don't recall the actual command, although likely it's one of the NHRP commands.

No, the policy only applies to traffic on the hub going to one specific spoke.

For spoke to hub traffic, you can QoS manage "normally".

BTW, in one the later IOS versions, DMVPN also supports dynamic shaping (i.e. it reacts to end-to-end congestion), which might work in both directions.

0 Helpful

Go to solution
Brian Green
Level 1
Level 1
In response to Joseph W. Doherty

‎04-07-2016 04:27 AM

Thanks!  That's what I thought - I'm now looking to establish a common DMVPN from Spoke to Hub that I can set the QoS policies on.  I'll set them on the spoke directly, but have the spokes use the nhrp group to set the policy on the tunnel from the hub.  That way, the user has to configure the Spoke when they get it - and as long as they use a group that's known then there is no additional configuration needed per spoke on the hub - we can do it once for every possible config.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card