09-08-2015 10:47 AM - edited 03-05-2019 02:15 AM
Hi All,
I am facing the issue in my network where the server using more of our internet bandwidth, so we are planning to apply shaping for the specific servers which are using more bw, but i am confused on how to apply shaping on my WAN interface since our set up is different,
Please refer the diagram attached
1. The internet traffic is taking direct path via firewalls
2. The server traffic is going via VPN router where packets are encrypted sent it over DMVPN tunnel, we use EIGRP for DMVPN tunnel.
My question is where can i apply shaping since internet and vpn traffic going via different path, if i apply it on tunnel interface on VPN router, the circuit will be overwhelmed by internet traffic since no QOS for it. Please provide me the suggestion.
Thanks
Bala
09-09-2015 01:49 AM
Hi Bala,
first of all: which kind of router is the VPN router ?
In any case you can configure shaping also on switch ports. I'm not very skilled in QoS over switch but, as far as I know, QoS configuration depends on the specific hardware: different catalyst have slightly different characteristics. You might configure:
or
Bye,
e
09-09-2015 02:01 AM
e, I am thinking to apply on router level QOS shaping
09-09-2015 02:56 AM
Sorry I don't understand what you mean with "at router level"; do you mean on the router or on the switch connect to the router ?
09-21-2015 03:20 AM
Ciollaro,
I meant to configure shaping on router which is connected to switch
09-09-2015 02:01 AM
Hello
I would police the traffic as close to the source as possible.
Possiblly apply srr-queue bandwidth limitation to the servers interfaces but this means enabling qos on the switch, which by defaul can have an effect on the enitre switch
Or another way is to pollice on the SVi interface of the servers vlan.
How are these servers connected - Just one switch or over multiple switches?
SRR example :Police interface to 5mb
conf t
mls qos
int x/x
description Server
speed 10
srr-queue bandwidth limit 50
res
Paul
09-09-2015 02:01 AM
Paul,
the servers are connected to same switch, but my worry is it will drop packets if i configure policing thats why i am thinking to apply shaping, but is it possible to apply it on server connected interface for shaping
09-09-2015 03:51 AM
Hello
"I am facing the issue in my network where the server using more of our internet bandwidth, so we are planning to apply shaping for the specific server"
Shaping gives you a limited allocated BW value, puts the excess traffic into queues for later transmission any remaining unallocated traffic is shared between these queues.
Policing give you an absolute BW value and when this value it reached can drop any excess or become remarked.
Given your OP it sound like your servers need to be policed
res
Paul
09-21-2015 07:15 AM
Can we apply QOS on DMVPN tunnel without per tunnel QOS feature?
09-10-2015 06:16 AM
Disclaimer
The Author of this posting offers the information contained within this posting without consideration and with the reader's understanding that there's no implied or expressed suitability or fitness for any purpose. Information provided is for informational purposes only and should not be construed as rendering professional advice of any kind. Usage of this posting's information is solely at reader's own risk.
Liability Disclaimer
In no event shall Author be liable for any damages whatsoever (including, without limitation, damages for loss of use, data or profit) arising out of the use or inability to use the posting's information even if Author has been advised of the possibility of such damage.
Posting
Instead of shaping, you could also consider adjusting the dequeuing priority of your server traffic relative to your other traffic. This would allow you server traffic to use the bandwidth if its available (unlike a policer or shaper) yet keep your server traffic from being adverse to other traffic.
As to where to apply your QoS, you want it placed to manage your bottleneck. If there's both your tunnel traffic and Internet traffic, you can mark the former before its encapsulated and most encapsulations, by default, will copy the original packet's ToS to the encapsulated packet's ToS.
09-11-2015 03:21 AM
Hi Joseph,
Thanks for the suggestion, do you have sample document for that, i will try to understand how to do it
09-11-2015 05:31 AM
Disclaimer
The Author of this posting offers the information contained within this posting without consideration and with the reader's understanding that there's no implied or expressed suitability or fitness for any purpose. Information provided is for informational purposes only and should not be construed as rendering professional advice of any kind. Usage of this posting's information is solely at reader's own risk.
Liability Disclaimer
In no event shall Author be liable for any damages whatsoever (including, without limitation, damages for loss of use, data or profit) arising out of the use or inability to use the posting's information even if Author has been advised of the possibility of such damage.
Posting
Have you seen Cisco's QoS design guides?
Here's one for WANs: http://www.cisco.com/c/en/us/td/docs/solutions/Enterprise/WAN_and_MAN/QoS_SRND_40/QoSWAN_40.html
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide