01-19-2018 12:13 AM - edited 03-08-2019 01:28 PM
Hi,
I am reading about the DBL feature on the Cisco 4500E which protect the buffers from filling up with traffic that is identified as nonadaptive or belligerent flows such as aggressive UDP flows. Since my curiosity doesnt stop here, i am trying to understand how the supervisor engine identify this type of traffic, which characteristics has this traffic appart from being UDP.
Is this UDP traffic only?
Can someone provide me with examples of aggressive UDP flows or any other flows that are marked as belligerent flows?
Regards
Gonçalo Reis
Solved! Go to Solution.
01-19-2018 04:14 AM
Hi Gonçalo,
DBL on Catalyst 4500 acts on flows. For DBL purposes, a flow is identified using the [SourceIP, DestinationIP, L4Proto, L4SrcPort, L4DstPort, VLAN] 6-tuple. It does not necessarily need to be UDP.
What DBL does is, on a per-egress-interface basis, keeping track of
When a packet is to be enqueued to an egress port, DBL computes the momentary dynamic limit for that port based on the current number of flows and the total number of currently enqueued packets on that port. For the packet, DBL identifies the flow, and checks how many packets of that flow are already enqueued. If their number is equal or higher to the momentary dynamic limit, the packet will be dropped, otherwise it will be accepted.
There might be internal tweaks to the details how DBL works, but the mechanism described above is the fundamental idea of DBL.
As for the examples of non-adaptive flows (NAFs), obviously, TCP flows are not typical representatives since TCP reacts to packet drops by backing off. Any kinds of UDP flows, whether they are unicast or multicast streams, would be the typical NAFs. However, if you - for example - get a switching loop with frames looping endlessly, and the frames would carry TCP segments of some TCP session, DBL would act quite effectively on these as well. Note that TCP segments looping as a result of a switching loop would also constitute a NAF.
Feel welcome to ask further!
Best regards,
Peter
01-19-2018 07:35 AM
01-19-2018 04:14 AM
Hi Gonçalo,
DBL on Catalyst 4500 acts on flows. For DBL purposes, a flow is identified using the [SourceIP, DestinationIP, L4Proto, L4SrcPort, L4DstPort, VLAN] 6-tuple. It does not necessarily need to be UDP.
What DBL does is, on a per-egress-interface basis, keeping track of
When a packet is to be enqueued to an egress port, DBL computes the momentary dynamic limit for that port based on the current number of flows and the total number of currently enqueued packets on that port. For the packet, DBL identifies the flow, and checks how many packets of that flow are already enqueued. If their number is equal or higher to the momentary dynamic limit, the packet will be dropped, otherwise it will be accepted.
There might be internal tweaks to the details how DBL works, but the mechanism described above is the fundamental idea of DBL.
As for the examples of non-adaptive flows (NAFs), obviously, TCP flows are not typical representatives since TCP reacts to packet drops by backing off. Any kinds of UDP flows, whether they are unicast or multicast streams, would be the typical NAFs. However, if you - for example - get a switching loop with frames looping endlessly, and the frames would carry TCP segments of some TCP session, DBL would act quite effectively on these as well. Note that TCP segments looping as a result of a switching loop would also constitute a NAF.
Feel welcome to ask further!
Best regards,
Peter
01-19-2018 07:35 AM
01-19-2018 12:45 PM
01-19-2018 12:42 PM
01-22-2018 06:16 AM
01-22-2018 06:24 AM
Hi Gonçalo, hi Joe,
Indeed, I am not aware of such a command, either. However, I think that we can at least say this: DBL works on egress queues, and you can display the statistics for those queues using show interface ... counter detail which will also show you the drops in the individual egress queues of the interface including DBL drops. By inspecting the mapping of DSCP/CoS classes to egress queues, you can at least partially guess which traffic class appears to contain aggressive flows, depending on which class exhibits increasing drops.
Best regards,
Peter
01-22-2018 06:36 AM
01-22-2018 07:01 AM
Hi Joe,
Oh, yes, absolutely, no argument here :) It was just that if we're interested what traffic is being dropped by DBL, this is likely the closest we can get. The "closest" may still mean "impractically far", though :)
I am sincerely glad to have you around QoS-related topics here! You always bring a perspective to these topics, and I still keep learning myself. Thank you for that!
Best regards,
Peter
01-22-2018 09:51 AM
... and I am sincerely glad for your's and Joseph help.
I'll be asking more question soon. I am sure :)
Goncalo Reis
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide