Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
914
Views
0
Helpful
4
Replies

match mpls packets for qos on a nexus 5000

JAN HASSE
Level 1
Level 1

‎02-17-2012 03:52 AM - edited ‎03-07-2019 05:00 AM

Hi,

we would like to match mpls packets via an ACL on nexus 5k to send them into a certain QoS-group. Incoming interface is eth 1/8.

Is this possible with the following configuration?

I ask, because in the ACL we have permt IP any any but MPLS tagged frames are not IP??

ip access-list ACL_WAN-VLANS

  10 permit ip any any

class-map type qos match-any CMAP_WAN-VLANS

  description match via acl all vlans with WAN traffic

  match access-group name ACL_WAN-VLANS

policy-map type qos PMAP_IN_MARK_WAN

  class CMAP_WAN-VLANS

    set qos-group 4

interface Ethernet1/8

  service-policy type qos input PMAP_IN_MARK_WAN

Do we have the mpls packets then in QoS group 4? We would like then to separate the bandwith later on the outgoing interface (config not shown here...)

Thx

  Jan

Labels:
0 Helpful
4 Replies 4

rsimoni
Cisco Employee
Cisco Employee

‎02-17-2012 06:16 AM

Hi Jan,

mpls is considered non-ip traffic, so your ACL won't match labelled packets.

N5k does not support MPLS by the way.

You need to move MPLS QoS policy on other devices.

Riccardo

0 Helpful

JAN HASSE
Level 1
Level 1

‎02-17-2012 06:24 AM

Hi Riccardo,

ok, I understand that the ACL will not match.

I am also aware that the N5k cannot speak mpls, but we only have this device inbetween two MPLS device (a nexus 7k and a cat6500). This should be possible? The "non IP traffic" (=mpls tagged traffic) should be forwarded if the mtu is high enough? And the traffic is forwarded in the class class default (or qos-group 0)?

Or is "non ip traffic" totally dropped by a n5k?

thx

Jan

0 Helpful

rsimoni
Cisco Employee
Cisco Employee
In response to JAN HASSE

‎02-17-2012 06:31 AM

Hi Jan,

it is forwarded as any other L2 traffic (if received on L2 switchport of course) if yes the MTU check is passed.

Riccardo

0 Helpful

krun_shah
Level 1
Level 1

‎02-17-2012 06:57 AM

Although I have not done or tried it my self, you can define a MAC acl matching ethertype of MPLS then use it within class map.

NX5K01(config-mac-acl)# permit any any ?

 

  <0x0-0xffff>  MAC protocol number

  aarp          Appletalk AARP

  appletalk     Appletalk

  cos           CoS value

  decnet-iv     DECnet Phase IV

  diagnostic    DEC Diagnostic Protocol

  etype-6000    Ethertype 0x6000

  etype-8042    Ethertype 0x8042

  ip            IP (Internet Protocol V4)

  lat           DEC LAT

  lavc-sca      DEC LAVC,SCA

  mop-console   DEC MOP Remote console

  mop-dump      DEC MOP dump

  vines-echo    VINES Echo

  vlan          VLAN number

NX5K01(config-cmap-qos)# match ?

  access-group  Access group

  cos           IEEE 802.1Q class of service

  dscp          DSCP in IP(v4) and IPv6 packets

  ip            IP

  precedence    Precedence in IP(v4) and IPv6 packets

  protocol      Protocol

   The ethertype value 8847 hex is used to indicate that a frame is carrying an MPLS unicast packet.

   The ethertype value 8848 hex is used to indicate that a frame is carrying an MPLS multicast packet.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card