Yes i think it's working fine

savunia2009 · ‎09-02-2016

Hello,

I have the following problem: I need to mark packets (to downgrade ip dscp priority) coming from VLAN 250 and going to VLAN13. Access-list has been defined to match needed packets and class-map and policy-map have bee conigured and applied to VLAN 250 SVI in input direction. However the packets priority is not downgraded. I verify if the packets are marked by using capture buffer on VLAN13 in both directions.

Anyone could help me please?

Here is the output of running-config:

!
policy-map port_child_policy
class non-client-nrt-class
bandwidth remaining ratio 10

policy-map Ingress
class RD
set ip dscp cs4

!

!
class-map match-any RD
match access-group name RD
!

!
interface Vlan250
ip address 192.168.250.1 255.255.255.0
service-policy input Ingress
!

ip access-list extended RD
permit tcp 192.168.250.0 0.0.0.255 host 192.168.212.10 eq 3389

Here is the ouptut of "sh policy-map interface vlan 250" :

SWITCH#sh policy-map interface vlan 250
Vlan250

Service-policy input: Ingress

Class-map: RD (match-any)
202 packets
Match: access-group name RD
0 packets, 0 bytes
5 minute rate 0 bps
QoS Set
ip dscp cs4

Class-map: class-default (match-any)
6557 packets
Match: any
0 packets, 0 bytes
5 minute rate 0 bps

dmuinoorallo · ‎09-02-2016

Yes i think it's working fine. You can see 202 packets matching with your policy

http://www.cisco.com/c/en/us/support/docs/quality-of-service-qos/qos-congestion-avoidance/10107-showpolicy.html

You could the next things to verificate it.

add "log to your ACL :

permit tcp 192.168.250.0 0.0.0.255 host 192.168.212.10 eq 3389 log

you can capture packets with wireshark and

Packet Marking is not working on Cisco 3650