Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1464
Views
0
Helpful
4
Replies

Qos classification using ACL

mahmoodmkl
Level 7
Level 7

‎04-29-2012 12:38 AM - edited ‎03-07-2019 06:24 AM

Dear Gents,

We are planing to implement Qos in our environment and there is some issue which is related to DSCP markings.

Currently we have some applications which cannot mark the traffic and i am planning to use ACL to mark them.Below is the sample.

ip access-list exteneded qosmark

permit ip host 10.1.120.50 any

class-map qosclass

match access-group qosmark

policy-map mark

class qosmark

set dscp af21

interface ten1/4

service-policy mark output

I am confused and want to clarify whether all my other traffic which is not specified in the access-list will be denied or it will flow without being marked.

I am concerned here because there is explicit deny at the end of acl.

Thanks

Labels:
0 Helpful
4 Replies 4

lgijssel
Level 9
Level 9

‎04-29-2012 01:28 AM

If you configured it as you propose, you would see something like this:

R1#sh policy-map int fa0/0

FastEthernet0/0

  Service-policy output: mark

    Class-map: class-default (match-any)

      7 packets, 1293 bytes

      5 minute offered rate 0 bps, drop rate 0 bps

      Match: any

A default class is implicitly added to your policy map and all other traffic is forwarded via it.

regards,

Leo

0 Helpful

mahmoodmkl
Level 7
Level 7
In response to lgijssel

‎04-29-2012 03:29 AM

Hi,

Thanks for your reply.

So you mean that there is no need for permit ip any any under the ACL..?.and all other traffic will forwarded without being marked and denied.

Please confrim.

Thanks

0 Helpful

Dan-Ciprian Cicioiu
Level 7
Level 7
In response to mahmoodmkl

‎04-29-2012 03:44 AM

Hi, 

I am confused and want to clarify whether all my other traffic which is not specified in the access-list will be denied or it will flow without being marked.

The traffic that is not matched by the policy-map will not be droped and will not have the DSCP modified by this equipment - because it could be marked when arrives at this point ( teoretically ).

You can use your posted configuration without any fear.

Dan

0 Helpful

lgijssel
Level 9
Level 9
In response to mahmoodmkl

‎04-29-2012 03:45 AM 

mahmoodmkl wrote:
Hi,
Thanks for your reply.
So you mean that there is no need for permit ip any any under the ACL..?.and all other traffic will forwarded without being marked and denied.
Please confrim.
Thanks

Yes.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card