cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
686
Views
2
Helpful
5
Replies

9800 EWC Set QOS error invalid in upstream direction

owen2
Level 1
Level 1

Hi All,
having issue implementing Qos for our Guest Wifi, with a thoughput of 20mbps.

Version 17.9.4a

Error: QOS_ERROR_MESSAGE-3-QOS_SSID_INVALID_POLICY: Chassis 1 R0/0: wncd: ERROR: Policy wish-guest-Qos-20mbps is invalid in Upstream direction for vapid:1. Once the policy is modified, the bssid needs to be reset before the new policy-map definition can take effect
*Jul 11 12:30:31.209: %QOS_ERROR_MESSAGE-3-QOS_SSID_INVALID_POLICY: Chassis 1 R0/0: wncd: ERROR: Policy wish-guest-Qos-20mbps is invalid in Upstream direction for vapid:1. Once the policy is modified, the bssid needs to be reset before the new policy-map definition can take effect
*Jul 11 12:31:05.896: %SYS-5-CONFIG_P: Configured programmatically by process SEP_webui_wsma_http from console as owen on vty0
*Jul 11 12:31:26.438: %QOS_ERROR_MESSAGE-3-QOS_INVALID_POLICY: Chassis 1 R0/0: wncd: ERROR: Policy wish-guest-Qos-20mbps is invalid in Upstream direction for vapid:1
*Jul 11 12:31:26.439: %CLIENT_EXCLUSION_SERVER-5-ADD_TO_EXCLUSIONLIST_REASON_DYNAMIC: Chassis 1 R0/0: wncd: Client MAC: 9a06.041a.614e was added to exclusion list associated with AP Name:AP10A8.299B.2644, BSSID:MAC: 10a8.2996.ddaf, reason:Client QoS policy failure
*Jul 11 12:31:26.439: %QOS_ERROR_MESSAGE-3-QOS_MSG_BLKLIST_CLIENT: Chassis 1 R0/0: wncd: Blacklisting client 9a06.041a.614e. Error installing client QOS policy: wish-guest-Qos-20mbps in Upstream direction.

config as below:

ip access-list extended wish-guest
permit ip any any
exit
class-map match-all wish-guest-Qos-20mbps
match access-group name wish-guest
policy-map wish-guest-Qos-20mbps
class wish-guest-Qos-20mbps
police cir 20000000
conform-action transmit
exceed-action drop

wireless profile policy wish-guest
no central dhcp
no central switching
http-tlv-caching
ipv4 flow monitor default-flow-monitor input
ipv4 flow monitor default-flow-monitor output
service-policy client input wish-guest-Qos-20mbps
service-policy client output wish-guest-Qos-20mbps
service-policy input wish-guest-Qos-20mbps
service-policy output wish-guest-Qos-20mbps
session-timeout 86400

wlan wish-guest 1 wish-guest
security wpa psk set-key ascii 8 111111
no security wpa akm dot1x
security wpa akm psk
no shutdown

 

1 Accepted Solution

Accepted Solutions

Rich R
VIP
VIP

https://www.cisco.com/c/en/us/td/docs/wireless/controller/9800/17-9/config-guide/b_wl_17_9_cg/m_wireless_qos_cg_vewlc1_from_17_3_1_onwards.html#reference_snj_h2p_wcb

Restrictions for QoS on Wireless Targets

  • One policy per target per direction is supported.

  • Access group matching is not supported.

  • Access group (ACL) matching is not supported by access points in flex mode for local switching traffic.
    Are you maybe breaching some of those restrictions?

View solution in original post

5 Replies 5

marce1000
VIP
VIP

 

       - FYI : https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwc42784

 M.



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '

@marce1000 im using firmware 17.9.4a, so it should not be a issue.

 

 - Bug  seems very related (still) ;  you may want to engage TAC , or  have some testing with the provided workarounds (if desired) , 

 M.



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '

Rich R
VIP
VIP

https://www.cisco.com/c/en/us/td/docs/wireless/controller/9800/17-9/config-guide/b_wl_17_9_cg/m_wireless_qos_cg_vewlc1_from_17_3_1_onwards.html#reference_snj_h2p_wcb

Restrictions for QoS on Wireless Targets

  • One policy per target per direction is supported.

  • Access group matching is not supported.

  • Access group (ACL) matching is not supported by access points in flex mode for local switching traffic.
    Are you maybe breaching some of those restrictions?

@Rich R the Ap is in Flex Mode and using ACL...
looks like there are no solutions....

Review Cisco Networking for a $25 gift card