Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1891
Views
0
Helpful
4
Replies

QoS CAPWAP Tunnel Traffic on LAN

brentpavlovich
Level 1
Level 1

‎08-15-2019 11:08 AM - edited ‎07-05-2021 10:51 AM

I've been tasked with finding a way to limit the amount of bandwidth our Guest WLAN uses at each location. Our current setup involves a number of 3700 APs at numerous remote sites that tunnel their traffic back to the controller (3504) in our data center. There are two WLANs, 1) internal production and 2) guest. Production we want to give all available bandwidth on the WAN. For guest however we need to limit that to a certain percentage of the WAN.

 

Because all of our sites have different WAN sizes we can't use a standard rate limit WLAN wide. So my thought was to somehow tag the capwap tunnel between the AP and the controller carrying the guest WLAN traffic with a certain QoS marking and then police that marking on the routers at each location depending on what the sites bandwidth is. I don't care as much about the traffic downstream of the AP (being the actual wireless traffic itself) but rather the wired traffic between the AP and the controller traversing the WAN. 

 

So that leads me to my question, what is the best way to tag ALL traffic for a specific WLAN with some type of QoS marking so I can police it on the router? I dont care if  the traffic is voice, video, or netflix, if its on the guest WLAN, i want to to be all be marked the same. 

 

Thank you to any and all replies!

1 person had this problem
Labels:
0 Helpful
4 Replies 4

Rasika Nayanajith
VIP
VIP

‎08-15-2019 11:45 AM

check your WLAN for Guest is configured with "Silver" QoS profile (under WLANs ->'select your ssid"  QoS -> ). In this way guest traffic is marked as 'Best Effort' & not taking bandwidth of your priority traffic (voice/video)

 

Under same page, you can configure bandwidth restrictions (if required). However from wireless point of view it is counter productive. When you slow down clients in a wireless cell it will affect everyone as others has to wait long for those slow clients.

 

HTH

Rasika

*** Pls rate all useful responses ***

0 Helpful

brentpavlovich
Level 1
Level 1
In response to Rasika Nayanajith

‎08-15-2019 12:21 PM

Hi Rasika,

The WLAN guest is using the Bronze profile. And yea i can't set the bandwidth on the WLAN because the WAN is different at each location. By using the bronze profile, will that tag all traffic in that tunnel with a specific marking that i can see on the LAN side? Attached is a screen shot of the bronze profile. 

 

Thanks

 

Preview file
26 KB
0 Helpful

patoberli
VIP Alumni
VIP Alumni
In response to brentpavlovich

‎08-16-2019 07:55 AM

Not possible as far as I know.
I assume the local sites don't have a direct internet exit?
If yes, then you could use flexconnect local switching for the guest SSID and give that VLAN directly at each site a lower priority on the router. That has two advantages, first: the guest-internet traffic doesn't traverse the WAN link and second: you can put a lower, site specific, priority to it.
0 Helpful

brentpavlovich
Level 1
Level 1
In response to patoberli

‎08-19-2019 05:23 AM

No at this time they don't have direct internet. That would be the ideal solution. 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card