Configuring ACL-based QoS
NOTE:
On Trident and Trident+ based switches, known unicast packets can be assigned to a specific queue between queues from 0 to 7, while unknown unicast packets, multicast packets, and broadcast packets can be assigned to a specific queue between queues from 0 to 3.
Procedure
Step1Â Â Â Â Â Â Â Â Configure firewall filter rule for traffic classification.
                set firewall filter <filter-name> sequence <number> from destination-mac-address <mac-address>      Â
NOTE:
|
Step2Â Â Â Â Â Â Â Â Configure queue mapping between firewall filter and forwarding class.
          set firewall filter <filter-name> sequence <number> then forwarding-class <forwarding-class-name>
Step3Â Â Â Â Â Configure DSCPÂ remark.
          set firewall filter <filter-name> sequence <number> then dscp <dscp-value>
Step4Â Â Â Â Â Apply firewall filter to a switch physical interface.
      set firewall filter <filter-name> input interface <interface-name>
Step5Â Â Â Â Â Â Â Â Configure mapping between forwarding class and local priority.
      set class-of-service forwarding-class <forwarding-class-name> local-priority <int>
Step6Â Â Â Â Â Â Â Â Configure queue scheduler weight.
      set class-of-service scheduler <scheduler-name> weight <int>
Step7Â Â Â Â Â Â Â Â Configure WRR scheduling algorithm for queue scheduling.
          set class-of-service scheduler <scheduler-name> mode <SP | WFQ | WRR>
Step8Â Â Â Â Â Â Â Â Configure guaranteed-rate for queue.
          set class-of-service scheduler <scheduler-name> guaranteed-rate <value>      Â
Step9Â Â Â Â Â Configure scheduler profile.
          set class-of-service scheduler-profile <scheduler-profile-name> forwarding-class <forwarding-class-name> scheduler <scheduler-name>
Step10Â Â Â Â Â Apply scheduler profile to a switch physical interface.
          set class-of–service interface <interface-name> scheduler-profile <scheduler-profile-name>
Step11     Commit the configuration.
  commit
Configuration Example
The following example configures ACL-based QoS policy for NTP protocol, and applies it to the interface ge-1/1/1.
Procedure
Step1Â Â Â Â Â Â Â Â Configure destination-port, protocol and ether-type to classify NTP (Network Time Protocol) flow, and mapping to forwarding class class1.
admin@Xorplus# set firewall filter f1 sequence 91 from destination-port 123 admin@Xorplus# set firewall filter f1 sequence 91 from protocol udp admin@Xorplus# set firewall filter f1 sequence 91 then forwarding-class class1 admin@Xorplus# set firewall filter f1 sequence 92 from destination-port 123 admin@Xorplus# set firewall filter f1 sequence 92 from ether-type 34525 admin@Xorplus# set firewall filter f1 sequence 92 from protocol udp admin@Xorplus# set firewall filter f1 sequence 92 then forwarding-class class1
Step2Â Â Â Â Â Â Â Â Configure CoPP queue mapping, scheduling weight, scheduling algorithm and queue guaranteed-rate.
admin@Xorplus# set class-of-service scheduler scheduler180 mode WFQ admin@Xorplus# set class-of-service scheduler scheduler180 guaranteed-rate 10000 admin@Xorplus# set class-of-service scheduler scheduler180 weight 5 admin@Xorplus# set class-of-service scheduler-profile s1 forwarding-class class1 scheduler scheduler180 ##Configure mapping between forwarding class and local priority. admin@Xorplus# set class-of-service forwarding-class class1 local-priority 1
Â
Step3        Apply firewall filter to a switch physical interface.      Â
 admin@XorPlus# set firewall filter f1 input interface ge-1/1/1
Step4Â Â Â Â Â Â Â Â Apply scheduler profile to a switch physical interface.
admin@XorPlus# set class-of-service interface ge-1/1/1 scheduler-profile s1
Step5        Commit the configuration.
admin@XorPlus# commit
Verify the Configuration
- Â You can use the run show filter command to view the configuration information of all firewall filter rules.
admin@XorPlus# run show filter Filter: f1    Description:    Sequence: 91        Description:        match counter: 0 packets        match-condition:            destination-port:        123..123            protocol:                udp        action: forward        forwarding_class: classs1    Sequence: 92        Description:        match counter: 0 packets        match-condition:            destination-port:        123..123            ether-type:              0x86dd            protocol:                udp        action: forward        forwarding_class: classs1    Input interface: ge-1/1/1
Â
- Â Â You can use the run show class-of-service command to view the information of ACL-based QoS configuration information.
admin@XorPlus# run show class-of-service interface ge-1/1/1 Interface : ge-1/1/1 trust mode : no-trust Default ieee-802.1 : 0 Default dscp : 0 Default inet-precedence : 0 Local-priority  Queue-Schedule        Code-points --------------  ---------------------------  ------------------------- 0               SP,0kbps                                                 1               WFQ,5,10000kbps                                          2               SP,0kbps                                                 3               SP,0kbps                                                 4               SP,0kbps                                                 5               SP,0kbps                                                 6               SP,0kbps                                                 7               SP,0kbps
Copyright © 2024 Pica8 Inc. All Rights Reserved.