QOS using DSCP

Hi Experts

I wanted to implement QOS for our internal voip traffic. The setup we have is  

AudioCode MP124 --> cisco SG300 ---> cisco catalyst 2960 ----> SIP Telephony Server.

we do not have any vlan's configured. The question I have is will DSCP works in that environment and if it does then will the switches has to be on layer 3 mode ?

Thanks in advance

Saqib
LVL 1
nocinfospanAsked:
Who is Participating?
 
Jordan MedlenConnect With a Mentor Commented:
The switches do not need to be in layer 3 mode, however your voice traffic can potentially get walked all over by other traffic on the network.

You can implement a QoS policy on your switches to help prioritize voice traffic over all other traffic to help avoid poor voice quality when competing with other traffic for bandwidth.

Something like the following would work to prioritize traffic using SIP and RTP on a Cisco switch...

mls qos
!
access-list 102 remark Classification of VOIP Traffic both Control and Voice
access-list 102 permit udp any any eq 5060
access-list 102 permit tcp any any eq 5060
access-list 102 permit udp any any range 10000 20000
!
class-map match-any VOIP-CLASS
  match access-group 102
!
policy-map VOIP-MAP
 class VOIP-CLASS
   set dscp ef
!

Open in new window


Then applying to an access port, meaning a switch port connecting to an end station, such as a phone or workstation, etc...

interface GigabitEthernet0/1
 switchport mode access
 priority-queue out 
 mls qos trust dscp
 spanning-tree portfast
 spanning-tree bpduguard enable
 service-policy input VOIP-MAP

Open in new window


On your trunk/uplink ports to other switches and routers, you'd configure like...

interface GigabitEthernet0/48
 switchport mode trunk
 priority-queue out 
 mls qos trust dscp
 spanning-tree bpduguard disable

Open in new window


Please know these are just examples and your implementation may require differing configurations.
0
 
SouljaCommented:
Are you suffering congestion on your LAN? Until there is congestion, you are simply just marking the traffic. If there is congestion on your LAN, I would remedy that before going the QOS route.
0
 
nocinfospanAuthor Commented:
@Jordan

thanks for the reply. Right now i can mark the traffic from the audio code gateways but the IP telephony server we have is not able to mark the traffic for DSCP ( I confirm this by using wireshark trace).

so to give the SIP and RTP traffic priority should i use the same commands/logic that you mentioned in your first post ? is there any thing else that i need to look into ?
0
Building an Effective Phishing Protection Program

Join Director of Product Management Todd OBoyle on April 26th as he covers the key elements of a phishing protection program. Whether you’re an old hat at phishing education or considering starting a program -- we'll discuss critical components that should be in any program.

 
Jordan MedlenCommented:
Yes, you would use the commands that I posted. This would classify and mark the traffic so that regardless of what the telephony server or devices set, you have consistent marking of the traffic for higher prioritization.
0
 
nocinfospanAuthor Commented:
@jordan

Thanks jordan ... How can i debug the packets that are being matched on the switch and forward to the priority queue ?
0
 
nocinfospanAuthor Commented:
and one more question how would i add access-list for all other traffic in the acl list ?
0
 
Jordan MedlenCommented:
Not sure what you mean. There would be no reason to add any other traffic to the ACL. Any and all traffic added to the ACL would then receive the same priority markings.
0
 
nocinfospanAuthor Commented:
So when i am applying service policy to the interface it only allows sip and rtp traffic and all other traffic like http etc is denied.

Also correct me if i am wrong in this. If i apply

policy-map VOIP-MAP
 class VOIP-CLASS
   set dscp ef

that's means all the packets with sip and rtp assigned the value with expedite forwarding (DSCP value 46) , means overwrite the DSCP value in the packet from 0 to 46 ?
0
 
SouljaCommented:
That looks correct. Yes ,any traffic mathing the VOIP-CLASS acl will be remarked EF.
All other traffic will not be affected by the service policy.
0
 
nocinfospanAuthor Commented:
Hi i have these commands in my running configuration because before i applied the auto qos on the switch.
mls qos srr-queue input threshold 1 80 90
mls qos srr-queue input priority-queue 2 bandwidth 30
mls qos srr-queue input cos-map queue 1 threshold 2 3
mls qos srr-queue input cos-map queue 1 threshold 3 6 7
mls qos srr-queue input cos-map queue 2 threshold 1 4
mls qos srr-queue input dscp-map queue 1 threshold 2 24
mls qos srr-queue input dscp-map queue 1 threshold 3 48 49 50 51 52 53 54 55
mls qos srr-queue input dscp-map queue 1 threshold 3 56 57 58 59 60 61 62 63
mls qos srr-queue input dscp-map queue 2 threshold 3 32 33 40 41 42 43 44 45
mls qos srr-queue input dscp-map queue 2 threshold 3 46 47
mls qos srr-queue output cos-map queue 1 threshold 3 4 5
mls qos srr-queue output cos-map queue 2 threshold 1 2
mls qos srr-queue output cos-map queue 2 threshold 2 3
mls qos srr-queue output cos-map queue 2 threshold 3 6 7
mls qos srr-queue output cos-map queue 3 threshold 3 0
mls qos srr-queue output cos-map queue 4 threshold 3 1
mls qos srr-queue output dscp-map queue 1 threshold 3 32 33 40 41 42 43 44 45
mls qos srr-queue output dscp-map queue 1 threshold 3 46 47
mls qos srr-queue output dscp-map queue 2 threshold 1 16 17 18 19 20 21 22 23
mls qos srr-queue output dscp-map queue 2 threshold 1 26 27 28 29 30 31 34 35
mls qos srr-queue output dscp-map queue 2 threshold 1 36 37 38 39
mls qos srr-queue output dscp-map queue 2 threshold 2 24
mls qos srr-queue output dscp-map queue 2 threshold 3 48 49 50 51 52 53 54 55
mls qos srr-queue output dscp-map queue 2 threshold 3 56 57 58 59 60 61 62 63
mls qos srr-queue output dscp-map queue 3 threshold 3 0 1 2 3 4 5 6 7
mls qos srr-queue output dscp-map queue 4 threshold 1 8 9 11 13 15
mls qos srr-queue output dscp-map queue 4 threshold 2 10 12 14
no mls qos rewrite ip dscp
 

will that be any effect ?
0
 
nocinfospanAuthor Commented:
Also on the cisco SG300 switch on the policy binding page it says
"
Policy Binding
A port can be bound with either a policy or an ACL, but not both. The default action is to discard (Deny Any) all the packets that do not meet the rules in a policy.
You can override the default action of a policy to forward those packets by configuring Permit Any on the desired ports."
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.