From: Kaushikkumar Randeriya (kranderiya@googlemail.com)
Date: Thu Feb 05 2009 - 07:24:09 ARST
Hi All,
Fundamentally when you enable mls qos on switch all port going to set
as untrusted. if any fram come coming on untrusted port it will set
cos 0.
Your topology has router then switch then BSD box. Frame come from
router to switch on untrusted port. so you have to extend trust
boundry on switch or you can remark packet on switch.
Kind Regards,
Kaushik
On Thu, Feb 5, 2009 at 8:12 AM, Braychuck Vitaliy
<Vitaliy.Braychuck@incom.ua> wrote:
> Hi Pavel.
>
> Rack1R2#sh run interf fa0/0.126
> !
> interface FastEthernet0/0.126
> encapsulation dot1Q 126
> ip address 173.1.0.2 255.255.255.0
> service-policy output T1
> end
>
> Ok, I will check it within a hour. Something tells me that you are right. )
>
> Cheers,
> Vitalii
>
> ----
> From: Pavel Bykov [mailto:slidersv@gmail.com]
> Sent: Thursday, February 05, 2009 10:01 AM
> To: bRAJ^UK wITALIJ
> Cc: Sadiq Yakasai; ccielab@groupstudy.com
> Subject: Re: cos field in the frame
>
> Please post
> Rack1R2#sh run interface fa0/0.126
>
> Also, It would be good to sniff what the switch is sending out, as BSD-BOX might be a culprit as well. Are you sure your BSD-BOX supports it? When you install VLANs on BSD, there could be a problem with sniffing VLANs.
> Try insalling routers (or any device) instead of it, or sniff like that:
> on switch2
> mon sess 1 source int gi 1/0/23 both
> mon sess 1 desct int gi x/x/x encap replicate
>
>
> On Thu, Feb 5, 2009 at 8:45 AM, Braychuck Vitaliy <Vitaliy.Braychuck@incom.ua> wrote:
> Hi, Sadiq.
>
> Fa0/0 gi1/0/2 gig1/0/23
> [router2]------------------[switch2]--------------------[bsd-box]
> .2 173.1.0.0/24 .254
>
> On router2:
>
> Rack1R2#sh run | s ip sla
> ip sla monitor 20
> type jitter dest-ipaddr 173.1.0.254 dest-port 2542 source-ipaddr 173.1.0.2 source-port 2222 control disable num-packets 1
> timeout 0
> frequency 3
> ip sla monitor schedule 20 life forever start-time now
>
> Rack1R2#sh run class-map
> !
> class-map match-all SLA2
> match access-group name SLA2
> !
> end
>
> Rack1R2#sh run policy-map
> !
> policy-map T1
> class SLA2
> set cos 4
> !
> End
>
> Rack1R2#sh ip access-lists SLA2
> Extended IP access list SLA2
> 10 permit udp host 173.1.0.2 eq 2222 host 173.1.0.254 eq 2542 (23290 matches)
>
> Rack1R2#sh policy-map interface fa0/0.126
> FastEthernet0/0.126
>
> Service-policy output: T1
>
> Class-map: SLA2 (match-all)
> 19816 packets, 1545648 bytes
> 5 minute offered rate 0 bps, drop rate 0 bps
> Match: access-group name SLA2
> QoS Set
> cos 4
> Packets marked 19816
>
> Class-map: class-default (match-any)
> 6076 packets, 593956 bytes
> 5 minute offered rate 0 bps, drop rate 0 bps
> Match: any
>
> On the switch (as I said before mls qos is enabled globally):
>
> Rack1SW2#sh run interf gig1/0/2
> !
> interface GigabitEthernet1/0/2
> switchport trunk encapsulation dot1q
> switchport mode trunk
> switchport nonegotiate
> mls qos trust cos
> spanning-tree portfast
> end
>
> Kindly,
> Vitalii Braichuk
> ---
>
> From: Sadiq Yakasai [mailto:sadiqtanko@gmail.com]
> Sent: Wednesday, February 04, 2009 6:31 PM
> To: bRAJ^UK wITALIJ
> Cc: ccielab@groupstudy.com
> Subject: Re: cos field in the frame
>
> How about some config on the switch and router? How do you know you are sending frames from the router with a cos of 4?
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
>
>
>
>
>
>
>
>
>
> --
> Pavel Bykov
> ----------------
> Don't forget to help stopping the braindumps, use of which reduces value of your certifications. Sign the petition at http://www.stopbraindumps.com/
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
Blogs and organic groups at http://www.ccie.net
This archive was generated by hypermail 2.1.4 : Sun Mar 01 2009 - 09:44:10 ARST