No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

Configuration Examples for NE and ME60 Routers in Typical Enterprise Scenarios 2.0

This document provides NE series routers typical configuration examples.
Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
Example for Configuring QoS for International Bank Branch Access

Example for Configuring QoS for International Bank Branch Access

This section provides an example of how to configure QoS for international bank branch access to center.

Applicable Products and Versions

This configuration applies to NE40E/CX600/ME60 series products running V800R008C00 or later.

Networking Requirements

The international branch network of a bank has a tree structure, as shown in Figure 1-8. When an overseas branch accesses a domestic data center, the private line is preferred. The VPN over the Internet is used as the best-effort path. For security purposes, the private line uses the GRE over IPsec tunnel technology for encrypted transmission.

Figure 1-8  Example for configuring QoS for international bank branch access

The services on the live network and their QoS requirements are as follows.

Table 1-5  Services and QoS requirements on the live network

Service Type

Service Characteristics

Priority

QoS Requirements

Host service

Services between hosts

1st (highest)

SP

Voice service

The telephone banking service is very important and requires timely processing.

2nd

SP

Video service

Services such as video conferencing

3rd

SP

Interactive service

-

4th

WFQ

Wholesale service

Production services with a large amount of data

5th

WFQ

Office service

Office services and video surveillance services of related outlets

6th (lowest)

WFQ and LPQ

Test service

There are three data centers: the production center, intra-city disaster recovery center, and remote disaster recovery center.

6th (lowest)

WFQ, with limited bandwidth

Other services

-

6th (lowest)

LPQ and WFQ, with the weight being 1%

When the network is normal, various services, such as online production, batch production, office, and test services, run on their own links and do not compete for bandwidth. If a link fault occurs, the affected services are switched to other normal links, which may trigger bandwidth competition. To ensure that key services are preferentially processed on any link, a unified QoS policy is used on the entire network. Even if a link becomes faulty, some services can still be switched to the backup link and be allocated their original bandwidth.

International bank branch access has the following requirements:
  • On the interface connecting the AGG/VPN-AGG to the data center, a traffic policy is configured for incoming packets, and the data center network segments are identified using ACLs. The traffic policy places packets of different data center network segments in different queues. Finally, the system implements priority queuing (PQ) for outgoing traffic queues.

  • On the AR, configure the same QoS policy on the outbound interface and GRE tunnel interface to implement traffic classification and scheduling.

Configuration Roadmap

  1. Enable behavior aggregate classification on the GRE interface for default queue mapping.

  2. Enable multi-field classification on the interface connecting the AGG/VPN-AGG to the data center for specific queue mapping.

  3. Configure queues for outgoing packets on the interface connecting to international branches.

Procedure

  1. Enable behavior aggregate classification on the GRE interface for default queue mapping.

    The configurations on the AGG/VPN-AGG/AR are as follows:

    #
    interface Tunnel3/0/0                         //GRE tunnel interface
     trust upstream default                       //Enable BA classification.
    #
    

  2. Enable multi-field classification on the interface connecting the AGG/VPN-AGG to the data center for specific queue mapping.
    1. Configure a traffic classifier.

      #
      traffic classifier UnionPay-Link              //Configure a traffic classifier to match international traffic.
       if-match acl name UnionPay-Link                
      #
      traffic classifier Key                       //Configure a traffic classifier to match key service traffic and network protocol traffic.
       if-match dscp cs6                           //Match network protocol traffic.
       if-match acl name Key                       //Match key service traffic.
      #
      traffic classifier Voice                     //Configure a traffic classifier to match voice service traffic.
       if-match acl name Voice
      #
      traffic classifier Video                     //Configure a traffic classifier to match video service traffic.
       if-match acl name Video
      #
      traffic classifier Interactive               //Configure a traffic classifier to match interactive service traffic.
       if-match acl name Interactive
      #
      traffic classifier Batch                     //Configure a traffic classifier to match batch service traffic.
       if-match acl name Batch
      #
      traffic classifier OA                        //Configure a traffic classifier to match office service traffic.
       if-match acl name OA
      #
      

    2. Configure a traffic behavior.

      #
      traffic behavior UnionPay-Link              //Configure CAR for traffic destined for overseas.
       car cir 128 green pass red discard
      #
      traffic behavior Key                       //Configure a traffic behavior to map key service traffic and network protocol traffic to the CS6 queue.
       service-class cs6 color green
      #
      traffic behavior Voice                     //Configure a traffic behavior to map voice service traffic to the EF queue.
       service-class ef color green
      #
      traffic behavior Video                     //Configure a traffic behavior to map video service traffic to the AF4 queue.
       service-class af4 color green
      #
      traffic behavior Interactive               //Configure a traffic behavior to map interactive service traffic to the AF3 queue.
       service-class af3 color green
      #
      traffic behavior Batch                     //Configure a traffic behavior to map batch service traffic to the AF2 queue.
       service-class af2 color green
      #
      traffic behavior OA                        //Configure a traffic behavior to map office service traffic to the AF1 queue.
       service-class af1 color green
      #
      

    3. Configure a traffic policy and associate the traffic classifier with the traffic behavior in this policy.

      #
      traffic policy Qos_Ingress_Policy
       classifier UnionPay-Link behavior UnionPay-Link
       classifier Key behavior Key
       classifier Voice behavior Voice
       classifier Video behavior Video
       classifier Interactive behavior Interactive
       classifier Batch behavior Batch
       classifier OA behavior OA
      #
      

    4. Apply the traffic policy to incoming traffic on the interface connected to the data center.

      #
      interface GigabitEthernet1/0/0
       traffic-policy Qos_Ingress_Policy inbound
      #
      

  3. Configure queues for outgoing packets on the interface connecting to international branches.

    Table 1-6  Queue planning

    Priority

    Service

    Scheduling Mode

    Weight

    Shaping

    Drop Mode

    CS7

    Protocol packets

    PQ

    N/A

    N/A

    Tail drop

    CS6

    Protocol packets and host services

    PQ

    N/A

    Set this parameter based on the live network status.

    Tail drop

    EF

    Voice

    PQ

    N/A

    Set this parameter based on the live network status.

    Tail drop

    AF4

    Video

    PQ

    N/A

    Set this parameter based on the live network status.

    Tail drop

    AF3

    Interactive service

    WFQ

    Set this parameter based on the live network status.

    N/A

    WRED

    AF2

    Wholesale service

    WFQ

    Set this parameter based on the live network status.

    N/A

    WRED

    AF1

    Office automation (OA) service

    WFQ

    Set this parameter based on the live network status.

    N/A

    WRED

    BE

    Others

    LPQ

    N/A

    N/A

    Tail drop

    NOTE:

    The default WRED profile configurations are used.

    #
    flow-queue Qos_queue                                  //Configure the flow queue scheduling mode and weight.
     queue be wfq weight 1 
     queue af1 wfq weight 1 
     queue af2 wfq weight 4 
     queue af3 wfq weight 34 
     queue af4 pq shaping 560 
     queue ef pq shaping 100 
     queue cs6 pq shaping 620
    #
    qos-profile QoS_queue                                //Configure a QoS profile.
     user-queue cir 1800 pir 1800 flow-queue Qos_queue   //Limit the bandwidth of the sub-interface.
    #
    interface GigabitEthernet3/1/2                       //Interface connected to the downstream AR.
    qos-profile QoS_queue outbound identifier none       //Apply the QoS profile.
    #
    

    The configurations on the AR, similar to those on the AGG, are as follows:

    #
    traffic classifier Batch operator or
     if-match acl Batch
    traffic classifier Voice operator or
     if-match acl Voice
    traffic classifier Video operator or
     if-match acl Video
    traffic classifier Key operator or
     if-match dscp cs6 
     if-match acl Key
    traffic classifier Class-default operator or
     if-match any
    traffic classifier OA operator or
     if-match acl OA
    traffic classifier Interactive operator or
     if-match acl Interactive
    #
    traffic behavior Batch
     queue af bandwidth pct 1
     drop-profile CBWFQ
     statistic enable
    traffic behavior Voice
     queue ef bandwidth 100 cbs 2500
     statistic enable
    traffic behavior Video
     queue ef bandwidth 560 cbs 14000
     statistic enable
    traffic behavior Key
     queue ef bandwidth 620 cbs 15500
     statistic enable
    traffic behavior Class-default
     queue af bandwidth pct 1
     drop-profile CBWFQ
     statistic enable
    traffic behavior OA
     queue af bandwidth pct 1
     drop-profile CBWFQ
     statistic enable
    traffic behavior Interactive
     queue af bandwidth pct 34
     drop-profile CBWFQ
     statistic enable
    #
    traffic policy QoS_2M
     classifier Key behavior Key
     classifier Voice behavior Voice
     classifier Video behavior Video
     classifier Interactive behavior Interactive
     classifier Batch behavior Batch
     classifier OA behavior OA
     classifier Class-default behavior Class-default
    #
    interface GigabitEthernet0/0/2
     traffic-policy QoS_2M outbound
    #
    

  4. Verify the configuration.

    Run the display interface [ interface-type [ interface-number ] ] command. The command output shows traffic information of the specified interface.

Updated: 2019-05-16

Document ID: EDOC1000120969

Views: 25819

Downloads: 872

Average rating:
This Document Applies to these Products
Related Documents
Related Version
Share
Previous Next