一、 说明(需求):
流量1,公司视频会议流量(10.0.88.8/32),最高优先级
流量2,公司CN平台服务器网段流量(10.0.88.0/24),高优先级
流量3,公司代理服务器流量(10.3.252.221/222/223/224), 高优先级
流量4,监控流量及其它流量,低优先级,限制带宽为1.5MB
二、 具体配置步骤如下:
第一步,在外网接口启用QOS队列
priority-queueoutside //在外部接口启用优先级队列
queue-limit2048 //设定优先级队列的大小
tx-ring-limit256 //设定在给定时间内允许等待的最大的包的数量
第二步,定义ACL匹配应用流量:
access-list traffic1_acl extended permit ip 10.0.88.0 255.255.255.0 any
access-list traffic1_acl extended permitip 10.3.252.221 255.255.255.255 any
access-list traffic1_acl extended permitip 10.3.252.222 255.255.255.255 any
access-list traffic1_acl extended permitip 10.3.252.223 255.255.255.255 any
access-list traffic1_acl extended permitip 10.3.252.224 255.255.255.255 any
access-list traffic2_acl extended permitip any any
第二步,定义class-map匹配相关ACL:
class traffic1_cmap
match access-list traffic1_acl
class traffic2_cmap
match access-list traffic2_acl
第三步,定义policy-map:
policy-map traffic_qos
class traffic1_cmap
priority
class traffic2_cmap
police output 1500000
第四步,绑定policy-map于相应的接口:
service-policy traffic_qos interfaceoutside //应用策略到外部接口
三、 验证
1、use the show service-policy command inprivileged EXEC mode. You can limit the output to policies that include thepolice or priority commands by using the police or priority keywords
show service-policy traffic_qos
2、Viewing the Priority-Queue Configurationfor an Interface
show priority-queue statistics