[c-nsp] QoS sometimes drives me nuts
E. Versaevel
erik at infopact.nl
Thu Aug 26 02:42:47 EDT 2010
First of all, VoIP is usualy carried over UDP (not TCP except for some uncommon signaling, the voice data itself is usualy UDP)
Are you sure your access-list matches the SOURCE for the voip stream and not the destination (ie the ip adresses on your end) ?
rgrds,
Erik
Op 26-8-2010 6:42, Security Team schreef:
> I have really enjoyed learning about QoS, it's challenging. But I ran
> across something so simple today that doesn't work that I'm questioning
> whether I have learned anything at all....
>
> All I wanted to do on a 6500 with Sup2's is mark all incoming traffic into
> my gig1/1 from a certain source address x.x.x.x to DSCP set to EF (46), like
> this:
>
> acc 101 permit udp x.x.x.x 0.0.0.255 any
> acc 101 permit tcp x.x.x.x 0.0.0.255 any
>
> class-map match-any IncomingVoiceTraffic
> match access-group 101
>
> policy-map MarkIncomingVOIPTraffic
> class IncomingVoiceTraffic
> set ip dscp ef
>
> interface GigabitEthernet1/1
> ip address blah blah
> service-policy input MarkIncomingVOIPTraffic
>
> When I look with Wireshark the RTP packets for a voip session aren't getting
> tagged inbound. Going back out gig1/1 is fine because the voip server is
> marking the traffic properly. I'm just having trouble inbound.
>
> Any gurus still awake?
>
> Thanks,
> CJ
>
>
> _______________________________________________
> cisco-nsp mailing list cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
More information about the cisco-nsp
mailing list