© 2006 Cisco Systems, Inc. All rights reserved. Optimizing Converged Cisco Networks (ONT) Module 4: Implement the DiffServ QoS Model.

Slides:



Advertisements
Similar presentations
NETFLOW & NETWORK-BASED APPLICATION RECOGNITION
Advertisements

© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 8: Monitoring the Network Connecting Networks.
The subnet /28 has been selected to be further subnetted to support point-to-point serial links. What is the maximum number of serial links.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Addressing the Network – IPv4 Network Fundamentals – Chapter 6.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public ITE PC v4.0 Chapter 1 1 Addressing the Network – IPv4 Network Fundamentals – Chapter 6.
Chapter 9: Access Control Lists
Ch. 1 – Scaling IP Addresses NAT/PAT and DHCP CCNA 4 version 3.0.
© 2006 Cisco Systems, Inc. All rights reserved. ICND v2.3—4-1 Managing IP Traffic with ACLs Configuring IP ACLs.
© 2007 Cisco Systems, Inc. All rights reserved.ICND2 v1.0—6-1 Access Control Lists Introducing ACL Operation.
© 2006 Cisco Systems, Inc. All rights reserved. ICND v2.3—4-1 Managing IP Traffic with ACLs Scaling the Network with NAT and PAT.
JANET-BMAS Cisco NBAR. Bandwidth Management Advisory Service Cisco NBAR Ben Horner George Neisser
© 2006 Cisco Systems, Inc. All rights reserved. Module 4: Implement the DiffServ QoS Model Lesson 4.10: Deploying End-to-End QoS.
© 2006 Cisco Systems, Inc. All rights reserved. Optimizing Converged Cisco Networks (ONT) Module 4: Implement the DiffServ QoS Model.
© 2006 Cisco Systems, Inc. All rights reserved. Module 4: Implement the DiffServ QoS Model Lesson 4.8: Understanding WAN Link Efficiency Mechanisms.
WXES2106 Network Technology Semester /2005 Chapter 10 Access Control Lists CCNA2: Module 11.
© 2006 Cisco Systems, Inc. All rights reserved. Implementing Secure Converged Wide Area Networks (ISCW) Module 6: Cisco IOS Threat Defense Features.
Introduction. 2 What Is SmartFlow? SmartFlow is the first application to test QoS and analyze the performance and behavior of the new breed of policy-based.
NetFlow Analyzer Drilldown to the root-QoS Product Overview.
Net Optics, Inc. - Proprietary Director Pro™ Overview February 2010.
1 © 2005 Cisco Systems, Inc. All rights reserved. 111 © 2004, Cisco Systems, Inc. All rights reserved.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Addressing the Network – IPv4 Network Fundamentals – Chapter 6.
© 2006 Cisco Systems, Inc. All rights reserved. Module 4: Implement the DiffServ QoS Model Lesson 4.5: Configuring CBWFQ and LLQ.
Implement the DiffServ QoS Model
InterVLAN Routing Design and Implementation. What Routers Do Intelligent, dynamic routing protocols for packet transport Packet filtering capabilities.
Penetration Testing Security Analysis and Advanced Tools: Snort.
Optimizing Converged Cisco Networks (ONT)
3.4: Using MQC for Implementing QoS
© 2006 Cisco Systems, Inc. All rights reserved. Optimizing Converged Cisco Networks (ONT) Module 4: Implement the DiffServ QoS Model.
© 2001, Cisco Systems, Inc. Classification and Marking.
CHAPTER 8 Quality of Service. Integrated services (IntServ) Ensure that a specific flow of traffic is going to receive the appropriate level of bandwidth.
Top-Down Network Design Chapter Thirteen Optimizing Your Network Design Oppenheimer.
© 2001, Cisco Systems, Inc. Signaling Mechanism. © 2001, Cisco Systems, Inc. QOS v1.0—7-2 Objectives Upon completing this module, you will be able to:
© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Identifying Application Impacts on Network Design Designing and Supporting Computer.
Digital Multimedia, 2nd edition Nigel Chapman & Jenny Chapman Chapter 17 This presentation © 2004, MacAvon Media Productions Multimedia and Networks.
Access Control Lists (ACLs)
© 2006 Cisco Systems, Inc. All rights reserved. Optimizing Converged Cisco Networks (ONT) Module 4: Implement the DiffServ QoS Model.
1 © 2005 Cisco Systems, Inc. All rights reserved. 111 © 2004, Cisco Systems, Inc. All rights reserved.
1 © 2004 Cisco Systems, Inc. All rights reserved. CCNA 2 v3.1 Module 11 Access Control Lists (ACLs)
© 2006 Cisco Systems, Inc. All rights reserved. Module 4: Implement the DiffServ QoS Model Lesson 4.2: Using NBAR for Classification.
© 2001, Cisco Systems, Inc. Modular QoS CLI Classification.
© 2006 Cisco Systems, Inc. All rights reserved. Optimizing Converged Cisco Networks (ONT) Module 4: Implement the DiffServ QoS Model.
© 2006 Cisco Systems, Inc. All rights reserved. QOS Lecture 6- Classification and Marking.
© 2006 Cisco Systems, Inc. All rights reserved. Cisco IOS Threat Defense Features.
Page 1 Access Lists Lecture 7 Hassan Shuja 04/25/2006.
Access Control List ACL’s 5/26/ What Is an ACL? An ACL is a sequential collection of permit or deny statements that apply to addresses or upper-layer.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco PublicITE I Chapter 6 1 Filtering Traffic Using Access Control Lists Introducing Routing and Switching.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Access Control Lists Accessing the WAN – Chapter 5.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Filtering Traffic Using Access Control Lists Introducing Routing and Switching.
Saeed Darvish Pazoki – MCSE, CCNA Abstracted From: Cisco Press – ICND 2 – 6 IP Access Lists 1.
© 2006 Cisco Systems, Inc. All rights reserved. Optimizing Converged Cisco Networks (ONT) Module 3: Introduction to IP QoS.
© 2006 Cisco Systems, Inc. All rights reserved. 3.5: Implementing QoS with Cisco AutoQoS.
Modular Policy Framework (MPF)
© 2006 Cisco Systems, Inc. All rights reserved. Optimizing Converged Cisco Networks (ONT) Module 3: Introduction to IP QoS.
© 2006 Cisco Systems, Inc. All rights reserved. Optimizing Converged Cisco Networks (ONT) Module 5: Implement Cisco AutoQoS.
Digital Multimedia, 2nd edition Nigel Chapman & Jenny Chapman Chapter 17 This presentation © 2004, MacAvon Media Productions Multimedia and Networks.
Quality of Service CLASSIFICATION AND MARKING. What is QoS? 1.It’s a CCIE topic – but that doesn’t mean you can’t learn! 1.Understand traffic flows AB.
© 2001, Cisco Systems, Inc. Policy Propagation Through BGP.
© 2006 Cisco Systems, Inc. All rights reserved. Optimizing Converged Cisco Networks (ONT) Module 4: Implement the DiffServ QoS Model.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Filtering Traffic Using Access Control Lists Introducing Routing and Switching.
© 2006 Cisco Systems, Inc. All rights reserved. Module 4: Implement the DiffServ QoS Model Lesson 4.6: Congestion Avoidance.
© 2002, Cisco Systems, Inc. All rights reserved..
Quality and Value for the Exam 100% Guarantee to Pass Your Exam Based on Real Exams Scenarios Verified Answers Researched by Industry.
NETWORK BASED APPLICATION RECOGNITION
Instructor Materials Chapter 6: Quality of Service
Implementing Quality of Service (QoS)
Cisco ASA Express Security
Top-Down Network Design Chapter Thirteen Optimizing Your Network Design Copyright 2010 Cisco Press & Priscilla Oppenheimer.
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 6: Quality of Service Connecting Networks.
CS580 Special Project: IOS Firewall Setup using CISCO 1600 router
Computer Networks Protocols
Presentation transcript:

© 2006 Cisco Systems, Inc. All rights reserved. Optimizing Converged Cisco Networks (ONT) Module 4: Implement the DiffServ QoS Model

© 2006 Cisco Systems, Inc. All rights reserved. Module 4: Implement the DiffServ QoS Model Lesson 4.2: Using NBAR for Classification

© 2006 Cisco Systems, Inc. All rights reserved. Network-Based Application Recognition  Used in conjunction with QoS class- based features, NBAR is an intelligent classification engine that: Classifies modern client-server and web- based applications Discovers what traffic is running on the network Analyzes application traffic patterns in real time  NBAR functions: Performs identification of applications and protocols (Layer 4–7) Performs protocol discovery Provides traffic statistics  New applications are easily supported by loading a PDLM. My application is too slow! Sample Link Utilization Citrix25% Netshow 15% Fasttrack10% FTP30% HTTP20%

© 2006 Cisco Systems, Inc. All rights reserved. NBAR Functions & Features  NBAR performs the following two functions: Identification of applications and protocols (Layer 4 to Layer 7) Protocol discovery  Some examples of class-based QoS features that can be used on traffic after the traffic is classified by NBAR include: Class-Based Marking (the set command) Class-Based Weighted Fair Queueing (the bandwidth and queue-limit commands) Low Latency Queueing (the priority command) Traffic Policing (the police command) Traffic Shaping (the shape command)

© 2006 Cisco Systems, Inc. All rights reserved. NBAR Application Support  NBAR can classify applications that use: Statically assigned TCP and UDP port numbers Non-UDP and non-TCP IP protocols Dynamically assigned TCP and UDP port numbers negotiated during connection establishment (requires stateful inspection) Subport and deep packet inspection classification

© 2006 Cisco Systems, Inc. All rights reserved. Packet Description Language Module  PDLMs allow NBAR to recognize new protocols matching text patterns in data packets without requiring a new Cisco IOS software image or a router reload.  An external PDLM can be loaded at run time to extend the NBAR list of recognized protocols.  PDLMs can also be used to enhance an existing protocol recognition capability.  PDLMs must be produced by Cisco engineers.

© 2006 Cisco Systems, Inc. All rights reserved. PDLM Command Syntax  Used to enhance the list of protocols recognized by NBAR through a PDLM.  The filename is in the URL format (for example, flash://citrix.pdlm). ip nbar pdlm pdlm-name router(config)# ip nbar port-map protocol-name [tcp | udp] port-number router(config)#  Configures NBAR to search for a protocol or protocol name using a port number other than the well-known port.  Up to 16 additional port numbers can be specified.

© 2006 Cisco Systems, Inc. All rights reserved. NBAR Protocol-to-Port Maps  Displays the current NBAR protocol-to-port mappings router#show ip nbar port-map port-map bgp udp 179 port-map bgp tcp 179 port-map cuseeme udp port-map cuseeme tcp port-map dhcp udp port-map dhcp tcp port-map dns udp 53 port-map dns tcp 53 show ip nbar port-map [protocol-name] router#

© 2006 Cisco Systems, Inc. All rights reserved. NBAR Protocol Discovery  Analyzes application traffic patterns in real time and discovers which traffic is running on the network  Provides bidirectional, per-interface, and per-protocol statistics  Important monitoring tool supported by Cisco QoS management tools: Generates real-time application statistics Provides traffic distribution information at key network locations

© 2006 Cisco Systems, Inc. All rights reserved. Configuring and Monitoring NBAR Protocol Discovery  Configures NBAR to discover traffic for all protocols known to NBAR on a particular interface  Requires that CEF be enabled before protocol discovery  Can be applied with or without a service policy enabled ip nbar protocol-discovery router(config-if)# show ip nbar protocol-discovery router#  Displays the statistics for all interfaces on which protocol discovery is enabled

© 2006 Cisco Systems, Inc. All rights reserved. Configuring and Monitoring Protocol Discovery Output router#show ip nbar protocol-discovery Ethernet0/0 Input Output Protocol Packet Count Packet Count Byte Count Byte Count 5 minute bit rate (bps) 5 minute bit rate (bps) realaudio http

© 2006 Cisco Systems, Inc. All rights reserved. Steps for Configuring NBAR for Static Protocols  Required steps: Enable NBAR Protocol Discovery. Configure a traffic class. Configure a traffic policy. Attach the traffic policy to an interface. Enable PDLM if needed.

© 2006 Cisco Systems, Inc. All rights reserved. Configuring NBAR for Static Protocols Commands  Configures the match criteria for a class map on the basis of the specified protocol using the MQC configuration mode.  Static protocols are recognized based on the well-known destination port number.  A match not command can be used to specify a QoS policy value that is not used as a match criterion; in this case, all other values of that QoS policy become successful match criteria. match protocol protocol router(config-cmap)#

© 2006 Cisco Systems, Inc. All rights reserved. Configuring NBAR Example  HTTP is a static protocol using a well-known port number 80. However, other port numbers may also be in use.  The ip nbar port-map command will inform the router that other ports are also used for HTTP.

© 2006 Cisco Systems, Inc. All rights reserved. Steps for Configuring Stateful NBAR for Dynamic Protocols  Required steps: Configure a traffic class. Configure a traffic policy. Attach the traffic policy to an interface.

© 2006 Cisco Systems, Inc. All rights reserved. Enhanced NBAR Classification for HTTP  Recognizes the HTTP GET packets containing the URL, and then matches all packets that are part of the HTTP GET request  Include only the portion of the URL following the address or host name in the match statement match protocol http url url-string router(config-cmap)# match protocol http host hostname-string router(config-cmap)#  Performs a regular expression match on the host field content inside an HTTP GET packet and classifies all packets from that host

© 2006 Cisco Systems, Inc. All rights reserved. match protocol http mime MIME-type router(config-cmap)# match protocol fasttrack file-transfer regular-expression router(config-cmap)# Special NBAR Configuration for HTTP and FastTrack  Matches a packet containing the MIME type and all subsequent packets until the next HTTP transaction for stateful protocol.  Stateful mechanism to identify a group of peer-to-peer file-sharing applications.  Applications that use FastTrack peer-to-peer protocol include Kazaa, Grokster, Gnutella, and Morpheus.  A Cisco IOS regular expression is used to identify specific FastTrack traffic.  To specify that all FastTrack traffic will be identified by the traffic class, use asterisk (*) as the regular expression.

© 2006 Cisco Systems, Inc. All rights reserved. URL or HOST Specification String Options OptionsDescription * Match any zero or more characters in this position. ? Match any one character in this position. | Match one of a choice of characters. (|) Match one of a choice of characters in a range. For example, xyz.(gif | jpg) matches either xyz.gif or xyz.jpg. [ ] Match any character in the range specified, or one of the special characters. For example, [0-9] is all of the digits; [*] is the "*" character, and [[] is the "[" character.

© 2006 Cisco Systems, Inc. All rights reserved. match protocol rtp [audio | video | payload-type payload-string] router(config-cmap)# Configuring Stateful NBAR for RTP  Identifies real-time audio and video traffic in the class-map mode of MQC  Differentiates on the basis of audio and video codecs  The match protocol rtp command has these options: audio: Match by payload type values 0 to 23, reserved for audio traffic video: Match by payload type values 24 to 33, reserved for video traffic payload-type: Match by a specific payload type value; provides more granularity than the audio or video options

© 2006 Cisco Systems, Inc. All rights reserved. Classification of RTP Session

© 2006 Cisco Systems, Inc. All rights reserved. Q and A

© 2006 Cisco Systems, Inc. All rights reserved. Resources  Network-Based Application Recognition, Q&A qanda_item09186a00800a3ded.shtml  Network-Based Application Recognition and Distributed Network-Based Application Recognition configuration_guide_chapter09186a html

© 2006 Cisco Systems, Inc. All rights reserved.

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.