John,
I think I max out at 12.3 on this older model 2600 (non XM)..
Thanks for the hints, I'll have a look.
/M
John Lange wrote:
On Fri, 2010-08-06 at 00:33 -0400, Mark Brown wrote:
policy-map tcppolice
class acgroup110
police 588000 2000 4000 conform-action transmit exceed-action
set-qos-transmit 4 violate-action drop
interface Ethernet0/0
description LAN
ip address 192.168.0.1 255.255.255.0
ip nat inside
service-policy input tcppolice
access-list 110 permit tcp any any
You left out the class-map so I'm assuming something like:?
class-map match-any acgroup110
match access-list 110
In any case that config doesn't look like it would work. All it's doing
is policing the incoming traffic down to 588000 bps.
This seems like it would be bad for a few reasons.
First, It's not prioritizing anything, just dropping all traffic equally
as soon as the bandwidth is exceeds your threshold. Technically even
traffic across the LAN would be dropped though I'm assuming there is
probably a switch someplace else on the network so LAN traffic won't be
routing through the Cisco.
Second, policing on the ingress isn't what you want, you want shaping on
the egress. The router should accept all packets, prioritize voice
(using LLQ), then shape it on the egress to the WAN.
Since IAX is not a standard the Cisco's can't recognize it so the
alternative is to shape based on destination IP. This works fine as long
as your VOIP server is always at the same IP.
SIP is actually a better choice but that's another discussion.
I'm sorry I don't have time right now to do a complete example and this
is from memory so please check the values but something like this:
---
class-map match-any VOIP
match access-group name VOIP
class-map match-any OTHER
match access-group name OTHER
policy-map WAN_Egress
class VOIP
! reserve a 250 Kb/s slice for voice
priority 200
class OTHER
! Shape to DSL upload speed .45 mb/s
shape average 450000
! WAN Interface
interface FastEthernet0/0
service-policy output WAN_Egress
! VOIP server is 173.194.32.104
ip access-list extended VOIP
permit ip any host 173.194.32.104
permit ip host 173.194.32.104 any
ip access-list extended OTHER
permit ip any any
---
Makes sure you have Version 12.4(24)T3 firmware. Cisco firmware is
notoriously buggy as hell and many versions don't do QOS properly.
Once you have it implemented you can do:
show policy-map interface
and you should your voice packets matching.
Regards,
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
