How's this for a start on QoS settings?
I have VoIP and streaming security cameras I want to give priority across the network. Is this looking correct so far?
This is on my ICX6450 setup as an access switch.
Code:
ip access-list extended markqos
permit tcp 10.1.3.0 0.0.0.255 eq 9000 any dscp-marking 32
permit tcp any 10.1.3.0 0.0.0.255 eq 9000 dscp-marking 32
permit tcp any any eq 554 dscp-marking 32
permit tcp any eq 554 any dscp-marking 32
permit udp any any range 6970 6979 dscp-marking 32
permit udp any range 6970 6979 any dscp-marking 32
permit tcp any any eq 5060 dscp-marking 24
permit tcp any eq 5060 any dscp-marking 24
permit udp any eq 5060 any dscp-marking 24
permit udp any any eq 5060 dscp-marking 24
permit udp 10.1.2.0 0.0.0.255 range 10000 20000 any dscp-marking 46
permit udp any 10.1.2.0 0.0.0.255 range 10000 20000 dscp-marking 46
permit ip any any
Now do I add this ACL to each interface?
On my ICX6610, which also has edge devices on it, do I add these rules to all ports as well, or add them to the ACLs already in use on the VEs?
On both switches, the
trust dscp option should be set on the uplink ports only, correct?
Also going to mention that I switched my ICX6450 to the ICX64S switching-only firmware. It only required some minor configuration changes, but works as expected. I still don't think there's any benefits to doing so, except slightly less complicated configuration.