Medianet Reference Guide - Cisco
Medianet Reference Guide - Cisco
Medianet Reference Guide - Cisco
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
Chapter 4<br />
<strong>Medianet</strong> QoS Design Considerations<br />
Summary<br />
Therefore, for network administrators to implement data plane policing/Scavenger class QoS, they need<br />
to first profile applications to determine what constitutes normal as opposed to abnormal flows,<br />
within a 95 percent confidence interval. Thresholds demarking normal/abnormal flows vary from<br />
enterprise to enterprise and from application to application. Beware of over-scrutinizing traffic behavior<br />
because this could exhaust time and resources and could easily change daily. Remember, legitimate<br />
traffic flows that temporarily exceed thresholds are not penalized by the presented Scavenger class QoS<br />
strategy. Only sustained, abnormal streams generated simultaneously by multiple hosts (highly<br />
indicative of DoS/worm attacks) are subject to aggressive dropping only after legitimate traffic has been<br />
serviced.<br />
To contain such abnormal flows, deploy campus access edge policers to remark abnormal traffic to<br />
Scavenger (CS1). Additionally, whenever possible, deploy a second line of policing defense at the<br />
distribution layer. And to complement these remarking policies, it is necessary to enforce deferential<br />
Scavenger class queuing policies throughout the network.<br />
A final word on this subject—it is important to recognize the distinction between mitigating an attack<br />
and preventing it entirely. Control plane policing and data plane policing policies do not guarantee<br />
that no DoS or worm attacks will ever happen, but serve only to reduce the risk and impact that<br />
such attacks could have on the network infrastructure. Therefore, it is vital to overlay a<br />
comprehensive security strategy over the QoS-enabled network infrastructure.<br />
Summary<br />
This chapter began by discussing the reasons driving the QoS design updates presented in this document<br />
by examining three sets of drivers behind QoS design evolution, including:<br />
• New applications and business requirements<br />
• New industry guidance and best practices<br />
• New platforms and technologies<br />
Business drivers—including the evolution of video applications, the phenomena of social networking,<br />
the convergence within media applications, the globalization of the workforce, and the pressures to be<br />
“green”—were examined to determine how these impact new QoS designs over enterprise media<br />
networks. Next, developments in industry standards and best practices—with particular emphasis on<br />
RFC 4594 Configuration <strong>Guide</strong>lines for DiffServ Classes—were discussed, as were developments in<br />
QoS technologies and their respective impacts on QoS design.<br />
<strong>Cisco</strong>’s QoS toolset was overviewed to provide a foundational context for the strategic best practices that<br />
followed. Classification and marking tools, policing and markdown tools, shaping, queuing, and<br />
dropping tools were all reviewed, as were AutoQoS and QoS management tools.<br />
An enterprise medianet architecture was then presented, along with strategic QoS design<br />
recommendations. These recommendations included an RFC 4594-based application class model and an<br />
application expansion class model (for enterprises not yet ready to deploy a 12-class QoS model).<br />
Additionally, QoS best practices for classification, marking, policing, and queuing were presented,<br />
including:<br />
• Always deploy QoS in hardware (over software) whenever possible.<br />
• Mark as close to the source as possible with standards-based DSCP values.<br />
• Police as close to the source as possible.<br />
• Markdown according to standards-based rules.<br />
• Deploy queuing policies on all network nodes.<br />
OL-22201-01<br />
<strong>Medianet</strong> <strong>Reference</strong> <strong>Guide</strong><br />
4-45