60 Chapter 2: End-to-End QoS: Quality of Service at Layer 3 and Layer 2
Catalyst QoS Classification
Classification determines how a switch or router marks, processes, and schedules frames.
Currently shipping Catalyst switches utilize an internal DSCP value to correctly schedule and
mark frames for egress transmission. Chapter 6 first introduces the concept of internal DSCP.
Moreover, Catalyst switches classify frames based on a variety of ingress frame parameters
such as CoS, DSCP, IP precedence, trust, ingress interface, or IP address. Trust, based either
on platform-specific default or user configuration, is an indication of whether the network
administrator trusts the QoS markings of ingress frames on a per-interface basis. Generally,
network administrators do not trust user ports because operating systems enable users to set
the CoS value on egress packets. This situation may yield a negative impact on the network
because users determine the priority of their traffic. Conversely, network designs typically
trust infrastructure connections such as switch-to-switch, switch-to-router, or switch-to-IP
Phone connections. The assumption in this case is that the other switches are already
configured properly for trusting, classification, and marking.
Trusted interfaces do not alter the QoS marking of ingress frames. Untrusted interfaces alter
the QoS markings to a configurable value CoS or DSCP. This value is typically zero (Best
Effort) for untrusted interfaces. The command-line configuration and restrictions
associated with trusted or untrusted interfaces are per platform. Later chapters discuss these
configurations and restrictions, when the focus is on platform-specific properties. This trust
concept is discussed in more detail in the section “Cisco Catalyst QoS Trust Concept” later
in this chapter.
Catalyst QoS Marking
Marking is the act of a switch or router rewriting the CoS, DSCP, or IP precedence fields
of frames based on classification. Marking modifies the intended ingress frame behavior as
set by the originating device. Catalyst switches use interface configurations or policers to
define marking parameters.
Catalyst QoS Policing
Catalyst switches define policers for applying bandwidth limits to ingress and egress traffic.
In addition, Catalyst switches use policers to mark traffic. For example, it is possible to
configure a policing policy such that all traffic of a certain type below 1 Mbps is marked
with a DSCP value of af31 and all traffic above 1 Mbps is marked with a DSCP value of af32.
As with several with Catalyst QoS features, the configuration syntax and actual behavior
for policing on Catalyst platforms is platform-specific and is discussed in later chapters.
However, common to all platforms is the use of a token bucket concept for the policing
bandwidth function.