Wireless Access

Reply
MVP

enabling QOS for traffic inside an AP's tunnel?

Thinking about end-to-end quality of service I'm a bit stuck at how to apply QoS to voice traffic when its inside an AP's GRE or IPSEC tunnel. 

 

Anybody have any ideas as to how to 'prefer' certain traffic inside a GRE tunnel? For IPSEC I'm stuck right? Only way to get some QoS here for the wired network is enable it for the entire ipsec stream?

Koen (ACMX #351 | ACDX #547 | ACCP)

-- Found something helpful, important, or cool? Click the Kudos Star in a post.
-- Problem Solved? Click "Accept as Solution" in a post.

Re: enabling QOS for traffic inside an AP's tunnel?

The way I understand this, is that we will append the tunneled packets with the appropriate diffs serv values.

These values only got applied to the traffic you are prioritizing.
Seth R. Fiermonti
Consulting Systems Engineer - ACCX, ACDX, ACMX
Email: seth@hpe.com
-----
If you found my post helpful, please give kudos
MVP

Re: enabling QOS for traffic inside an AP's tunnel?

yes, but doesn't that mean that my voice traffic gets no QOS from AP to controller since it's encapsulated in gre or ipsec?

Koen (ACMX #351 | ACDX #547 | ACCP)

-- Found something helpful, important, or cool? Click the Kudos Star in a post.
-- Problem Solved? Click "Accept as Solution" in a post.

Re: enabling QOS for traffic inside an AP's tunnel?

No. We apply QOS on the wired side pockets as well even if they are GRE or IP sec. The appropriate DSCP or 802.1p values are written to those packets.

Sent from my iPhone
Seth R. Fiermonti
Consulting Systems Engineer - ACCX, ACDX, ACMX
Email: seth@hpe.com
-----
If you found my post helpful, please give kudos

Re: enabling QOS for traffic inside an AP's tunnel?

This is from the 802.11n validated reference design.

The LAN that is between the AP and the mobility controller must recognize and prioritize DCSP-marked traffic
through the network. When in tunnel or decrypt-tunnel mode, the AP translates WMM marks into DSCP marks
and places them in the GRE header so that the intervening network properly prioritizes traffic. Similarly, the
core must respect the QoS marks from the mobility controller to the multimedia servers.
It is critical that all devices in the network be capable of and configured for QoS support. Switches and the
multimedia servers themselves should mark traffic appropriately. Failure to ensure end-to-end prioritization
can result in unpredictable performance for these applications.
Seth R. Fiermonti
Consulting Systems Engineer - ACCX, ACDX, ACMX
Email: seth@hpe.com
-----
If you found my post helpful, please give kudos
MVP

Re: enabling QOS for traffic inside an AP's tunnel?

Ok, good to know.

This is dynamically then?QoS traff: gre/ipsec tagged. No QoS traffic: no gre/ipsec tagged?

Koen (ACMX #351 | ACDX #547 | ACCP)

-- Found something helpful, important, or cool? Click the Kudos Star in a post.
-- Problem Solved? Click "Accept as Solution" in a post.

Re: enabling QOS for traffic inside an AP's tunnel?

Yes you are correct. That validated reference design will explain in greater detail.

Sent from my iPhone
Seth R. Fiermonti
Consulting Systems Engineer - ACCX, ACDX, ACMX
Email: seth@hpe.com
-----
If you found my post helpful, please give kudos

Re: enabling QOS for traffic inside an AP's tunnel?

sorry to jump in on an old thread, but does that mean a misconfigured device that is marking all it's traffic, will not necesarily get marked with QoS on the GRE packet, unless it is hitting an Aruba ACL that does specify QoS markings?

 

 


If my post is helpful please give kudos, or mark as solved if it answers your post.

ACCP, ACMP, ACMX #294
mclarke@arubanetworks.com
Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: