Quality of Service (QoS)

Question 1

What is the need for QoS

Answer 1

To improve the delivery of real time traffic such as voice and video as they are very sensitive to delays.

Question 2

What are the leading causes of QoS issues

Answer 2

Lack of bandwidth
Latency/Jitter
Packet loss

Question 3

What is latency and jitter

Answer 3

Latency - the one way time it takes for packet delivery from source to destination in ms.

Jitter - the difference between highest latency and lowest latency.

Question 4

What is the recommended latency values under G.114 for real time traffic and non-real time traffic

Answer 4

Real time - 150ms max
all other traffic - 400ms MAX

Question 5

What are the different types of latency in a network

Answer 5

Propagation delay (fixed) - delay with the refractive index of the medium taken into account.
Serialisation delay (fixed) - delay it takes to place the individual bits on to the link.
Processing delay (fixed) - delay it takes for network device to take incoming bits and place them on to the outgoing queue/ interface.
Delay (Variation) - Jitter.

Question 6

What are the main ways to overcome packet loss

Answer 6

Increase link speed
Implement congestion avoidance and congestion management techniques
Implement traffic policing and shaping.

Question 7

What are the 3 different ways QoS is implemented into a network (QoS implementation models)

Answer 7

Best effort
IntServ - uses a signalling protocol RSVP to reserve bandwidth end to end
DiffServ - uses traffic classification to prioritise higher priority traffic.

Question 8

What is the drawback of IntServ

Answer 8

A RSVP state is required to build, maintain and support the RSVP this causes issues with scalability of resources.

Question 9

What is classification in QoS

Answer 9

Classification is where different traffic flows can be identified as different descriptors.

Question 10

Where in the network should traffic classification take place

Answer 10

On the edge

Question 11

What is NBAR2

Answer 11

It is a layer 7 deep packet inspection engine that is capable of identifying and classifying different applications and protocols from 1000s of different ports including dynamically assigned ports.

Question 12

What layers can be classified on the OSI scale

Answer 12

All layers including 2.5 MPLS

Question 13

What is packet marking in QoS

Answer 13

It is when a packet or frame is coloured by changing a field with a traffic descriptor so that it is differentiated from other packets

Question 14

What traffic descriptors are used for marking

Answer 14

Layer 2
Layer 2.5 MPLS
Layer 3 DSCP, IP precedence

Question 15

What is the 802.1Q header made up of in a layer 2 frame

Answer 15

TPID - 2B field that indicates it is a 802.1Q header
TCI - 2B field made up of PCP code, DEI and VID

Question 16

What is a PCP code used for

Answer 16

A PCP code is the 802.1P CoS layer 2 traffic marking that indicates the priority of the frame in the network. 1-7 (7 is the highest). 5 is for voice and is the highest user definable value.

Question 17

What is the drawback to Class of service (CoS) PCP

Answer 17

It looses its marking once it traverses a non 802.1Q link or layer 3 link. However CoS bits are directly mapped to IPv4 (ToS) bits performing layer 3 marking.

Question 18

What is the DSCP field used for

Answer 18

Marking layer 3 traffic so it can be processed at layer 3 on a hop by hop basis. DSCP is used for DiffServ QoS Implementations.

Question 19

On a DSCP hop by hop basis packets are classified and marked with a particular DSCP per hop forwarding behaviour (PHB), what are the different PHBs

Answer 19

DF - Default forwarding (best effort delivery) DSCP value 000000
CS - Class sector (Used for backwards compatibility with IP precedence ToS)
AF - Assured forwarding - Used for guaranteed bandwidth services.
EF - Expedited forwarding - used for low latency services like voice.

Question 20

IN assured forwarding what does this mean AF41

Answer 20

This DSCP value in decimal will be 34, the AFxy x is the IP precedence value and y is the drop probability of the packet in WRED.

Question 21

What is the scavenger class used for

Answer 21

Less than best effort traffic, typically for gaming applications and entertainment like YouTube. This type of traffic will be rate limited typically.

It is assigned DSCP value of CS1 as a negative value is not possible in DSCP.

Question 22

What is a trust boundary

Answer 22

In a end-to-end QoS experience the edge of the network should mark the packets with the appropriate DSCP value.

A switchport can either:

Accept the marking already on the packet (Trust)
Refuse the marking and remark with new marking (Not Trust)

the boundary is where the packet is remarked.

Question 23

What is a traffic Policer

Answer 23

Drop or remark traffic that goes beyond a desired traffic rate.

Question 24

What is a traffic shaper

Answer 24

Buffer/queue and delay egress traffic rates that temporarily peak above desired rate and when/if rate drops traffic is sent.

Question 25

Where is the optimal placing for a policer

Answer 25

At the edge of the network for both incoming and outgoing traffic towards the core.

Question 26

Where is the optimal place for a shaper

Answer 26

Optimally placed on enterprise networks facing the ISP as the ISP side will have a policer and monetary penalties for exceeding agreed SLA.

Question 27

What is the biggest drawback to traffic policers

Answer 27

when traffic is dropped for exceeding the desired rate, the TCP session will also be dropped and need to be retransmitted.

Question 28

What 2 actions can traffic policers take with traffic that exceeds the desired rate.

Answer 28

Drop the traffic

or…

Mark down the traffic to a lower priority

Question 29

What is a token bucket algorithm

Answer 29

It is the algorithms the Cisco IOS uses for the policer function.

Question 30

What is the Committed information Rate (CIR)

Answer 30

the rate of traffic that the policer is set at. bps

Question 31

What is the committed burst size (Bc)

Answer 31

The maximum size of the token bucket

Question 32

The largest packet in the network should be equal or less than the Bc size

True or False

Answer 32

True

Question 33

What is the committed time interval (Tc)

Answer 33

The time interval over which the token bucket is sent.

Question 34

What is a token in bits/bytes

Answer 34

8 bits or 1 byte

Question 35

What happens when the token bucket is filled up to the maximum amount (Bc)

Answer 35

Packet is sent.

Question 36

What happens if the bucket is not filled up

Answer 36

Packets can either:
be buffered (shaping)
Dropped (Policing)
or marked down. (Policing)

Question 37

What are the 3 different token bucket algorithm policers

Answer 37

Single rate two-colour policer
Single rate three-colour policer (srTCM)
Two rate three-colour policer (trTCM)

Question 38

How does a Single rate two-colour policer/marker work

Answer 38

Traffic is either conforming to or exceeding the CIR, for the exceeding traffic it can either be marked down or dropped.

Uses one token bucket that once full traffic is marked down or dropped.

Question 39

How does a Single rate three-colour policer/marker work

Answer 39

Operates using 2 token buckets traffic can either be conforming, exceeding or violating the CIR.

The first bucket operates similarly to 2 colour whereas once the bucket is full the excess tokens are placed into the second bucket.

Question 40

What is the excess burst (Be)

Answer 40

The maximum number of bits that can exceed the burst size (Bc)

Question 41

How does a two rate three-colour policer/marker work

Answer 41

It uses two buckets and relies on 2 rates the CIR and the PIR the CIR fills the 1st token bucket and the 2nd token bucket is filled by the PIR.

This allows for a sustained excess rate.

Question 42

What is the peak information rate (PIR)

Answer 42

The maximum rate of traffic allowed

Should be greater or equal to CIR.

Question 43

What is queuing/buffering

Answer 43

Temporary storage of excess packets. it is activated once a output interface is experiencing congestion and is deactivated once congestion clears.

Question 44

How can congestion occur

Answer 44

Input interface is faster than the output interface

Multiple input interfaces serving one output interface

Question 45

What is a scheduling

Answer 45

When packets are in a queue they can be re-ordered to egress the device.

There is multiple algorithms for scheduling.

Question 46

What are the legacy scheduling algorithms

Answer 46

FIFO
Round robin
Weighted round robin
Custom queuing
Priority queuing
Weighted fair queuing

Question 47

What is the current scheduling algorithms used in enterprise networks

Answer 47

CBWFQ & LLQ

Question 48

What is CBWFQ

Answer 48

Class Based Weighted Fair Queuing

Allows multiple queues 256 for 256 traffic classes that are all serviced based on their assigned bandwidth (the weight).

Allows user defined classes.

Classes can have weight assigned bandwidth, maximum queue size and maximum packet size defined.

Once packets exceed queue limit packets are dropped.

ONLY SUITABLE for NON-real time traffic.

Question 49

What is LLQ

Answer 49

Low Latency Queuing

Is used for real time traffic like voice and video traffic.

Used in combination with CBWFQ. the LLQ is the priority queue and is assigned bandwidth first before CBWFQ queues.

Multiple classes can be defined e.g. voice and video. however one single queue (Priority queue combines and schedules the different class queues).

Question 50

What is congestion avoidance tools purpose

Answer 50

To monitor the network traffic loads to anticipate and avoid congestion by dropping packets.

Tools used are:
Tail drop - default
RED
WRED

Question 51

What is Tail drop, RED and WRED

Answer 51

Tail drop - treats all traffic equally, when queue fills all traffic is dropped (causes mass TCP re-synch

RED - Random early detection - when congestion is detected before queue is full random packets are dropped throughout the traffic flow to decrease the congestion.

WRED - Cisco’s implementation of RED introduces weight variable so that lower priority packets are dropped more aggressively than higher priority packets.