Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
ON THIS PAGE
 

Example: Enabling Eight-Queue Class of Service on Redundant Ethernet Interfaces on SRX Series Firewalls in a Chassis Cluster

This example shows how to enable eight-queue CoS on redundant Ethernet interfaces on SRX Series Firewalls in a chassis cluster. This example is applicable to SRX1600, SRX2300, SRX4100, SRX4200, SRX4300, SRX4600, SRX5400, SRX5600, and SRX5800. The eight-queue CoS is also supported on redundant Ethernet interfaces for branch SRX Series Firewalls in a chassis cluster. The SRX Series for the branch support eight queues, but only four queues are enabled by default.

Requirements

This example uses the following hardware and software components:

  • Two SRX5600 Service Gateways in a chassis cluster

  • Junos OS Release 11.4R4 or later for SRX Series Firewalls

Before you begin:

Overview

The SRX Series Firewalls support eight queues, but only four queues are enabled by default. Use the set chassis fpc x pic y max-queues-per-interface 8 command to enable eight queues explicitly at the chassis level. The values of x and y depends on the location of the IOC and the PIC number where the interface is located on the device on which CoS needs to be implemented. To find the IOC location use the show chassis fpc pic-status or show chassis hardware commands.

You must restart the chassis control for the configuration to take effect.

On SRX Series Firewalls, eight QoS queues are supported per ae interface.

Figure 1 shows how to configure eight-queue CoS on redundant Ethernet interfaces on SRX Series Firewalls in a chassis cluster.

Topology

Figure 1: Eight-Queue CoS on Redundant Ethernet InterfacesEight-Queue CoS on Redundant Ethernet Interfaces

Configuration

Procedure

CLI Quick Configuration

To quickly configure this example, copy the following commands, paste them into a text file, remove any line breaks, change any details necessary to match your network configuration, copy and paste the commands into the CLI at the [edit] hierarchy level, and then enter commit from configuration mode.

Step-by-Step Procedure

The following example requires you to navigate various levels in the configuration hierarchy. For instructions on how to do that, see Using the CLI Editor in Configuration Mode in the CLI User Guide.

To enable eight-queue CoS on redundant Ethernet interfaces:

  1. Configure a maximum of eight queues on the interfaces on Node 0 and Node 1.

    In addition to configuring eight queues at the [edit chassis] hierarchy level, the configuration at the [edit class-of-service] hierarchy level must support eight queues per interface.

  2. Specify the number of redundant Ethernet interfaces.

  3. Configure the control ports.

  4. Configure redundancy groups.

  5. Configure the redundant Ethernet interfaces.

  6. Define a classifier and apply it to a logical interface.

  7. Map forwarding classes to CoS queues.

  8. Configure traffic control profiles.

  9. Define packet flow through the CoS elements.

  10. Apply a traffic scheduling profile to the interface.

  11. Configure the CoS schedulers.

Results

From configuration mode, confirm your configuration by entering the show class-of-service command. If the output does not display the intended configuration, repeat the configuration instructions in this example to correct it.

For brevity, this show command output includes only the configuration that is relevant to this example. Any other configuration on the system has been replaced with ellipses (...).

If you are done configuring the device, enter commit from configuration mode.

To restart chassis control, enter restart chassis-control command from operational mode.

When you execute the restart chassis-control command all the FRU cards on the box are reset, thus impacting traffic. Changing the number of queues must be executed during a scheduled downtime. It takes 5-10 minutes for the cards to come online after the restart chassis-control command is executed.

Verification

Verifying the Eight-Queue COS Configuration

Purpose

Verify that eight-queue CoS is enabled properly.

Action

From the operational mode, enter the following commands:

  • show interfaces ge-5/1/14 extensive

  • show interfaces queue ge-5/1/14

  • show class-of-service forwarding-class

  • show class-of-service interface ge-5/1/14

Related Documentation