Creating this task to track progress to bringing the QoS configuration across the network live.
The broad plan should be as follows:
- Modify CR border-in firewall filter to mark all external traffic with DSCP default bits
- This protects against external traffic incorrectly being mapped into high-priority class later
- Merge puppet patch to add ferm rule setting DSCP bits to default on all outbound server traffic
- Same protection but for traffic entering network from our own servers
- Merge Homer patch to enable CoS classifiers, schedulers on specific devices
- Control if devices get the config with a new global var, temp until it's enabled on all
- Apply config to certain devices (suggest ulsfo CRs and switches) and monitor
- Remove the var controlling what devices get policy applied, and push to all network devices
With that done all network devices will have the QoS configuration in place, and all traffic will be in our "normal priority" forwarding class (with the exception of packets the routers create themselves, which will end up in "mgmt_control" FC, which is the same as currently except it's been renamed to that from "network-control"). Ultimately this should represent no change from current behaviour, just 2 additional forwarding classes (high and low) are defined but with no traffic mapped to them.
Once that is done we can begin to use the new puppet functions to map traffic we wish into any of the 3 non-default classes (mgmt/high/low). Decisions on what traffic should be mapped to what class is a separate issue we can discuss on a case-by-case basis once this task is complete.