Applies To:Show Versions
- 11.5.10, 11.5.9, 11.5.8, 11.5.7, 11.5.6, 11.5.5, 11.5.4, 11.5.3, 11.5.2, 11.5.1
Overview: Configuring tiered services with bandwidth control
You can set up Policy Enforcement Manager to enforce different levels of bandwidth control on subscribers, providing more bandwidth to subscribers with higher tier subscriptions. Bandwidth control in this case is per subscriber and per application.
This implementation provides three tiers of service: gold (the highest level), silver (the next highest), and bronze (the lowest level). You create three dynamic bandwidth controllers, one for each tier to provide different bandwidth limits for subscribers with different plans. Each tier includes bandwidth control limits for three types of application traffic (P2P, audio-video, and web). You also create three enforcement policies, one for each tier. In the enforcement policies, rules applies bandwidth control to the different types of traffic.
Finally, subscribers are provisioned dynamically through a policy charging and rules function (PCRF) over a Gx interface. On the PCRF, you need to have associated subscribers with one of the subscriber tiers called gold, silver, and bronze.
Creating dynamic bandwidth control policies for tiered services
- On the Main tab, click .
- Click Create.
In the Name field, type the name of the bandwidth
controller. In this example, name the three bandwidth controllers as
- Type gold-bwc for the premium subscription level.
- Type silver-bwc for the medium subscription level.
- Type bronze-bwc for the lowest subscription level.
- In the Maximum Rate field, type a number and select the unit of measure to indicate the total throughput allowed for all the subscribers using each bandwidth controller. For this example, specify 10 Mbps for all three bandwidth controllers If you want to use different values, the number must be in the range from 1Mbps to 320Gbps.
- From the Dynamic list, select Enabled. The screen displays additional settings.
In the Maximum Rate Per User field, type a number and
select the unit of measure relative to the tier of service. For example, use the
- For gold-bwc, specify 8 Mbps.
- For silver-bwc, specify 4 Mbps.
- For bronze-bwc, specify 2 Mbps.
- Leave the IP Type of Service and Link Quality of Service values set to Pass Through, the default value.
In the Categories field for each bandwidth controller,
add three categories of traffic: P2P,
Web, and Audio-video.
- For gold-bwc, set P2P to 20%, set Web to 70%, and set Audio-video to 40%.
- For silver-bwc, set P2P to 20%, set Web to 60%, and set Audio-video to 30%.
- For bronze-bwc, set P2P to 20%, set Web to 50%, and set Audio-video to 20%.
- Click Finished.
Creating enforcement policies for three tiers
- On the Main tab, click The Policies screen opens. .
- Click Create. The New Policy screen opens.
In the Name field, type a name for the policy.
- Type gold for the premium subscription level.
- Type silver for the medium subscription level.
- Type bronze for the lowest subscription level.
- Click Finished. The new enforcement policy is added to the policy list.
Creating the rules for tiered bandwidth control
- On the Main tab, click The Policies screen opens. .
- Click the name of the enforcement policy you want to add rules to. The properties screen for the policy opens.
- In the Policy Rules area, click Add. The New Rule screen opens.
- In the Name field, type a name for the rule. For the first rule, use the name P2P.
- In the Precedence field, type an integer that indicates the precedence, 1 being the highest. In this case, you can use any value, for example, 10, as the precedence for all the rules in all the policies because there is no conflict between the rules you are creating. Each rule applies to a different type of traffic: web, audio-video, and P2P.
In the Classification setting, specify the type of
- For the first rule, from the Category list, select P2P. Use the default values for Match Criteria (Match) and Application (Any).
- Click Add.
In the Rate Control setting, for Bandwidth
Controller, select the name of the bandwidth controller and
- For Bandwidth Controller, select the name that matches the policy you are working on. For example, if editing the gold policy, select gold-bwc.
- For Category, select the category that matches the type of traffic specified by the name of the rule. For example, select P2P.
- Click Finished.
Repeat steps 3-8 to create a second rule for audio-video traffic with these
Option Values Name Audio-video Precedence 10 (any value is OK) Classification Category Audio_video Rate Control-Bandwidth Controller Same as the name of the policy you are adding the rule to (gold-bwc, silver-bwc, or bronze-bwc) Bandwidth Controller-Category Audio-video
Repeat steps 3-8 to create a third rule for web traffic with these
Option Values Name Web Precedence 10 (any value is OK) Classification Category Web Rate Control-Bandwidth Controller Same as the name of the policy you are adding the rule to (gold-bwc, silver-bwc, or bronze-bwc) Bandwidth Controller-Category Web
Creating a listener for subscriber discovery with RADIUS and policy provisioning with PCRF
- On the Main tab, click The Listeners screen opens. .
- Click Create. The New Listener screen opens.
- In the Name field, type a unique name for the listener.
For the Destination setting, select Host
or Network, and type the IP address or network and netmask to
Tip: You can use a catch-all virtual server (0.0.0.0) to specify all traffic that is routed to the BIG-IP system.The system will create a virtual server using the address or network you specify.
- For the Service Port setting, type or select the service port for the virtual server.
- From the Protocol list, select the protocol of the traffic for which to deploy enforcement policies (TCP, UDP, or TCP and UDP). The system will create a virtual server for each protocol specified.
- To use network address translation, from the Source Address Translation list, select Auto Map. The system treats all of the self IP addresses as translation addresses.
- For the VLANs and Tunnels setting, move the VLANs and tunnels that you want to monitor from the Available list to the Selected list.
- For subscriber provisioning using RADIUS, ensure that Subscriber Identity Collection is set to RADIUS.
- For the VLANs and Tunnels setting, move the VLANs and tunnels that you want to monitor for RADIUS traffic from the Available list to the Selected list.
- For the tiered services example, do not assign global policies.
- To connect to a PCRF, from the Diameter Endpoint list, select Enabled and select Gx from the Supported Apps options.
- In the Origin Host field, type the fully qualified domain name of the PCRF or external policy server, for example, ocs.xnet.com.
- In the Origin Realm field, type the realm name or network in which the PCRF resides, for example, xnet.com.
- In the Destination Host field, type the destination host name of the PCRF or external policy server, for example, pcrfdest.net.com.
- In the Destination Realm field, type the realm name or network of the PCRF, for example, net.com.
- For the Pool Member Configuration setting, add the PCRF servers that are to be members of the Gx endpoint pool. Type the Member IP Address and Port number, then click Add.
- In the Message Retransmit Delay field, type the number of milliseconds to wait before retransmitting unanswered messages in case of failure from the BIG-IP system to the PCRF over the Gx interface. The default value is 1500.
- In the Message Max Retransmit field, type the maximum number of times that messages can be retransmitted from the BIG-IP system to the PCRF. The default value is 2.
- In the Fatal Grace Time field, type the time period in seconds that a diameter connection can remain disconnected before the system terminates all sessions associated with that diameter endpoint. The default value is 500.
- Click Finished. The Policy Enforcement Manager creates a listener, and displays the listener list.
When traffic flows through a BIG-IP system, the system limits the aggregated bandwidth for all subscribers having a gold, silver, or bronze policy. Subscribers with a gold policy can use more of the total bandwidth than silver or bronze subscribers. Further, subscriber traffic in any of the tiers that is classified as audio-video, web, or P2P is limited to a percentage of the total bandwidth allowed for that tier.
For example, if a subscriber has a silver subscription level and PEM classifies their traffic as Web, the traffic is limited to 60% of the Maximum Rate specified in the silver-bwc bandwidth controller (4 Mbps). This leaves 2.4 Mbps as the maximum bandwidth for all web traffic of silver tier subscribers.