I've read lots of manuals and configuration guides and tutorials, yet things are not yet really very clear as far as the big picture is concerned.
So, I need some advice concerning QoS and how to use on EOS gear. We have Bs and Cs at the edge, DFEs in the distribution, and 7100 in the core. Essentially we plan to introduce a little VoIP but I'd like to keep the discussion general.
So when QoS comes into play you usually define a trust boundary which obviously is at the edge. How would that look like on EOS?
As far as I understand, the switches simply trust a packet with a 802.1p/q PCP set (0-7) and assign it to the corresponding queue. --> Does this mean there is a prerequisite for NAC / strong endpoint security here?
It would already be an advantage if you could tell the devices not to trust any such priority at all at the edge except for certain VLANs (like VoIP phones, which have limited access to the Call Server anyway).
How do you do this in real life?