Traffic Shaping

Imagine a highway during rush hour. Without traffic signals, lane mergers become chaos—aggressive drivers cut ahead while others wait indefinitely. Some reach their destination quickly while others are stuck for hours. Now imagine the same highway with intelligent traffic management: vehicles enter at controlled rates, high-priority emergency vehicles get dedicated lanes, and everyone's journey becomes predictable.

Traffic shaping in computer networks works on the same principle. It's the sophisticated art of controlling when, how fast, and in what order data packets traverse a network. Without traffic shaping, bursty applications can monopolize bandwidth, latency becomes unpredictable, and network fairness collapses. With proper traffic shaping, networks become predictable, fair, and capable of delivering differentiated service quality.

Traffic shaping (also known as packet shaping or bandwidth shaping) is a network traffic management technique that deliberately delays some or all packets to bring them into compliance with a desired traffic profile or contract. It's a proactive mechanism that smooths out bursty traffic into a more predictable, steady stream.

Formally, traffic shaping is defined as:

A bandwidth management technique that delays some packets to meet a desired traffic profile, ensuring outgoing traffic conforms to a traffic contract and smoothing bursty flows into more regular patterns.

The key insight is that traffic shaping doesn't discard packets—it delays them. This is fundamentally different from traffic policing, which drops or marks excess traffic. Traffic shaping works by buffering packets and releasing them at a controlled rate.

Traffic shaping emerged as a solution to several fundamental problems in computer networks. Understanding these problems is essential to appreciating the elegance and necessity of traffic shaping mechanisms.

The Bursty Traffic Problem:

Real network traffic is inherently bursty—it comes in irregular, unpredictable bursts rather than smooth, constant flows. Consider these examples:

• A web browser requests a page: nothing happens for seconds, then suddenly 50 HTTP requests fire simultaneously
• A video encoder completes a frame: large chunks of data burst out at irregular intervals
• A backup job starts: gigabytes of data suddenly flood the network
• A user clicks 'refresh': multiple API calls trigger simultaneously

This burstiness creates instantaneous overload even when average utilization is low. A 100 Mbps link might see bursts of 500 Mbps lasting milliseconds—far exceeding capacity.

The Network Economics Problem:

Networks are shared resources with finite capacity. Service providers must:

1. Guarantee capacity to customers who pay for it
2. Prevent abuse from customers who try to exceed their allocation
3. Enable tiered service where higher-paying customers get better performance
4. Ensure fairness so no single user degrades everyone's experience

Traffic shaping is the enforcement mechanism that makes these guarantees possible. Without it, the customer paying for 10 Mbps can burst to 100 Mbps, degrading service for everyone else.

Two closely related but fundamentally different mechanisms exist for enforcing traffic contracts: shaping and policing. Understanding the distinction is critical for network design and troubleshooting.

Traffic Shaping:

• Delays packets by buffering them
• Releases packets at a controlled rate
• Introduces latency but preserves packets
• Typically used at the sender/source
• 'Gentle' enforcement—cooperates with transport protocols

Traffic Policing:

• Drops or marks excess packets immediately
• No buffering or delay
• Preserves latency but causes packet loss
• Typically used at network boundaries (ingress)
• 'Strict' enforcement—can trigger TCP congestion response

When to Use Each:

Use Traffic Shaping when:

• You control the sender and want to smooth outgoing traffic
• Preserving packets is more important than minimizing latency
• You want to be 'friendly' to TCP and avoid triggering retransmissions
• You need to meter traffic before it enters a constrained link

Use Traffic Policing when:

• You're at a trust boundary (e.g., provider ingress)
• You need strict enforcement with no buffering resources
• Excess traffic must be stopped immediately
• You want to signal congestion back to the sender via packet loss

Traffic shaping operates according to a traffic contract—a set of parameters that define the allowable traffic profile. Understanding these parameters is essential for configuring and analyzing traffic shapers.

Core Traffic Parameters:

Every traffic contract specifies some combination of the following parameters:

Understanding CIR and Burst:

The relationship between rate and burst is subtle but critical. Consider a 10 Mbps CIR with a 100 KB burst:

• Over 1 second, you can send exactly 10 Mb (10 Mbps × 1s)
• But you don't have to send at a constant 10 Mbps
• You can burst: send 100 KB instantly, then wait while 'credits' accumulate
• The burst size defines how much you can send immediately without waiting

The Bucket Intuition:

Imagine a bucket that fills with 'tokens' at the CIR rate:

• Each token represents permission to send one bit (or byte)
• The bucket size equals the burst size (CBS)
• To send data, you consume tokens from the bucket
• If the bucket is empty, you must wait for tokens to accumulate
• If the bucket is full, excess tokens are lost (the bucket doesn't overflow)

Real-World Contract Example:

A typical enterprise WAN circuit might have:

CIR: 100 Mbps (guaranteed average rate)
PIR: 150 Mbps (peak allowed during bursts)
CBS: 1 MB (committed burst size)
EBS: 500 KB (excess burst, marked as lower priority)

This contract says:

1. You're guaranteed 100 Mbps average throughput
2. You can burst up to 150 Mbps if the network has capacity
3. You can send 1 MB immediately without delay
4. After exhausting CBS, you can send another 500 KB (marked for potential drop)
5. Traffic beyond this is shaped (delayed) or policed (dropped)

The shaping buffer is a critical component of any traffic shaper. It's where packets wait when they arrive faster than the shaper's configured output rate. Understanding buffer dynamics is essential for both configuration and troubleshooting.

Buffer Mechanics:

When traffic arrives faster than the configured rate:

1. Packets enter the shaping buffer (queue)
2. The shaper releases packets at the configured rate
3. Buffer fills during burst periods
4. Buffer drains during quiet periods

Buffer Sizing Considerations:

Buffer size involves critical tradeoffs:

The Bufferbloat Problem:

Excessively large buffers create bufferbloat—a pathological condition where packets experience enormous delays in overloaded buffers. This is particularly harmful because:

1. TCP doesn't receive loss signals — Packets are queued, not dropped, so TCP doesn't reduce its rate
2. Latency balloons — A 1 MB buffer at 10 Mbps introduces 800ms of latency
3. Interactive applications suffer — VoIP, video conferencing, and gaming become unusable
4. Retransmissions arrive too late — By the time a retransmission arrives, the original might have made it through

Buffer Sizing Rules of Thumb:

For traditional TCP traffic:

Buffer Size = Bandwidth × RTT

For a 100 Mbps link with 20ms RTT:

Buffer = 100 Mbps × 0.020s = 2 Mb = 250 KB

Modern recommendations (with many flows) suggest even smaller buffers:

Buffer Size = (Bandwidth × RTT) / √n

where n is the number of concurrent flows.

Traffic shaping can be implemented at various points in the network, each with different characteristics and use cases.

End-Host Shaping:

Traffic shaping at the source (end host) is the most cooperative form:

• Location: Application, OS network stack, or NIC
• Advantages: Controls traffic before it enters the network; no downstream impact
• Examples: Application-level rate limiting, tc (traffic control) on Linux, Windows QoS
• Use case: Cloud egress throttling, application bandwidth management

Edge Shaping:

Traffic shaping at the network edge (first-hop router/switch):

• Location: Access switches, home routers, enterprise WAN routers
• Advantages: Shapes traffic before bottleneck links; customer-controlled
• Examples: Router QoS policies, SD-WAN shapers
• Use case: WAN optimization, ISP access rate enforcement

Ingress vs Egress Shaping:

Egress (Outbound) Shaping:

• Most common form of traffic shaping
• Shapes traffic leaving an interface
• Full control over transmission timing
• Can implement sophisticated queuing disciplines

Ingress (Inbound) Shaping:

• Less common and more limited
• Can only delay/drop already-received packets
• Limited queuing options (packets already in memory)
• Often policing is preferred for inbound traffic

Traffic shaping rarely applies uniformly to all traffic. Instead, traffic is classified into different categories, each with its own shaping policy. This classification is fundamental to Quality of Service (QoS) implementations.

Classification Methods:

DSCP (Differentiated Services Code Point):

DSCP is the primary marking mechanism in modern IP networks. It uses 6 bits of the IP header's ToS (Type of Service) byte to indicate traffic class:

• EF (Expedited Forwarding, DSCP 46): Premium, low-latency traffic (VoIP)
• AF (Assured Forwarding, DSCP 10-38): Four classes with three drop precedences each
• CS (Class Selector, DSCP 0-56): Backward compatible with old IP precedence
• BE (Best Effort, DSCP 0): Default, no special treatment

Typical Class-Based Shaping Policy:

Class: Voice (EF, DSCP 46)
  - Priority: Strict priority queuing
  - Max Rate: 5 Mbps (prevents starvation of other classes)
  - Burst: Low (latency-sensitive)

Class: Video (AF41, DSCP 34)
  - Priority: Second priority
  - Min Rate: 20 Mbps (guaranteed)
  - Max Rate: 50 Mbps (ceiling)
  - Burst: Medium

Class: Business Data (AF21, DSCP 18)
  - Priority: Normal
  - Min Rate: 30 Mbps (guaranteed)
  - Burst: Large (tolerant of delay)

Class: Best Effort (DSCP 0)
  - Priority: Lowest
  - Rate: Whatever remains

Traffic shaping is ubiquitous in modern networking, appearing in contexts from home routers to global cloud infrastructure. Understanding these applications helps cement the conceptual understanding.

ISP Customer Rate Limiting:

Your home internet connection's speed is enforced by traffic shaping:

• ISP shapes your traffic to contracted rate (e.g., 100 Mbps)
• Prevents you from exceeding your plan's speed
• Ensures fair bandwidth allocation across customers
• Often implemented at the provider edge router

Case Study: Video Streaming Traffic Shaping

Netflix and similar services use sophisticated traffic shaping:

1. Server-side shaping: Servers shape egress to match client's measured bandwidth
2. Adaptive bitrate: Video quality adjusts based on available bandwidth
3. Buffer management: Pre-buffering during low-activity periods
4. Multi-CDN shaping: Distribution shaped across multiple CDN providers for cost and performance optimization

This shaping is why Netflix starts with lower quality and improves—it's probing available bandwidth and shaping delivery accordingly.

We've established the foundational understanding of traffic shaping—the critical network mechanism that transforms chaotic, bursty traffic into predictable, manageable flows.

What's Next:

Now that we understand the concept and purpose of traffic shaping, we'll dive into the specific algorithms that implement it. The next page explores the Leaky Bucket Algorithm—one of the two fundamental traffic shaping mechanisms that provides a beautifully simple model for enforcing constant output rates.