Super-Networking

18 Jun

Rate Limiting Traffic

Recently I had to put some rate limiting in place on our 7609 router. There are a couple of devices that have a tendency to hog our Internet bandwidth but have multiple IPs that live on many different VLANs. Since our Internet bandwidth is limited and is need for many different devices I couldn’t let the few steal all of the bandwidth. What I did was make an access-list for the IPs that I wanted to limit and made a policy-map to do bandwidth policing. I then applied this policy to the Internet interface in the out direction. I could have applied this policy on the in direction of the VLANs that these devices are on but then it would restrict the internal traffic as well. I will put the general commands in the blog entry. Class Map Setup

class-map match-all LIMIT match access-group 102 (Determines what Access-list to use) Policy Map Setup

policy-map LIMIT

class LIMIT

police 20000000 937500 937500 conform-action transmit exceed-action drop (This limits the bandwidth to 20Mbp) Access-List Setup

access-list 102 permit ip X.X.X.0 0.0.0.255 any (Determines what IPs to apply the policy to) Interface Config

Interface [Interface Name] service-policy output LIMIT

Related links

adelaide web design



WordpressTags: , , , , ,

This entry was posted on Sunday, June 18th, 2006 at 3:26 pm and is filed under Cisco, Networking, Routers. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

« Cisco Show Ip Traffic
96 Port Switch Blades »

One Response to “Rate Limiting Traffic”

  1. 1
    Super-Networking Blog » Blog Archive » Another stab at Bandwidth shaping Says:

    […] I retook a look at the settings that I in place before for shaping traffic going out a particular interface on our Cisco 7609. I wrote about is in a past post which can be viewed here. This policy was a hard policing of traffic from certain subnets going out on interface that was limited to 20Mbps. The policy worked great and helped out the bandwidth problem we were having when those networks took over all the bandwidth. The problem we ran into with this one is there are periods of time where our overall traffic is low and these rate limited subnets could/need more this policy didn’t allow for it. So I went back to the drawing board and came up with a plan to set up a queuing policy that reserved a certain amount of bandwidth for the critical traffic and allowed all other traffic to have what is left. This allowed our critical traffic to have the breathing room it needs while allowing the other traffic to grow with the availablity of bandwidth. This policy has been working great so far but I have only had in place for a few hours so I still need to monitor for a while. I am putting the generic version of these policies below. Any questions leave a comment. […]

    June 28th, 2006 at 3:49 pm

Leave a Reply

Your Ad Here

© 2008 Super-Networking | Entries (RSS) and Comments (RSS)

Global Positioning System Gazettewordpress logo