RE: Rate limit per VLAN

From: Chris Lewis \(chrlewis\) (chrlewis@cisco.com)
Date: Tue Sep 06 2005 - 19:10:59 GMT-3

• Next message: Chris: "Boot rom"
• Previous message: BIGB97750@aol.com: "OT: Lab equipment for sale"
• Next in thread: Sophie Kolebos: "RE: Rate limit per VLAN"
• Maybe reply: Sophie Kolebos: "RE: Rate limit per VLAN"
• Maybe reply: Chris Lewis \(chrlewis\): "RE: Rate limit per VLAN"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

The Cat 3550 does not support applying policers to VLAN interfaces .
Other switches like the 4000 or 6000 family I believe can use aggregate
policers to rate limit among multiple ports or VLANs. Is your question
restricted to the R&S exam?

Depending on the topology, there is an option for per port per vlan
policing on the 3550.

Let's say you want to police traffic from vlan 2 coming in to a switch
on a trunk port, the config below will achieve this, it is a bit unusual
as it requires a sort of hierarchy in the class maps. For class-map C1
you need to match a class map as well as the vlan for the parser to
accept it.

!
class-map match-all C2
  match access-group 100
class-map match-all C1
  match vlan 2
  match class-map C2
!
!
policy-map PM1
  class C1
    police 16000 8000 exceed-action drop
!
interface FastEthernet0/1
 switchport trunk encapsulation dot1q
 switchport mode trunk
!
interface FastEthernet0/2
 switchport mode dynamic desirable
!
interface FastEthernet0/3
 switchport mode dynamic desirable
!
          
Switch(config-cmap)#int f0/1
Switch(config-if)#service-pol in PM1
Switch(config-if)#do sho policy-map int

 FastEthernet0/1

  service-policy input: PM1

    class-map: C1 (match-all)
      0 packets, 0 bytes
      5 minute offered rate 0 bps, drop rate 0 bps
      match: vlan 2
      match: class-map match-all C2
        match: access-group 100qm_police_inform_feature: CLASS_SHOW

    class-map: class-default (match-any)
      0 packets, 0 bytes
      5 minute offered rate 0 bps, drop rate 0 bps
      match: any
        0 packets, 0 bytes
        5 minute rate 0 bps

Not sure this does what you are looking for, but it is the closest I
know of. I'd be interested to know if others have better ideas.

Chris

-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
sophiek1973@hotmail.com
Sent: Thursday, September 01, 2005 4:53 AM
To: ccielab@groupstudy.com
Subject: Rate limit per VLAN

How can I set a policy to rate-limit traffic on a per-VLAN basis?
Is there a way or apply rate-limit to all ports in the same VLAN????
Thank you very much

• Next message: Chris: "Boot rom"
• Previous message: BIGB97750@aol.com: "OT: Lab equipment for sale"
• Next in thread: Sophie Kolebos: "RE: Rate limit per VLAN"
• Maybe reply: Sophie Kolebos: "RE: Rate limit per VLAN"
• Maybe reply: Chris Lewis \(chrlewis\): "RE: Rate limit per VLAN"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Sun Oct 02 2005 - 14:40:14 GMT-3