RE: Rate limit per VLAN

From: Sophie Kolebos (sophiek1973@hotmail.com)
Date: Wed Sep 07 2005 - 03:29:48 GMT-3

• Next message: Mike Flanagan: "Configuring Switchport Port security"
• Previous message: atolstykh@atfam.com: "RE: Compare Configs Tool"
• Maybe in reply to: Chris Lewis \(chrlewis\): "RE: Rate limit per VLAN"
• Next in thread: Chris Lewis \(chrlewis\): "RE: Rate limit per VLAN"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Thanks Chris,

As you guessed, this is restricted to my R&S preparation.
That was a good idea to match the vlan on the trunk. But what about matching
other access ports that belong to the same vlan? In this case, i beleive the
only way is to apply the policy to each individual port in this vlan.
Cheers

>From: "Chris Lewis (chrlewis)" <chrlewis@cisco.com>
>To: <sophiek1973@hotmail.com>, <ccielab@groupstudy.com>
>Subject: RE: Rate limit per VLAN
>Date: Tue, 6 Sep 2005 18:10:59 -0400
>
>The Cat 3550 does not support applying policers to VLAN interfaces .
>Other switches like the 4000 or 6000 family I believe can use aggregate
>policers to rate limit among multiple ports or VLANs. Is your question
>restricted to the R&S exam?
>
>Depending on the topology, there is an option for per port per vlan
>policing on the 3550.
>
>Let's say you want to police traffic from vlan 2 coming in to a switch
>on a trunk port, the config below will achieve this, it is a bit unusual
>as it requires a sort of hierarchy in the class maps. For class-map C1
>you need to match a class map as well as the vlan for the parser to
>accept it.
>
>
>!
>class-map match-all C2
> match access-group 100
>class-map match-all C1
> match vlan 2
> match class-map C2
>!
>!
>policy-map PM1
> class C1
> police 16000 8000 exceed-action drop
>!
>interface FastEthernet0/1
> switchport trunk encapsulation dot1q
> switchport mode trunk
>!
>interface FastEthernet0/2
> switchport mode dynamic desirable
>!
>interface FastEthernet0/3
> switchport mode dynamic desirable
>!
>
>Switch(config-cmap)#int f0/1
>Switch(config-if)#service-pol in PM1
>Switch(config-if)#do sho policy-map int
>
> FastEthernet0/1
>
> service-policy input: PM1
>
> class-map: C1 (match-all)
> 0 packets, 0 bytes
> 5 minute offered rate 0 bps, drop rate 0 bps
> match: vlan 2
> match: class-map match-all C2
> match: access-group 100qm_police_inform_feature: CLASS_SHOW
>
>
> class-map: class-default (match-any)
> 0 packets, 0 bytes
> 5 minute offered rate 0 bps, drop rate 0 bps
> match: any
> 0 packets, 0 bytes
> 5 minute rate 0 bps
>
>Not sure this does what you are looking for, but it is the closest I
>know of. I'd be interested to know if others have better ideas.
>
>Chris
>
>-----Original Message-----
>From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
>sophiek1973@hotmail.com
>Sent: Thursday, September 01, 2005 4:53 AM
>To: ccielab@groupstudy.com
>Subject: Rate limit per VLAN
>
>How can I set a policy to rate-limit traffic on a per-VLAN basis?
>Is there a way or apply rate-limit to all ports in the same VLAN????
>Thank you very much
>
>_______________________________________________________________________
>Subscription information may be found at:
>http://www.groupstudy.com/list/CCIELab.html

• Next message: Mike Flanagan: "Configuring Switchport Port security"
• Previous message: atolstykh@atfam.com: "RE: Compare Configs Tool"
• Maybe in reply to: Chris Lewis \(chrlewis\): "RE: Rate limit per VLAN"
• Next in thread: Chris Lewis \(chrlewis\): "RE: Rate limit per VLAN"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Sun Oct 02 2005 - 14:40:14 GMT-3