RE: Ethernet subinterface

From: Scott Morris (swm@emanon.com)
Date: Wed Jun 28 2006 - 16:49:09 ART

• Next message: CCIEin2006: "Re: Link State Thought Process"
• Previous message: Church, Chuck: "RE: Ethernet subinterface"
• Maybe in reply to: Sami: "Ethernet subinterface"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Apparantly policing is not an IP service. :) But it IS an enterprise
service!
 
IPexpert-R8#sh ver
Cisco IOS Software, 2800 Software (C2800NM-ADVENTERPRISEK9-M), Version
12.4(3a), RELEASE SOFTWARE (fc2)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2005 by Cisco Systems, Inc.
Compiled Fri 30-Sep-05 13:24 by hqluong
 
ROM: System Bootstrap, Version 12.3(8r)T7, RELEASE SOFTWARE (fc1)
 
IPexpert-R8 uptime is 2 days, 15 hours, 56 minutes
System returned to ROM by power-on
System image file is "flash:c2800nm-adventerprisek9-mz.124-3a.bin"
 

This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.
 
A summary of U.S. laws governing Cisco cryptographic products may be found
at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html
 
If you require further assistance please contact us by sending email to
export@cisco.com.
 
Cisco 2811 (revision 53.51) with 223232K/38912K bytes of memory.
Processor board ID FHK0849F1CJ
2 FastEthernet interfaces
1 Serial(sync/async) interface
1 Virtual Private Network (VPN) Module
DRAM configuration is 64 bits wide with parity enabled.
239K bytes of non-volatile configuration memory.
62592K bytes of ATA CompactFlash (Read/Write)
 
Configuration register is 0x2142 (will be 0x2102 at next reload)
 
IPexpert-R8#

  _____

From: Sami [mailto:sy1977@gmail.com]
Sent: Wednesday, June 28, 2006 2:30 PM
To: Elias Chari
Cc: swm@emanon.com; Cisco certification
Subject: Re: Ethernet subinterface

Scott,
 
Police doesn't work on my router.
 

R5#show version
Cisco IOS Software, 2800 Software (C2800NM-ADVIPSERVICESK9-M), Version
12.4(5a), RELEASE SOFTWARE (fc3)
Technical Support: http://www.cisco.com/techsupport
<http://www.cisco.com/techsupport>
Copyright (c) 1986-2006 by Cisco Systems, Inc.
Compiled Sat 14-Jan-06 03:19 by alnguyen

ROM: System Bootstrap, Version 12.4(1r) [hqluong 1r], RELEASE SOFTWARE (fc1)

R5 uptime is 9 hours, 50 minutes
System returned to ROM by reload at 08:46:56 UTC Wed Jun 28 2006
System image file is "flash:c2800nm-advipservicesk9-mz.124-5a.bin"

Thanks
Sami

 
On 6/28/06, Elias Chari <elias.chari@gmail.com> wrote:

Is this what you are after?
 
Rgds
Elias
==================

class-map match-all icmp
 match protocol icmp
class-map match-all http
 match protocol http

!
!
policy-map CHILD
 class http
  bandwidth 5000
 class icmp
   police 128000
policy-map PARENT
 class class-default
  shape average 100000000
  service-policy CHILD

interface FastEthernet0/1.900
 encapsulation dot1Q 900
 ip address 204.12.1.3 <http://204.12.1.3/> 255.255.255.0
<http://255.255.255.0/>
 no snmp trap link-status
 service-policy output PARENT
end

Rack1R3#sh policy-map int f0/1.900
 FastEthernet0/1.900

  Service-policy output: PARENT

    Class-map: class-default (match-any)

      47 packets, 6841 bytes

      5 minute offered rate 0 bps, drop rate 0 bps
      Match: any
      Traffic Shaping
           Target/Average Byte Sustain Excess Interval Increment
             Rate Limit bits/int bits/int (ms) (bytes)

        100000000/100000000 625000 2500000 2500000 25 312500

        Adapt Queue Packets Bytes Packets Bytes Shaping
        Active Depth Delayed Delayed Active

        - 0 47 6841 0 0 no

      Service-policy : CHILD

        Class-map: http (match-all)

          0 packets, 0 bytes
          5 minute offered rate 0 bps, drop rate 0 bps

          Match: protocol http
          Queueing
            Output Queue: Conversation 265
            Bandwidth 5000 (kbps) Max Threshold 64 (packets)

            (pkts matched/bytes matched) 0/0

        (depth/total drops/no-buffer drops) 0/0/0

        Class-map: icmp (match-all)

          0 packets, 0 bytes
          5 minute offered rate 0 bps, drop rate 0 bps

          Match: protocol icmp
          police:
              cir 128000 bps, bc 4000 bytes

            conformed 0 packets, 0 bytes; actions:
              transmit
            exceeded 0 packets, 0 bytes; actions:
              drop
            conformed 0 bps, exceed 0 bps

        Class-map: class-default (match-any)

          47 packets, 6841 bytes

          5 minute offered rate 0 bps, drop rate 0 bps
          Match: any

Rack1R3#

 
On 6/28/06, Sami < sy1977@gmail.com <mailto:sy1977@gmail.com> > wrote:

Thanks Scott

Just noticed if shaping is enabled on default class but I want to police
another class in this case ICMP to 16K , it doesn't allow.

Can't we combine shaping and polcing ?

policy-map shape
class ICMP_TF
class class-default
shape average 3000000
service-policy 64KVOIP

R5(config-pmap)#class ICMP_TF
R5(config-pmap-c)#police cir 16000
*Output rate-limit already configured, police not allowed*

Thanks
Sami

On 6/28/06, Scott Morris <swm@emanon.com> wrote:
>
> Subinterfaces do not have queues associated with them. You'll need to do

> a
> nested policy to initiate shaping first (creating a queue), the initiate
> queuing.
>
> policy-map 64KVOIP
> class VOIP
> priority 64
>
> policy-map shape
> class class-default
> shape average 3000000
> service-policy 64KVOIP
>
> Int fa0/0.1
> service-policy output shape
>
> HTH,
>
>
> Scott Morris, CCIE4 (R&S/ISP-Dial/Security/Service Provider) #4713, JNCIE
> #153, CISSP, et al.
> CCSI/JNCI
> IPExpert CCIE Program Manager
> IPExpert Sr. Technical Instructor
> smorris@ipexpert.com
> http://www.ipexpert.com <http://www.ipexpert.com/>
>
>
>
> -----Original Message-----
> From: nobody@groupstudy.com [mailto: nobody@groupstudy.com
<mailto:nobody@groupstudy.com> ] On Behalf Of
> Sami
> Sent: Wednesday, June 28, 2006 12:48 PM
> To: Cisco certification
> Subject: Ethernet subinterface
>
> Group,
>
> While doing some QoS stuff , Router complains it can't apply service
> policy
> to subinterfaces.
>
> Is MQC not supported on subinterfaces ?
>
> policy-map 64KVOIP
> class VOIP
> priority 64
>
> policy-map shape
> class class-default
> shape average 3000000
>
> R5(config-subif)#service-policy output 64KVOIP CBWFQ : Not supported on
> subinterfaces
>
> Thanks
> Sami
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
<http://www.groupstudy.com/list/CCIELab.html>

• Next message: CCIEin2006: "Re: Link State Thought Process"
• Previous message: Church, Chuck: "RE: Ethernet subinterface"
• Maybe in reply to: Sami: "Ethernet subinterface"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Sat Jul 01 2006 - 07:57:33 ART