You can police inbound as you said but there is no way to keep the
traffic from hitting your external interfaces. You could see if your ISP
fill filter some routes or allow you to do triggered black hole routing.
You could also get a lower bandwidth link, but I suppose that would rate
limit everything so YMMV :)
From:
Amr Masoud <amr.eng_at_gmail.com>
To:
ccielab_at_groupstudy.com
Date:
12/08/2009 07:12 AM
Subject:
Control Inbound Internet Traffic.
Sent by:
<nobody_at_groupstudy.com>
Dears,
How we can control (Police or shape or reserve BW ) traffic coming from
Internet to my network (download traffic). Lets say I need to shape
CLASS-A
to 1 Mbps and reserve BW for CLASS-B with 2 Mbps.
First: For Policing if we policed the incoming traffic at external
interface, then fine, traffic that is coming to internal side will be
policed when it comes to internal side . But the whole traffc already came
to the external interface and already consumed the download BW of the
external interface !!
Second: For BW reservation, it is a queuing mechanism. so it has to be
applied outbound, so it will be applied to internal interface as outbound.
So again the same problem, this traffic still not guaranteed at external
interface :(
I hope you got what I am trying to explain, and hope to hear from people
who
already faced this issue in life networks.
Regards.
Amr Mahmoud
Blogs and organic groups at http://www.ccie.net
Received on Tue Dec 08 2009 - 22:00:43 ART
This archive was generated by hypermail 2.2.0 : Sat Jan 02 2010 - 11:11:08 ART