Port speed limit must start QoS on the switch
Switch (config) #mls QoS//Start QoS on the switch
Here are the implementation steps.
First, create an ACL
Since this is a three-layer switch, although the port speed limit, but also to consider the network address through the port, in this case, we choose to the CISCO3550 switch 22nd port speed limit, the port belongs to Vlan66,ip address segment 10.66/ 16, so first create an ACL, as follows:
3550#conf T
Enter configuration commands, one per line. End with cntl/z.
3550 (config) #access-list permit 10.66.0.0 0.0.255.255
Ii. creation of Class-map
3550#conf T
Enter configuration commands, one per line. End with cntl/z.
3550 (config) #class-map dkxs
3550 (config-cmap) #match Access-group 15
The main purpose of this step is to create a class-map, which refers to our pre-created ACL 15, which allows us to operate on Port 22 later.
Iii. creation of Policy-map
For testing purposes, we have created multiple policy-map to set different throttling bandwidth, such as 80k,1m,5m,10m, as follows:
3550#conf T
Enter configuration commands, one per line. End with cntl/z.
3550 (config) #policy-map 80k
3550 (config-pmap) #class Dkxs
3550 (CONFIG-PMAP-C) # Police 80000 8000 exceed-action drop
3550#conf T
Enter configuration commands, one per line. End with cntl/z.
3550 (config) #policy-map 1m
3550 (config-pmap) #class Dkxs
3550 (config-pmap-c) # police 1000000 100000 exceed-action drop
3550#conf T
Enter configuration commands, one per line. End with cntl/z.
3550 (config) #policy-map 5m
3550 (config-pmap) #class Dkxs
3550 (config-pmap-c) # Police 5000000 500000 exceed-action drop
3550#conf T
Enter configuration commands, one per line. End with cntl/z.
3550 (config) #policy-map 10m
3550 (config-pmap) #class Dkxs
3550 (config-pmap-c) # police 10000000 1000000 exceed-action drop
Iv. Viewing configuration information
3550#show Run
Policy-map 5m
Class Dkxs
Police 5000000 500000 exceed-action drop
Policy-map 1m
Class Dkxs
Police 1000000 100000 exceed-action drop
Policy-map 80k
Class Dkxs
Police 80000 8000 exceed-action drop
Policy-map 10m
Class Dkxs
Police 10000000 1000000 exceed-action drop
V. Verification through Iperf Software
That is, run the server side of Iperf on a single server, with the following command:
F:\tools>iperf-s
------------------------------------------------------------
Server listening on TCP Port 5001
TCP window size:8.00 KByte (default)
------------------------------------------------------------
Then on the 22 port of the switch to apply a different rate of policy-map, each application, through a laptop connected to 22 port running Iperf Client, the port rate test, the results are as follows:
(Switch settings)
3550 (config-if) #service-policy input 80k
(Iperf Client test results)
F:\tools>iperf-c 10.66.66.8
------------------------------------------------------------
Client connecting to 10.66.66.8, TCP Port 5001
TCP window size:8.00 KByte (default)
------------------------------------------------------------
[1912] Local 10.66.123.66 port 1147 connected with 10.66.66.8 Port 5001
[ID] Interval Transfer Bandwidth
[1912] 0.0-12.5 sec 104 Kbytes 68.3 kbits/sec
F:\tools>iperf-c 10.66.66.8
------------------------------------------------------------
Client connecting to 10.66.66.8, TCP Port 5001
TCP window size:8.00 KByte (default)
------------------------------------------------------------
[1912] Local 10.66.123.66 port 1151 connected with 10.66.66.8 Port 5001
[ID] Interval Transfer Bandwidth
[1912] 0.0-12.0 sec 104 Kbytes 70.8 kbits/sec
(Switch settings)
3550 (config-if) #service-policy input 1m
(Iperf Client test results)
F:\tools>iperf-c 10.66.66.8
------------------------------------------------------------
Client connecting to 10.66.66.8, TCP Port 5001
TCP window size:8.00 KByte (default)
------------------------------------------------------------
[1912] Local 10.66.123.66 port 1155 connected with 10.66.66.8 Port 5001
[ID] Interval Transfer Bandwidth
[1912] 0.0-10.5 sec 1.08 MBytes 860 kbits/sec
F:\tools>iperf-c 10.66.66.8
------------------------------------------------------------
Client connecting to 10.66.66.8, TCP Port 5001
TCP window size:8.00 KByte (default)
[1912] Local 10.66.123.66 port 1159 connected with 10.66.66.8 Port 5001
[ID] Interval Transfer Bandwidth
[1912] 0.0-10.0 sec 1.09 MBytes 910 kbits/sec
(Switch settings)
3550 (config-if) #service-policy input 5m
(Iperf Client test results)
F:\tools>iperf-c 10.66.66.8
------------------------------------------------------------
Client connecting to 10.66.66.8, TCP Port 5001
TCP window size:8.00 KByte (default)
------------------------------------------------------------
[1912] Local 10.66.123.66 port 1163 connected with 10.66.66.8 Port 5001
[ID] Interval Transfer Bandwidth
[1912] 0.0-10.5 sec 5.84 MBytes 4.67 mbits/sec
F:\tools>iperf-c 10.66.66.8
------------------------------------------------------------
Client connecting to 10.66.66.8, TCP Port 5001
TCP window size:8.00 KByte (default)
------------------------------------------------------------
[1912] Local 10.66.123.66 port 1167 connected with 10.66.66.8 Port 5001
[ID] Interval Transfer Bandwidth
[1912] 0.0-10.7 sec 5.98 MBytes 4.68 mbits/sec
(Switch settings)
3550 (config-if) #service-policy input 10m
(Iperf Client test results)
F:\tools>iperf-c 10.66.66.8
------------------------------------------------------------
Client connecting to 10.66.66.8, TCP Port 5001
TCP window size:8.00 KByte (default)
------------------------------------------------------------
[1912] Local 10.66.123.66 port 1171 connected with 10.66.66.8 Port 5001
[ID] Interval Transfer Bandwidth
[1912] 0.0-10.1 sec 11.8 MBytes 9.83 mbits/sec
F:\tools>iperf-c 10.66.66.8
------------------------------------------------------------
Client connecting to 10.66.66.8, TCP Port 5001
TCP window size:8.00 KByte (default)
------------------------------------------------------------
[1912] Local 10.66.123.66 port 1175 connected with 10.66.66.8 Port 5001
[ID] Interval Transfer Bandwidth
[1912] 0.0-10.2 sec 12.0 MBytes 9.87 mbits/sec
To make the results of the test more accurate, two tests are performed at each rate, and the port speed limit does take effect from the test results.