Cisco switch speed limit Summary

 

Cisco switches enable port speed limiting

 

As shown in, Node switch 3550 is placed in an office room. The networks of all office companies are from this place. How does the operator configure network bandwidth settings for each company on this device? Let's take the IT Training Center of XX foreign companies as an example. The IT Training Center of XX foreign companies applied for a 2 m link.

Step-1

Rongxin # config t

Rongxin (config) # mls qos // enable qos service

Rongxin (config) # access-list 1 permit 218.247.142.192 0.0.0.63

// Define the IP address range allocated by the network connected to the port. Generally, the carrier will assign the corresponding address segment to the customer after the customer applies for the link. Generally, 2 M bandwidth has a 32-bit address segment, which mainly depends on the operator's attitude.

Rongxin (config) # access-list 101 permit ip any 218.247.142.192 0.0.0.63

// The preceding two commands define the uplink/downlink speed of the address range 218.247.142.192/27 using standard and extended ACL commands.

Step 2

After defining the address range, you need to define a class to bind with this address range

Rongxin (config) # class-map vfast-up

// Define a class named vfast, and up is a pointer to the uplink Rate

Rongxin (config-cmap) # match access-group 1

// Match the defined list 1

Rongxin (config) # class-map vfast-down

Rongxin (config-cmap) # match access-group 101

// Match the defined list 101

// Define a class named vfast, and down is a pointer to the downlink Rate

Step 3

After defining the class, we need to add the class to the specific policy.

Rongxin (config) # policy-map vfast-up

// Define the upstream traffic policy

Rongxin (config-pmap) # class vfast-up

// Bind the class we just used to define the uplink speed

Rongxin (config-pmap) # trust dscp

// Trusted differential service code points are used to implement various QOS policies for each type of traffic. The DSCP of incoming data packets is 0 by default.

Rongxin (config-pmap) # police 2048000 1024000 exceed-action drop

// Define the speed as 2 M

Rongxin (config) # policy-map vfast-down

// Define a downstream traffic policy

Rongxin (config-pmap) # class vfast-down

// Bind the class we just used to define the downlink Rate

Rongxin (config-pmap) # trust dscp

// Trusted differential service code points are used to implement various QOS policies for each type of traffic. The DSCP of incoming data packets is 0 by default.

Rongxin (config-pmap) # police 2048000 1024000 exceed-action drop

// Define the speed as 2 M

Step 4

Add the defined policy to the port linked to the corresponding network

Ronxin (config) # interface f 0/22.

Ronxin (config-if) # service-policy input vfast-up

// This port is bound to the Rongxin Network Interface

Rongxin (config) # interface f 0/1.

Rongxin (config-if) # service-policy input vfast-down

// This port is the egress interface of the entire network

I often say that in fact, the configuration of network devices is a big trap and a small circle. We should first establish a small circle like ACL and then join the circle of the Strategy Group to be associated, finally, you need to put the combined functional applications into the ports that require the application. In fact, most of the configuration rules are the same.

1. The bandwidth command is used to set the bandwidth of the interface. It is mainly used for the calculation of metric values using the routing protocols such as VPN and OSPF.

2 For the ratelimit command, the switch or vro must support the cef function.

1. Enable cef in global mode:

Router (config) # ip cef

2. Define the standard or extended access list:

Router (config) # access-list 2 permit 192.168.6.0 0.0.255

3. Perform rate-limit on the port to be restricted:

Rounter (config-if) # rate-limit output access-group 2 128000 16000 16000 conform-action transmit exceed-action drop

Rate-limit command format:

# Rate-limit {input | output} [access-group number] bps burst-normal burst-max conform-action exceed-action

Input | output: this is the direction of data traffic.

Access-group number: the number of the access list defined.

Bps: defines the maximum traffic rate. The unit is bps.

Burst-normal burst-max: the size of the defined data capacity, generally 32000, in bytes. When the data reaches exceeds this capacity, an action is triggered, discarded or forwarded to speed limit.

Conform-action and exceed-action are the processing policies for the traffic below the rate limit and the traffic exceeding the rate limit respectively.

Action: A processing policy, including drop and transmit.

Configure the specified access rate and distributed access rate policy. You can use the rate-limit port to configure the command.

Remove the rate limit configuration and add no to the original command.