How to share the speed limit of Cisco routers

I believe you should all know that the different speed limits of the router are not the same, I will mainly for Cisco router settings, the details of Cisco router speed limit and its methods.

Nvar speed limit of Cisco router

BT software now blocked will automatically change the port, some software or use 8000, 8080, 2070 and other ports, restricting these ports so that the network is not normal, so to use NVAR (network-based application recognition, network application recognition) , Nbar (network-based application recognition) means network application recognition.

Nbar is a technology that dynamically finds protocols at four to seven levels, and not only does ordinary ACLs control static, Simple Network application protocol TCP/UDP port numbers. For example, we are familiar with the use of the Web application of TCP 80, but also to control the general ACLs can not be dynamic port of those protocols, such as the use of VoIP H.323,sip.

to achieve control of BT traffic, support for PDLM is achieved on Cisco routers. PDLM is written by packet Description Language module, meaning the packet Description Language module. It is a description of the protocol layer for high-level applications of the network, such as protocol type, service port number, etc. Its advantage is to allow Nbar to adapt to many existing network applications, such as HTTP Url,dns,ftp,voip, and it can also be defined to enable Nbar to support many emerging network applications. such as the Peer2peer tool. PDLM can be downloaded on Cisco's Web site and use PDLM to limit malicious traffic on some networks.

Cisco provides three PDLM modules on its official website, KAZAA2.PDLM,BITTORRENT.PDLM.EMONKEY.PDLM can be used to block KAZAA,BT, an electric donkey gets pdlm and then passes a TFTP suit The BITTORRENT.PDLM copies the device to the route. Use the IP nbar pdlm bittorrent.pdlm command to start the BT function in Nbar. Create a CLASS-MAP and policy map and apply it to the corresponding Cisco router interface. An interface that is typically connected to the Internet (Chinanet) is an fastethernet or 10M Ethernet interface. On the Cisco router you can see the following configuration:

Class-map match-all BitTorrent

Match protocol BitTorrent

!

!

Policy-map bittorrent-policy

class BitTorrent

Drop

!

Interface fastethernet0/

DescriptionNeibujiekou

IP address 192.168.0.1 255.255.255.0

IP nat inside

Service-policy input Bi Ttorrent-policy

Service-policy output bittorrent-policy

!

Nbar and PDLM can also be applied to your company's and your organization's inline WAN to ensure the proper use of WAN bandwidth.

　　Second, Cisco router port speed limit

To restrict a service, you must set the ACL (Access control list) on the router to block the port that the service is using, thereby preventing the service from running properly. For BT Software, we can try to seal it on the port. Typically, BT software uses 6880-6890 ports, and the following command is used on the core Cisco router to block all 6880-6890 ports.

(1) Prohibit downloading CEB China route network

Access-list 130 deny TCP any any of range 6881 6890

Access-list 130 deny TCP any range 6881 6890 any

IP access-group 130 In/out

(2) Speed limit

Access-list 130 Remark BT

Access-list 130 Permit TCP any any range 6881 6890

Access-list 130 Permit TCP any range 6881 6890 any

Rate-limit Input Access-group 130 712000 8000 8000 conform-action transmit exceed-action drop

Rate-limit Output access-group 130 712000 8000 8000 conform-action transmit exceed-action drop

PS: Through the above settings, you can in your company or organization of the Internet access to the Cisco router to implement some traffic control, so that the speed limit to solve the problem.