[nsp] Example code of how to "rate limit" a port on a 3550
Jon Lewis
jlewis at lewis.org
Thu Jul 1 15:57:01 EDT 2004
On Thu, 1 Jul 2004, Matthew Crocker wrote:
> This is what I use, works pretty well for me.
> !
> class-map match-all allip
> match access-group 100
> !
> policy-map 2mbps
> class allip
> police 2000000 32000 exceed-action drop
> !
> int f0/1
> service-policy input 1mbps
> !
> access-list 100 permit ip any any
>
> This only works to police packets as they enter the switch port. You
> can't use 'match access-group' in a output service-policy on the 3550.
If, in the class map, you match ip dscp 0, instead of an access-group, you
can police in both directions.
----------------------------------------------------------------------
Jon Lewis | I route
Senior Network Engineer | therefore you are
Atlantic Net |
_________ http://www.lewis.org/~jlewis/pgp for PGP public key_________
More information about the cisco-nsp
mailing list