[c-nsp] Cisco 3750 traffic limits

Bulgaria Online - Assen Totin assen at online.bg
Sun Mar 13 07:08:02 EST 2005 

Hi all, 

I have a Cisco 3570 running a bunch of dot1q VLANs over a single gigabit 
Ethernet link. Each VLAN carries a BGP session and all sessions are set up 
against a Loopback0 interface of the Cisco 3750. 

It works fine, but I cannot manage to get some things work, in particular, 
traffic limiting. I don't need anything fancy, just limit the outgoing 
bandwidth of every VLAN (the traffic from Cisco 3750 to the customer) to 
some different value (1 Mbps, 5 Mbps, 10 Mbps...). 

The "rate-limit" comamnd applies both "input" and "output" to a VLAN 
interface, but it doesn't affect the traffic rate at all. (The same command 
works pretty fine on my Cisco 7200): 

rate-limit input 1000000 1500 2000 conform-action transmit exceed-action 
drop
rate-limit output 1000000 1500 2000 conform-action transmit exceed-action 
drop 

I tried to achive bandwidth limitation with a simple policy map like this: 

access-list 166 permit ip any any
!
class-map match-all test
 description Test class map
 match access-group 166
!
policy-map test
description Test policy map
 class test
   police 1000000 8000 exceed-action drop 

but when I try to apply it to the VLAN interface, I get strange errors: 

peers(config)#int vlan 1033
peers(config-if)#service-policy input test
%QoS: policy-map with police action at parent level not supported on 
Vlan1033 interface. 

peers(config-if)#service-policy output test
police command is not supported for this interface
Configuration failed!
Warning: Assigning a policy map to the output side of an interface not 
supported 

The latter error apperars also when I try to apply the poliy map OUT on the 
Gigabit (physical) interface. 

The system runs the latest available IOS - 12.2(25)-SEA. Below is a part of 
the configuration. Any comments and suggestions will be much appreciated. 

peers#sh ver
Cisco IOS Software, C3750 Software (C3750-I5-M), Version 12.2(25)SEA, 
RELEASE SOFTWARE (fc)
cisco WS-C3750G-24TS (PowerPC405) processor (revision H0) with 
118784K/12280K bytes of memory. 

peers#sh run
version 12.2
vtp mode transparent
!
interface Loopback0
ip address aaa.bbb.ccc.ddd 255.255.255.252
!
interface GigabitEthernet1/0/25
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 221,454,512,714,718,774,775,880,901,991
switchport trunk allowed vlan add 1026,1029-1037,1039-1043,1045-1047
switchport mode trunk
ip verify source
!
interface Vlan1
ip address aaa.bbb.ccc.ddd 255.255.255.0
ip flow ingress
!
interface Vlan221
ip address aaa.bbb.ccc.ddd 255.255.255.252
!
...
!
interface Vlan1047
ip address aaa.bbb.ccc.ddd 255.255.255.252
!
router bgp ABCDE
no synchronization
bgp router-id aaa.bbb.ccc.ddd
network aaa.bbb.ccc.0
...
network aaa.bbb.ccc.0
!
ip default-gateway aaa.bbb.ccc.ddd
ip classless
!
ip flow-export version 5
ip flow-export destination aaa.bbb.ccc.ddd xyz 

Assen Totin

More information about the cisco-nsp mailing list