[nsp] Dynamic Per-MAC rate-limiting or QoS

Haesu haesu at towardex.com
Thu Oct 30 18:41:28 EST 2003


Hi Robert,

What about hard-setting the port(s) on the edge switches to 100meg instead of
gig? Would that work for you?

-hc

-- 
Haesu C.
TowardEX Technologies, Inc.
Consulting, colocation, web hosting, network design and implementation
http://www.towardex.com | haesu at towardex.com
Cell: (978)394-2867     | Office: (978)263-3399 Ext. 170
Fax: (978)263-0033      | POC: HAESU-ARIN

On Thu, Oct 30, 2003 at 03:16:31PM -0600, Robert A. Hayden wrote:
> Hey all, 
> 
> I have an interesting one an could use some thoughts on good approaches 
> here.  
> 
> I have a large ethernet-based network and I would like to be able to put 
> some kind of a policy on to an edge switch (generally 3550s or 3750s) to 
> state that no single MAC address can exceed "x" bits/second unless an 
> exception is put into place.  
> 
> Failing that, a layer-2 MAC-based QoS implementation that will mark all 
> traffic in excess of 'x' as low priority.
> 
> What I'm seeing is a growing proliferation of gigabit-ethernet connected 
> workstations on the backbone.  Invariably, one of those boxes is 
> compromised with Blaster or nachia or whatever the word-du-jour is and 
> starts barfing out 700mb/s of crap, quickly saturating a gigabit backbone 
> link.  Even worse, often times it's an academic computer lab with a 
> ghosted image, so you end up with 20 or 40 gig-connected machines making 
> things difficult.
> 
> Oftentimes, these machines actually don't need to talk gigabit, but all of 
> Dell's workstations come with those NICs so people feel they just HAVE to 
> support it and I'm stuck with the headaches when their viruses get 
> cranking.
> 
> Has anybody worked with edge-based policies to address these situations on 
> these product lines?  Any configuation examples?
> 
> - Robert
> 
> _______________________________________________
> cisco-nsp mailing list  cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/



More information about the cisco-nsp mailing list