[nsp] 6509 + MFSC2 + CAR ?
Rubens Kuhl Jr.
rubens at email.com
Wed Feb 4 16:16:49 EST 2004
Have your Sup1A survived after so many worms ? Flow-based forwarding is a
curse on your network, you may want to get rid of it.
Rubens
----- Original Message -----
From: "Richard J. Sears" <rsears at adnc.com>
To: "Ian Cox" <icox at cisco.com>
Cc: <cisco-nsp at puck.nether.net>
Sent: Wednesday, February 04, 2004 6:44 PM
Subject: Re[3]: [nsp] 6509 + MFSC2 + CAR ?
> We have Sup1As so there is nothing supported on these...?
>
>
> On Wed, 04 Feb 2004 11:36:40 -0800
> Ian Cox <icox at cisco.com> wrote:
>
> >
> > Definitive Answer:
> >
> > #1 Don't use "rate-limit" command it only effects traffic that is
switched
> > by the MSFC, and for Sup2 and Sup720 that should be
> > just about nothing. In latter release it has finally been removed to
stop
> > confusion. It works if you make your traffic get switched by the MSFC
and
> > that it not a something you want to do.
> >
> > #2 Sup2 only supports input policing. Configure this feature though the
> > modular qos cli (MQC) like this:
> >
> > class a1
> > match access-group 100
> > policy-map test
> > class a1
> > police 10000000 312500 312500 conform-action transmit
exceed-action drop
> >
> > int fast 3/1
> > service-poicy input test
> >
> >
> > #3 Sup720 supports input policing and output policing per vlan or per
> > logical / physical interface
> >
> > #4 Shaping is only supported upon the WAN modules. FlexWAN and Enhanced
> > FlexWAN supports shaping, OSM modules support Shaping on the interfaces
> > that are connected to the PXF processors. All QoS for the WAN interfaces
> > must be configured by the MQC (aka using class and policy maps).
> >
> >
> > Ian
> >
> >
> > At 11:11 AM 2/4/2004 -0800, Richard J. Sears wrote:
> > >Yes - I did read that - however there is a difference of opinion in
> > >relation to if any of it works at all.
> > >
> > >On one hand, I have people telling me that the 6509 does not support
any
> > >type of shaping/rate limiting/etc, and then I have people telling me
> > >that it does.
> > >
> > >What I am asking for is an example of a working config - thats all.
> > >
> > >I have yet to see one that actually works leading me to believe that
the
> > >folks who have told me it simply does not work are correct.
> > >
> > >Thanks
> > >
> > >On Wed, 4 Feb 2004 13:43:33 -0500
> > >Jason Lixfeld <jason at lixfeld.ca> wrote:
> > >
> > > > There was a thread about this yesterday. From that thread:
> > > >
> > > > 6500 does not do any *shaping*, it does policing/rate limiting. In
other
> > > > words, we won't "smooth out a bursty flow" by buffering traffic, we
> > > > basically put a hard cap on usage.
> > > >
> > > > Both sup1 & sup2 support *ingress* policing only, and you need to
make
> > > > sure you are using the right combination of CLI commands to
accomplish
> > > > this, otherwise it won't work or won't work as expected. There
should be
> > > > some example configs on cisco.com in the support area, or use the
config
> > > > guide (which admittedly can be a bit hard to follow).
> > > >
> > > > Sup720 supports ingress & egress policing, but do note on egress
that it
> > > > is aggregate policing only and only on a per-routed (L3) interface
or
> > > > per VLAN basis only, *not* on a per-Layer 2 switch port basis.
> > > >
> > > >
> > > > On Feb 4, 2004, at 1:28 PM, Richard J. Sears wrote:
> > > >
> > > > > Hello Everyone,
> > > > >
> > > > > I have spent a bunch of time reading all the entries I could find
> > > > > pertaining
> > > > > to 6509's and CAR. Several people have claimed to
> > > > > get it working:
> > > > >
> > > > > ***snip***
> > > > >
> > > > > ...but I know a number of people who use 6500s+MSFCs solely for
the
> > > > > purpose of utilizing CAR to traffic-shape their customers
> > > > > and they're all quite pleased.
> > > > >
> > > > > ***snip***
> > > > >
> > > > > and yet other claim Cisco told them it would not work at all due
to
> > > > > the PFC.
> > > > >
> > > > > I am looking for someone who can tell me if CAR will work on
6509's
> > > > > and if they have it working, exactly how they got it to work. I
see
> > > > > some references to policers on the PFC as a work around, and would
> > > > > like more information on that if someone has it.
> > > > >
> > > > > Here is my config that I am trying to make work:
> > > > >
> > > > > (CEF is enabled on the port and on the switch)
> > > > >
> > > > >
> > > > > interface FastEthernet3/5
> > > > > description Connection to Chris's Office Linux Box
> > > > > ip address 10.10.50.1 255.255.255.252
> > > > > rate-limit input 1000000 50000 50000 conform-action transmit
> > > > > exceed-action drop
> > > > > rate-limit output 1000000 50000 50000 conform-action transmit
> > > > > exceed-action drop
> > > > > load-interval 30
> > > > > no cdp enable
> > > > >
> > > > > Hence to say, that I can merrily download via ftp from that box at
10
> > > > > to 15mbps all day long and a sh int rate-limit does not show any
hits.
> > > > >
> > > > > My goal is to rate-limit colo customers attached to our 6509
switches,
> > > > > and any help would be greatly appreciated.
> > > > >
> > > > > Our 6509's are configured with Sup1A w/MFSC2s and 256MB RAM each.
We
> > > > > are
> > > > > running IOS only on the 6509's (no Cat Code).
> > > > >
> > > > > My goal is to rate limit my colo customers both inbound and
outbound so
> > > > > they cannot use more bandwidth then they want and hence not get a
huge
> > > > > bill.
> > > > >
> > > > >
> > > > >
> > > > > Any help would be greatly appreciated.
> > > > >
> > > > > Thanks
> > > > >
> > > > >
> > > > > ******************************************
> > > > > Richard J. Sears
> > > > > Vice President
> > > > > American Digital Network
> > > > > ----------------------------------------------------
> > > > > rsears at adnc.com
> > > > > http://www.adnc.com
> > > > > ----------------------------------------------------
> > > > > 858.576.4272 - Phone
> > > > > 858.427.2401 - Fax
> > > > > ----------------------------------------------------
> > > > >
> > > > > I fly because it releases my mind
> > > > > from the tyranny of petty things . .
> > > > >
> > > > >
> > > > > "Work like you don't need the money, love like you've
> > > > > never been hurt and dance like you do when nobody's
> > > > > watching."
> > > > >
> > > > >
> > > > > _______________________________________________
> > > > > cisco-nsp mailing list cisco-nsp at puck.nether.net
> > > > > https://puck.nether.net/mailman/listinfo/cisco-nsp
> > > > > archive at http://puck.nether.net/pipermail/cisco-nsp/
> > > >
> > > > _______________________________________________
> > > > cisco-nsp mailing list cisco-nsp at puck.nether.net
> > > > https://puck.nether.net/mailman/listinfo/cisco-nsp
> > > > archive at http://puck.nether.net/pipermail/cisco-nsp/
> > >
> > >
> > >******************************************
> > >Richard J. Sears
> > >Vice President
> > >American Digital Network
> > >----------------------------------------------------
> > >rsears at adnc.com
> > >http://www.adnc.com
> > >----------------------------------------------------
> > >858.576.4272 - Phone
> > >858.427.2401 - Fax
> > >----------------------------------------------------
> > >
> > >I fly because it releases my mind
> > >from the tyranny of petty things . .
> > >
> > >
> > >"Work like you don't need the money, love like you've
> > >never been hurt and dance like you do when nobody's
> > >watching."
> > >
> > >_______________________________________________
> > >cisco-nsp mailing list cisco-nsp at puck.nether.net
> > >https://puck.nether.net/mailman/listinfo/cisco-nsp
> > >archive at http://puck.nether.net/pipermail/cisco-nsp/
>
>
> ******************************************
> Richard J. Sears
> Vice President
> American Digital Network
> ----------------------------------------------------
> rsears at adnc.com
> http://www.adnc.com
> ----------------------------------------------------
> 858.576.4272 - Phone
> 858.427.2401 - Fax
> ----------------------------------------------------
>
> I fly because it releases my mind
> from the tyranny of petty things . .
>
>
> "Work like you don't need the money, love like you've
> never been hurt and dance like you do when nobody's
> watching."
>
> _______________________________________________
> cisco-nsp mailing list cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
>
More information about the cisco-nsp
mailing list