[c-nsp] Rate-limit on 3550 port with routing mode

Marco Matarazzo marmata at libero.it
Mon Jul 4 09:21:49 EDT 2005


Hi Saku,

I'm replying onlist as this can be interesting.

> > > Is there anyway to control ingresss/outgress xfic on 3550 port
> > > configured in routing mode.
> >
> > This is what I use, it works!
> >
> > class-map match-any all-out
> >   match ip dscp 0
>
> All traffic containing non 0 value of DSCP will not be ratelimited.

This is true, but, well, this is the only thing you can do. As stated in
http://www.cisco.com/en/US/products/hw/switches/ps646/products_command_reference_chapter09186a00801cdf39.html:
"The only match criterion in a policy map that can be attached to an egress
interface is the match ip dscp dscp-list class-map configuration command ".
And also, any packet that arrives at an interface has dscp resetted to 0,
unless you're doing "mls qos trust dscp" at the port level. And that command
is not present in my example config... ;)

Another option would be to limit the ingress of the trunk port, instead of
the egress of the source port. But this quickly becomes impratical to manage
when you have 40 routed ports to limit... :D

Cheers,
]\/[arco



More information about the cisco-nsp mailing list