[c-nsp] Assigning VLANs on a per-subnet basis

[Frank Bulk]

I searched the archives several months back, but I couldn't find any similar
situations, so here goes:

I'm looking to share an internet pipe with several other regional ISPs.  We
will be receiving our internet pipe via a Cisco 2950 into our Fujitsu 4500
shelf to transport it around our regional ring.  But the way the Fuji
equipment drops off each ISP's traffic on this RPR-Ethernet pipe has to be
on a per-VLAN basis.  So all the traffic *has* to be tagged.

We can have our upstream provider tag each ISP's traffic with it's own VLAN,
but they rate-limit on a per-VLAN basis so we won't be able to individually
burst to the whole pipe.  For example, if we get a 100 Mbps contract each
ISP would be assigned a fixed 25 Mbps each and no one could burst above 25
Mbps.   I would rather have our upstream provider rate limit on the
aggregate as opposed to the individual, but apparently that's not possible.

One solution is VLAN stacking and having our upstream provider rate-limit on
the outer VLAN 'tunnel', not the inner.  We're finding out of they can do
this.

Another option is for us to use a layer-3 switch between the provider's 2950
and our Fujitsu and create another hop.  So each provider's respective next
hop would not be our upstream provider's core router, but this layer-3
switch.  We would basically be pulling the routing out to the edge.  I don't
really want to add another routing point.

The idea I do like is to get the whole 100 Mbps from the provider, and then
using a layer-3 switch tag the traffic based on the network it's in using
access lists. So if it's 192.168.1.0/24 and in access-list 100 it might be
VLAN A, 192.168.2.0/24 in access-list 101 it would be VLAN B, etc.  But our
regional Cisco SE hasn't come up with a box/configuration that can do this.
Is this possible?

Regards,

Frank