[c-nsp] Rate-limiting by NBAR (1811)

Pete S. pshuleski at gmail.com
Tue Mar 20 20:15:52 EST 2007 

you can use the MQC
http://www.cisco.com/en/US/tech/tk543/tk545/technologies_white_paper09186a0080123415.shtml

Create a class-map
match some protocol

create a policy map
assign a class map policing, or marking etc
*dont forget a default class*  unset default is pretty low, i think 1000bits.

assign policy map to an interface.

Using 'matching protocol <bittorrent|edonkey>' in a class-map gets cpu
intensive.  I dont know how it handles on an 1800, but probably does
fairly well.  Just watch that you don't max the cpu out.
ACL marking/matching is done mostly in the CPU, so it is not as
costly, but does add up.  It's also a pain trying to get every
bittorrent port.



On 3/20/07, Skeeve Stevens <skeeve at skeeve.org> wrote:
>
> Hey guys,,,
>
> Considering this:
>
> 1811#show ip nbar protocol-discovery interface vlan 800
>
>  Vlan800
>                             Input                    Output
>
>                             -----                    ------
>
>    Protocol                 Packet Count             Packet Count
>
>                             Byte Count               Byte Count
>
>                             5min Bit Rate (bps)      5min Bit Rate (bps)
>
>                             5min Max Bit Rate (bps)  5min Max Bit Rate (bps)
>
>    ------------------------ ------------------------
> ------------------------
>    bittorrent               2528721                  3481391
>
>                             1829672512               1029759404
>
>                             0                        0
>
>                             0                        0
>
>    http                     1877697                  1373130
>
>                             2457900225               184192424
>
>                             0                        0
>
>                             0                        0
>
>    edonkey                  1096885                  1013896
>
>                             834428377                661298753
>
>                             0                        0
>
>                             0                        0
>
>    gnutella                 1090628                  796893
>
>                             1232652574               144516326
>
>                             0                        0
>
>                             0                        0
>
>
>
> How would I limit bit torrent, edonkey, gnutella and a couple of others, to
> a certain about of traffic in total.. Say. 1meg?
>
> It is only an 1811 and I don't want to stress it out CPU wise. but, is there
> an easy simple way to do this?
>
> .Skeeve
>
>
>
>
>
> _______________________________________________________
> Skeeve Stevens, RHCE     Email: skeeve at skeeve.org
> Website: www.skeeve.org  - Telephone: (0414) 753 383
> skype://skeeve
> Address: P.O Box 1035, Epping, NSW, 1710, Australia
>
> eIntellego - skeeve at eintellego.net - www.eintellego.net
> _______________________________________________________
> I'm a groove licked love child king of the verse
> Si vis pacem, para bellum
>
>
>
> _______________________________________________
> cisco-nsp mailing list  cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
>

More information about the cisco-nsp mailing list