[c-nsp] Rate-limiting VLAN passing through a switch

Daniel Hooper dhooper at emerge.net.au
Sun Jul 27 23:25:24 EDT 2008 

Hi Skeeve,

mthunt.kal#conf t
Enter configuration commands, one per line.  End with CNTL/Z.
mthunt.kal(config)#policy-map VLAN_POLICER
mthunt.kal(config-pmap)#class VLAN2_POLICER
mthunt.kal(config-pmap-c)#police ?
  <8000-1000000000>  Bits per second
  aggregate          Choose aggregate policer for current class


The example I used is only 10 kilobits a second.

For a 3mbit pipe you'd configure the policer to 3000000.

Best of luck, I tore my hair out for a while with the policers on the
3550, I haven't even looked on the 3560's how to go about this,
something about srr-queue springs to mind for that platform.

VLAN Policers are very quirky with the 3550, as you can see I have 2
class-map's configured per VLAN, this is required and it won't let you
apply the service-policy to the interface until you get it right.

-Dan

-----Original Message-----
From: Skeeve Stevens [mailto:skeeve at skeeve.org] 
Sent: Sunday, 27 July 2008 7:22 PM
To: Daniel Hooper; cisco-nsp at puck.nether.net
Subject: RE: [c-nsp] Rate-limiting VLAN passing through a switch

Hey Daniel,

Is that rate-limiting them to 100k?

...Skeeve

-----Original Message-----
From: Daniel Hooper [mailto:dhooper at emerge.net.au] 
Sent: Sunday, 27 July 2008 6:33 PM
To: skeeve at skeeve.org; cisco-nsp at puck.nether.net
Subject: RE: [c-nsp] Rate-limiting VLAN passing through a switch

This is for a 3550


!
class-map match-all PORT_POLICER
  match ip dscp default
class-map match-all VLAN10_POLICER
  match vlan  10
  match class-map PORT_POLICER
class-map match-all VLAN20_POLICER
  match vlan  20
  match class-map PORT_POLICER
!
!
policy-map TRUNK_POLICER
  class VLAN10_POLICER
    police 10000 64000 exceed-action drop
  class VLAN20_POLICER
    police 10000 64000 exceed-action drop
!

-Dan

-----Original Message-----
From: cisco-nsp-bounces at puck.nether.net
[mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of Skeeve Stevens
Sent: Saturday, 26 July 2008 2:02 PM
To: cisco-nsp at puck.nether.net
Subject: [c-nsp] Rate-limiting VLAN passing through a switch


Ok guys,

I am been trying to rate-limit a layer 2 vlan which passes through a
switch.

I understand that it is done differently on a 3550 and a 3560, but I
need
some examples as I am stumped in trying to make it happen, and all
efforts
have seemed to have failed so far.

Thoughts?  Any example of rate-limiting a vlan to like 3MB or something
as
an example would be good.

--
Skeeve Stevens, RHCE
skeeve at skeeve.org / www.skeeve.org
Cell +61 (0)414 753 383 / skype://skeeve

eintellego - skeeve at eintellego.net - www.eintellego.net 
--
I'm a groove licked love child king of the verse 
Si vis pacem, para bellum


_______________________________________________
cisco-nsp mailing list  cisco-nsp at puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/

More information about the cisco-nsp mailing list