[c-nsp] cisco maximum rate-limit interfaces

Brian Turnbow b.turnbow at twt.it
Tue Sep 11 12:25:14 EDT 2012 

Hi,

> -----Original Message-----
> From: cisco-nsp-bounces at puck.nether.net [mailto:cisco-nsp-
> bounces at puck.nether.net] On Behalf Of Mike
> Sent: martedì 11 settembre 2012 06:06
> To: 'Cisco-nsp'
> Subject: [c-nsp] cisco maximum rate-limit interfaces
> 
> Hi,
> 
> I have a 7201 running c7200p-advipservicesk9-mz.122-33.SRD8.bin,
> configured as a bras (pppoe). I have about 1000 simultaneous pppoe
> sessions at the moment, and most subscribers are rate-limited by their cpe
> devices (under our administrative control). There are some subscribers,
> however, which we instead use a radius profile and cisco avpairs to apply
> rate limits (ala "Cisco-AVPair += lcp:interface-config=rate-limit input
> 1000000 1100000 1300000 conform-action transmit exceed-action drop"

Instead of lcp:interface 

You should try using a policy for example sending av pair
ip:sub-qos-policy-in=700k-in

while you have configured on the router the policy

policy-map 700k-in
 class class-default
  police cir 700000 bc 32000 be 32000
   conform-action transmit
   exceed-action drop
   violate-action drop

LCP interface  creates full virtual access interfaces, be aware if you have others configured.
This is definitely a killer on the asr and 10k, but should also apply to the 7201.



Brian


> example) to their interface when it comes up. This works well, but I'm
> trying to figure out if there is a maximum or realistic number of these I
> can have at any one time and whether there are any tradeoffs or caveats to
> be aware of if scaling this up to many hundreds or more of users?
> 
> Thanks.
> 
> Mike-
> 
> _______________________________________________
> cisco-nsp mailing list  cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/


---
This e-mail is intended only for the addressee named above. 
As this e-mail may contain confidential or privileged information, 
if you are not the named addressee, you are not authorized to retain, read, 
copy or disseminate this message or any part of it.   
 
Please consider your environmental responsibility before printing this e-mail.

More information about the cisco-nsp mailing list