[f-nsp] Question regarding adaptive rate-limiting using ACLs
Dennis Thomas
dt at fastit.net
Fri Jan 5 05:57:16 EST 2007
Hi colleagues,
i'm currently a bit ditsy about Foundry's rate-limiting with ACL's on a
Ironcore device.
I have a VE-Interface (based on a GigE) with some hosts behind that
interface and want to reduce the incoming traffic from specific hosts to
~50 mbits together. I configured it like this:
<snip>
interface ve 55
rate-limit input access-group 60 50000000 625000 625000 conform-action
continue exceed-action drop
ip address 172.20.34.1 255.255.255.0
[...]
access-list 60 permit host 172.20.34.12
access-list 60 permit host 172.20.34.13
access-list 60 permit host 172.20.34.14
</snip>
The question is now if the rate-limit matches to the whole ACL (so all
hosts together can do about 50 mbits) or for each single hosts in the
ACL (so each host can do about 50 mbits).
I already checked the Foundry doc about that but i did not find a
answear to that - any suggestions are welcome.
Thanks in advance,
Dennis
More information about the foundry-nsp
mailing list