[f-nsp] Rate limiting UDP traffic on MLXe
Niels Bakker
niels=foundry-nsp at bakker.net
Mon Mar 18 16:57:22 EDT 2013
* chris.hellkvist at googlemail.com (Chris Hellkvist) [Mon 18 Mar 2013, 17:44 CET]:
>i'm trying to set up a rate limiting for all UDP traffic on a VE
>interface on a MLXe using Ironware 5.3.0b. The VE interface is only
>used on a physical port/the VLAN is only configured on a single port -
>but there are some other vlans also using the same port so i can't
>move the interface to a route-only config that easy.
>It looks like it is not possible to set up a ACL based rate limit on a
>VE interface. Instead using a VLAN-based rate limit it seems that it
>is not possible to use this together with a ACL for matching only UDP
>traffic.
You can use an ACL-based rate-limit on the physical interface,
depending on whether you know what IP subnets are in use behind the
ve you wish to limit traffic from/to.
-- Niels.
--
More information about the foundry-nsp
mailing list