Bandwidth limit a port

  • 0
  • 1
  • Question
  • Updated 4 years ago
  • Answered
I am trying to apply a 3 Gbps limit on a port and I need to verify I am doing it right. This port is a trunk port. Customer is using vlan 185 for SAN replication traffic, and I need to throttle it. Here is what I have.Can someone who has done this confirm I have it right?
Thank you

for egress :
config port 29 rate-limit egress 3000000 Kbps

for ingress
create meter Three_Gbps_ingress
configure meter Three_Gbps_ingress committed-rate 3000000 Kbps out-actions drop
configure access-list rule-compression port-counters shared
configure access-list Limit3000Mb ports 29 ingress

here is what the Limit3000Mb.pol file looks like:

entry Limit3000Mb {
if match all {
    vlan-id 185 ;
}
then {
    meter Limit3000Mb ;
}
}
Photo of GCIT_Support

GCIT_Support

  • 510 Points 500 badge 2x thumb

Posted 4 years ago

  • 0
  • 1
Photo of PARTHIBAN CHINNAYA

PARTHIBAN CHINNAYA, Alum

  • 4,362 Points 4k badge 2x thumb
Photo of GCIT_Support

GCIT_Support

  • 510 Points 500 badge 2x thumb
Thanks, but that doesn't seem to work. I guess I am confused on what rules to place on which switch.
Customer has a x460 managed by us. We want them to have 3 Gbps max cap either up or down on the bandwidth they can use on our shared network. I was thinking it would be cleaner to have all the rules (QoS, policies, and rate-limits) on switch at customer site.
Should I be applying egress policy on upstream switch instead (also x460)? For instance, from this customer (cust A) port 29 they link to port 33 on the core switch. So on the core for egress limit:
conf port 33 (link to cust A) rate-limit egress 3 Gbps? Thank you.
Photo of Jarek

Jarek

  • 2,398 Points 2k badge 2x thumb
Hi,


The question is how you will limit the bandwidth?

Example, you have all 10 G ports.

1)  You have on your side switch A port 33 <-> customer side switch B port 29
You have trunk port to your customer with many vlans form A to B, and you want to limit bandwidth for vlan 185.

Then you should:
- create meter with 3Gb limit on both switches
- create acl Limit3000Mb  on both switches
- configure ingress acl Limit3000Mb on port 33 switch A and  ingress acl Limit3000Mb on  port 29 switch B

2) You have on your side switch A port 33 <-> customer side switch B port 29
You have access  port (33) to your customer in vlan 185  and you want to limit all traffic ingress/egress to the customer.

Then you should/can do:
- create meter with 3Gb limit on switch A
- create acl Limit3000Mb  on switch A
- configure ingress acl Limit3000Mb  on switch A port 33
- if your port 33 is only access port, you can do:
configure ports 33 qosprofile qp1
configure qosprofile QP1 minbw 0 maxbw 30 ports 33

or

configure ports 33 rate-limit egress 3 Gbps


--
Jarek
Photo of GCIT_Support

GCIT_Support

  • 510 Points 500 badge 2x thumb
Thank you for your reply. 
What I ended up doing was configuring the policy file with vlan-id argument in it and configuring the access-list for both ingress and egress on the same port. This seems to give the desired result:

create meter Limit3000Mb configure meter Limit3000Mb committed-rate 3000000 Kbps max-burst-size 3000000 Kb out-actions drop 
configure access-list rule-compression port-counters shared
configure access-list Limit3000Mb ports 30 ingress
configure access-list Limit3000Mb ports 30 egress

Limit3000Mb.pol

entry Limit3000Mb {if match all {
    vlan-id 185 ;
} then {
    meter Limit3000Mb ;
}
}