Bandwidth management/policy not working

mark.a.coleman · ‎07-28-2011

We have a Service Policy rule setup on our 5510 for SMTP traffic.

outside-class1 1 True Match EMAILSIGServer any tcp/smtp class outside-class1

police input 1024000 1500 conform-action transmit exceed-action drop

police output 1024000 1500 conform-action transmit exceed-action drop

[[ class-map outside-class1 description match acl=outside_mpc match port=null ]]

Problem is, this week someone sent a larger email 20+mb to dozens of recipeints and the outside interface was hitting 10mb, which is not what I would have expected with this rule in place, so I'm questioning the configuration. We know it was email because I disabled the server that receices our outbound mail to apply a signature and the traffic dropped immediately.

Any thoughts?

Thanks

mark.a.coleman · ‎08-17-2011

No thoughts or direction then?

mark.a.coleman · ‎09-07-2011

Ok, checked the running config and all looks ok from what I can see/referred to.

I've basically scanned the running config and picked out the parts that relate to the Service Policy for the Email Server SMTP config.

access-list outside_mpc extended permit tcp host EmailServerToInternet any eq smtp

class-map outside-class1

match access-list outside_mpc

policy-map outside-policy1

class outside-class1

police input 1024000 1500

police output 1024000 1500

service-policy outside-policy1 interface outside

It doesn't work for some reason!