Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
631
Views
0
Helpful
4
Replies

Controlling UDP traffic

Go to solution
j.vanrooyen
Level 1
Level 1

‎02-20-2003 01:29 AM - edited ‎03-02-2019 05:13 AM

Is there a way to control the amount of UDP traffic flowing through a router ? I am seeing excessive amounts of UDP traffic going through out internet router , specifically the NAT tables. I suspect some or other P2P app. but these things use dynamic port numbers which make it very dificult to control via ACL.

Can anybody advise ?

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
bbranch
Level 3
Level 3

‎02-20-2003 02:29 AM

You could use either Committed Access Rate (CAR) or Generic Traffic Shapping (GTS) with an access list to rate limit your UDP traffic

GTS

http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122cgcr/fqos_c/fqcprt4/qcfgts.htm

CAR

http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122cgcr/fqos_c/fqcprt1/qcfcar.htm

Alternatively you could use Class Based Weighted Fair Queuing (CBWFQ) and assign an amount of bandwidth to the traffic

http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122cgcr/fqos_c/fqcprt8/qcfmcli2.htm

View solution in original post

0 Helpful
4 Replies 4

Go to solution
Georg Pauwen
VIP
VIP

‎02-20-2003 02:28 AM

Hello,

I am thinking you could use an extended access list and specifically allow one UDP port (e.g. NTP), all others would be denied automatically by the implicit deny. Not sure if this works, but maybe worth trying.

Regards,

Georg

0 Helpful

Go to solution
bbranch
Level 3
Level 3

‎02-20-2003 02:29 AM

You could use either Committed Access Rate (CAR) or Generic Traffic Shapping (GTS) with an access list to rate limit your UDP traffic

GTS

http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122cgcr/fqos_c/fqcprt4/qcfgts.htm

CAR

http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122cgcr/fqos_c/fqcprt1/qcfcar.htm

Alternatively you could use Class Based Weighted Fair Queuing (CBWFQ) and assign an amount of bandwidth to the traffic

http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122cgcr/fqos_c/fqcprt8/qcfmcli2.htm

0 Helpful

Go to solution
j.vanrooyen
Level 1
Level 1
In response to bbranch

‎02-20-2003 03:18 AM

This is the conclusion I came to as well but thx for the confirmation.

0 Helpful

Go to solution
lgijssel
Level 9
Level 9

‎02-20-2003 02:36 AM

First, you should try to find out what it is. Most protocols use fixed ports to start sessions. Blocking these ports will effectively stop connections.

You might have trouble with Kazaa or something like that.

Kazaa uses port 2340 or 80 as an alternate.

Hope this helps,

Leo

0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card