11-02-2010 09:39 AM - edited 03-04-2019 10:20 AM
Hello Everyone
I am looking to reduce the % of b/w utilization of outbound traffic if it uses the following ports:
3600
137-139
If possible, I would like to set the rule for a specific server: 192.168.17.39
Can this can be done through QoS policy map? If so what would the config look like? =)
Thanks
Jay
11-02-2010 10:22 AM
Jay,
Would you like to strictly police the traffic or give it less access to the wire during periods of congestion? In regard to the ports are they TCP, UDP or both?
Chris
11-02-2010 11:24 AM
Hi Chris
I would police the traffic and they are all TCP ports.
Thanks
Jay
11-02-2010 12:19 PM
This is the simplest way to do it. It can be done with the MQC, but unless you have a complex queuing requirement the following will work well for you.
access-list 100 remark *** Selection for Police action ****
access-list 100 permit tcp any any range 137 139
### I generally try to apply policers inbound
### This is usally a LAN interface facing servers/workstations
### For this example Lets say you want to restrict this traffic to 500Kbps.
int g0/0
rate-limit input 500000 access-group 100 93750 187500 confirm-action transmit exceed-action drop
exit
Chris
11-02-2010 12:44 PM
Great thanks. I did not realize you could confgure this on the inside interface. I thought it would be applied to the outside interface since this is egress traffic.
11-02-2010 12:49 PM
Good question.
Policers are better placed on ingress.
Shaping and queuing policies must be placed on egress.
This is a great resource:
http://www.cisco.com/en/US/docs/ios/qos/configuration/guide/polcing_shping_oview_ps6350_TSD_Products_Configuration_Guide_Chapter.html
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: