Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2339
Views
5
Helpful
4
Replies

rate-limit on WAN interface with ACL

genseb13011
Level 1
Level 1

‎05-03-2011 07:26 AM - edited ‎03-04-2019 12:15 PM

Hi,

I would like to apply rate limit on my WAN interface (upstream and downstream).

I've found this configuration:

rate-limit output bandwidth normal_burst excess_burst

rate-limit input bandwidth normal_burst excess_burst

I'd like to apply these limitations to certain flow.

Can i use access-list to target this flow?

I've found this configuration (rate-limit output access-group 103 bandwidth normal_burst excess_burst) but it seems that it doesn't work

Thanks for your answer

Labels:
0 Helpful
4 Replies 4

cadet alain
VIP Alumni
VIP Alumni

‎05-03-2011 07:41 AM

Hi,

you must specify the conform-action   clause.

Then show interface rate-limit to verify config.

This CAR technology is considered legacy and if your router supports you should use class-based policing instead.

Regards.

Alain.

Don't forget to rate helpful posts.
0 Helpful

GregCover
Level 1
Level 1

‎05-03-2011 08:23 AM

If all you want to do is limit "all" the traffic exiting your wan interface try using a basic shaping policy.

First, create the policy map in global config mode.

policy-map SHAPE

  class class-default

    shape average 768000    <-- or speed you desire in bits.

Then apply the command "service-policy output SHAPE" to your WAN interface config at both ends.

Hope this helps,

Greg

GregCover
Level 1
Level 1
In response to GregCover

‎05-03-2011 08:28 AM

Also, you could get more specific with what traffic this applies to by creating specific class-maps and then referring to those class-maps in the policy map.

Greg

0 Helpful

sanjaysk1
Level 1
Level 1

‎05-03-2011 09:44 AM

Hello,

CAR is old way of applying policy, but it is being used frequently because of its simplicity.

Yes, access-list should be used to filter the traffic to define the desired source and destination and ensure CEF is enabled before using rate-limit.

You should follow few steps to apply rate limit on desired interface which is as below:-

+Specify what type of traffic you want to limit and the limit value.
+Verify traffic direction(In/Out)
+Apply the rate-limit command under the interface

E.g.

router(config)#access-list 101 permit tcp any any eq www
router(config)#int se0/0

router(config-if)#rate-limit output access-group 101 128000 64000 96000 conform-action transmit exceed-action drop >>>> i applied in OUT direction..

-Sanjay Singh

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card