cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
2110
Views
0
Helpful
10
Replies

Shaping

acutx5678
Level 1
Level 1

I've been having people downloading mail ost and hogging the bandwidth I setup shaping but doesn't seem to be working, i looked up different posts here and tried both policing and shaping but doesn't seem to be working.

This is over an MPLS network, and it happens acorss the board at different remote locations below is how I set it up but it doesn't seem to be helping, any advise/help is appreciated.

class-map match-any Shaped

description Exchange Server

match access-group 105

policy-map bandwidth-control

class Shaped

    shape average 600000

!

!

!

!

!

interface FastEthernet0/0

no ip address

ip helper-address 192.168.0.26

duplex auto

speed auto

!

interface FastEthernet0/0.10

description Data VLAN 10

encapsulation dot1Q 10

ip address xxx.xx.x.1 255.255.255.0

ip directed-broadcast

service-policy output bandwidth-control

!

!

interface Serial0/0/0

ip address

ip flow ingress

encapsulation ppp

service-policy output llq

!

router bgp 65001

no synchronization

bgp log-neighbor-changes

redistribute connected

neighbor

no auto-summary

!

no ip forward-protocol nd

no ip http server

no ip http secure-server

access-list 105 permit ip any host 192.168.0.38

Thanks,

1 Accepted Solution

Accepted Solutions

Hello

Clase based:

ip access-list extended server
permit ip any host 192.168.0.38
class-map match-all server_cm
match access-group name server

policy-map server_pm
class server_pm
police 6144000 192000 conform-action transmit exceed-action drop
int (lan facing)
service-policy input server_pm

CAR
access-list 100 permit ip any host 192.168.0.38
interface (wan)
rate-limit output access-group 100 6144000 115200 2304000 conform-action transmit exceed-action drop


res
Paul

Please don't forget to rate any posts that have been helpful.

Thanks.


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul

View solution in original post

10 Replies 10

acutx5678
Level 1
Level 1

By the way I set this configuration on the router at the location which is being affected with the bandwidth issue.

Hello,

Can you see that your ACL 105 is matched?

#show ip access 105

Can you provide detailed configuration, also with IP addresses (if some of them are public, show us at least first two octets)

Best Regards

Please rate all helpful posts and close solved questions

Best Regards Please rate all helpful posts and close solved questions

#sh ip access 105

Extended IP access list 105

    10 permit ip any host 192.168.0.38

that's the IP of the exchange server.

Can you please post output of #sh ip cef 192.168.0.38 to verify my theory, if I will be right I will tell you what is it .

Best Regards

Please rate all helpful posts and close solved questions

Best Regards Please rate all helpful posts and close solved questions

sh ip cef 192.168.0.38

192.168.0.0/24

  nexthop x.x.x.x Serial0/0/0

that's the public IP at nexthop.

What is your theory ?

the serial has the service-policy llq applied. does it need to be replaced with the bandwidth-control policy?

You applied service policy bandwidth-control on outband direction on Fa0/0.10 where packet with destination IP address of 192.168.0.38 should be matched by ACL 105. But this will never happen because packets destinated to 192.168.0.38 are routed out of Se0/0/0 interface.

You need to applied shaping policy on Se0/0/0 interface in outband direction or you need to apply policing on inbound  direction of interface [shaping can not be applied in inbound direction] where are located users which will be shaped. If these users are located on multiple interfaces, only option is to apply shaping on Se0/0/0.

Best Regards

Please rate all helpful posts and close solved questions

Best Regards Please rate all helpful posts and close solved questions

Thanks I'll try that out when I get a chance and let you know how it went.

Thanks again!

Hello

Clase based:

ip access-list extended server
permit ip any host 192.168.0.38
class-map match-all server_cm
match access-group name server

policy-map server_pm
class server_pm
police 6144000 192000 conform-action transmit exceed-action drop
int (lan facing)
service-policy input server_pm

CAR
access-list 100 permit ip any host 192.168.0.38
interface (wan)
rate-limit output access-group 100 6144000 115200 2304000 conform-action transmit exceed-action drop


res
Paul

Please don't forget to rate any posts that have been helpful.

Thanks.


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul

I tried the class based policing, today some users kept connecting/disconnecting from outlook. Is this common?

Hello

at the end of your policy map apply a

class class-default

and try an acl that permits all

res
paul


Sent from Cisco Technical Support Android App


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul