Traffic Shaping VRFs WAN bandwidth

TCMC_cisco · ‎07-15-2011

We are a new medical school located in PA. Just have just completed a new building and are now working on getting our network finished.

Here is the situation we have a 50MB Internet Connection that comes into our network that then hits the ISPs Cisco 3750 which sends it to two of our Cisco 3750s for redundancy. From the 3750 goes into our Cisco 6509 with a FWSM module, then out from there to our distribution switches which are all Cisco 2960s.

What we would like to do is to control how much WAN connectivity each of our VRFs get. Right now we have a Faculty, Student, and Research VRF formed, and are trying to figure out the best spot where we can say Faculty gets 30MB of Bandwith, Students gets 10, and Research gets 10. If possible would like burst capabilities.

Anyone have any suggestions on what would work the best for us.

Joseph W. Doherty · ‎07-15-2011

Disclaimer

The Author of this posting offers the information contained within this posting without consideration and with the reader's understanding that there's no implied or expressed suitability or fitness for any purpose. Information provided is for informational purposes only and should not be construed as rendering professional advice of any kind. Usage of this posting's information is solely at reader's own risk.

Liability Disclaimer

In no event shall Author be liable for any damages whatsoever (including, without limitation, damages for loss of use, data or profit) arising out of the use or inability to use the posting's information even if Author has been advised of the possibility of such damage.

Posting

First, very difficult to manage inbound bandwidth per user class. You can police inbound, but with only 50 MB to work with, you can still have congestion upstream of your policer.

Outbound, can easily manage outbound bandwidth although you're limited to features of your platform. Fortunately, what you've described could be accomplished on a 3750 by shaping the port to 50 Mbps, and then sending your Faculty, Student and Research traffic to 3 different queues, with bandwidth share ratios of 3:1:1.

Not 100% positive, but without a WAN Ethernet card in your 6500, which you likely don't have, I don't believe shaping is supported. You could police outbound, but even with or without bursting, your 3 classes could collide nor take full advantage of available bandwidth. (I.e. your 3750 would actually better in this situation.)

Marwan ALshawi · ‎07-15-2011

Hi

to add to above post

you can limit the interface bandwidth to 50 M

speed 100

srr-queue bandwidth limit 60

for outbound policing or shaping you can use th ebove ration with the srr-queue shape command

or in the inbound interface from the 6509 to the 3750 you can use MOQC to police the traffic based on the source address for example, and give it the required bandwidth

good luck

if helpful rate

Marwan ALshawi · ‎07-15-2011

One more thing

If you using multiple vrf in the 6509 and you can use in the fwsm multiple fw context one per vrf and at the fw level you can limit how much each vrf can use of the out or in bandwidth

Hope this help

If helpful rate

Sent from Cisco Technical Support iPhone App