cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1046
Views
0
Helpful
3
Replies

how to do ingress policing on Nexus 5548 up?

zterilized
Level 1
Level 1

As the topic

Can i classified the group of ip with access-list , bind it with class-map type qos, and bind the class-map to policy-map type qos, do the policing, then apply to a destine interface by service policy input. Whoever ever do like this before?

I have the problem that when i have applied the policy to the interface, i do show policy interface for the statistic, and the traffic always drop in class-default!!!! Cisco guy please help!!!!
Sent from Cisco Technical Support iPhone App

3 Replies 3

zterilized
Level 1
Level 1

I have try to applied the access-list directly to the interface and it was good , but when it linked to qos class-map . Lookalike doing nothing

Sent from Cisco Technical Support iPhone App

zterilized
Level 1
Level 1

I done the same command on the N7K and it's working like a charm, why it's not work on N5K?

My brief configuration

Type qos policy-maps

  ====================

  policy-map type qos police

    class type qos cmap-ftp

      police cir 10 mbps bc 1000 bytes conform transmit violate drop

    class type qos class-default

      set qos-group 0

      police cir 20 mbps bc 10000 bytes conform transmit violate drop

  Type qos class-maps

  ===================

    class-map type qos match-all cmap-ftp

      match access-group name test2

IPV4 ACL test2

        10 permit ip any any

IPV4 ACL ftp

        10 permit tcp any any range 1024 65000

============

Result

============

Ethernet1/21

  Service-policy (qos) input:   police

    policy statistics status:   enabled

    Class-map (qos):   cmap-ftp (match-all)

      Match: access-group test2

      police cir 10 mbps bc 1000 bytes

        conformed 0 bytes, 0 bps action: transmit

        violated 0 bytes, 0 bps action: drop

    Class-map (qos):   class-default (match-any)

      Match: any

      set qos-group 0

      police cir 20 mbps bc 10000 bytes

        conformed 102613288 bytes, 0 bps action: transmit

        violated 32766831 bytes, 0 bps action: drop

==============================================

PS:

FTP server connect to interface e1/21 on this switch.

FTP Client connect to another switch(N5K) which connect to this switch via peer-link

zterilized
Level 1
Level 1

Sh run of interface e1/21

!Command: show running-config interface Ethernet1/21

!Time: Tue May 21 06:48:57 2013

version 6.0(2)N1(2)

interface Ethernet1/21

  switchport access vlan 575

  speed 1000

  service-policy type qos input police

Review Cisco Networking for a $25 gift card