Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3237
Views
6
Helpful
5
Replies

Catalyst 3560 rate-limit question

forumhealth
Level 1
Level 1

‎11-19-2010 12:18 PM - edited ‎03-06-2019 02:08 PM

I am trying to configure rate-limiting on a 3560 switch (12.2.25SE, ipservices), but it does not seem to have any effect.

Basic configuration is:

interface FastEthernet0/24
no switchport
ip address 10.163.37.254 255.255.254.0
rate-limit output 10000000 5000 5000 conform-action transmit exceed-action drop

interface Vlan1
ip address 192.168.250.1 255.255.255.0
rate-limit output 10000000 5000 5000 conform-action transmit exceed-action drop

I want to limit the output to 10Mbps.  I did not know whether to configure rate-limiting on the router port or the vlan interface.  I set the burst rate very low to try to force the router to drop packets while I was testing.  The output of the "show interface rate" command is:

Switch#sh int f0/24 rate
FastEthernet0/24
  Output
    matches: all traffic
      params:  10000000 bps, 5000 limit, 5000 extended limit
      conformed 0 packets, 0 bytes; action: transmit
      exceeded 0 packets, 0 bytes; action: drop
      last packet: 4008815ms ago, current burst: 0 bytes
      last cleared 00:15:30 ago, conformed 0 bps, exceeded 0 bps

Switch#sh int vlan 1 rate
Vlan1
  Output
    matches: all traffic
      params:  10000000 bps, 5000 limit, 5000 extended limit
      conformed 0 packets, 0 bytes; action: transmit
      exceeded 0 packets, 0 bytes; action: drop
      last packet: 4031623ms ago, current burst: 0 bytes
      last cleared 00:07:21 ago, conformed 0 bps, exceeded 0 bps

Actual throughput on a large file transfer was >70Mbps.  What am I missing, or can't I do this on a 3560?

Thanks,

Al Stiver

Labels:
0 Helpful
5 Replies 5

gatlin007
Level 4
Level 4

‎11-19-2010 02:02 PM

That show command looks like it may be unsupported:

Unsupported Privileged EXEC Commands

show interfaces [interface-id | vlan vlan-id] [crb | fair-queue | irb | mac-accounting | precedence | irb | random-detect | rate-limit | shape]

http://www.cisco.com/en/US/docs/switches/lan/catalyst3560/software/release/12.2_25_sea/configuration/guide/swuncli.html

0 Helpful

deyadav
Cisco Employee
Cisco Employee

‎11-19-2010 11:16 PM

You may instead try using service-policy on the interface to rate-limit the traffic.This would be done by using Class-based Policing:

http://www.cisco.com/en/US/partner/docs/switches/lan/catalyst3560/software/release/12.2_25_se/configuration/guide/swqos.html#wp1044737

HTH.

Regards,

Deepak

0 Helpful

andtoth
Level 4
Level 4

‎11-20-2010 10:38 AM

Hi,

The rate-limit command is not supported (although available) on the 3560/3750 series switches. You can apply outbound (egress) policy-map on physical interfaces and do srr-queue on inbound. If you want to limit bandwidth for a whole vlan, you can apply the policy-map on the Vlan interface and enable vlan based qos on the physical interfaces.

Refer to the QoS Configuration Guide on the following link:

http://www.cisco.com/en/US/partner/docs/switches/lan/catalyst3560/software/release/12.2_25_se/configuration/guide/swqos.html#wp1044737

Andras

jared1995
Level 1
Level 1

‎11-21-2010 09:50 AM

Edited Comment

andtoth
Level 4
Level 4
In response to jared1995

‎11-21-2010 09:50 AM

The bandwidth interface configuration command will not do bandwidth limiting on Vlan interfaces as it's supposed to set and communicate the current bandwidth value for an interface to higher-level protocols. It's mostly used for Serial interfaces.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card