Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
402
Views
5
Helpful
4
Replies

Policing and input queues

sarahr202
Level 5
Level 5

‎07-28-2013 11:40 AM - edited ‎03-07-2019 02:38 PM

Hi everybody

Please consider the following example:

--Lan----F0/0--R1--rest of network

We want to limit web traffic going to internet to 15kbs . All the http traffic exceeding this rate should be marked down to ip precedence 3

I configured the our router with the following config:

class-map match-any LEE

match http

Policy-map WEB_TRAFFIC

class LEE

police 15000 conform-action transmit exceed-action set-pre-transmit 3 violate-action drop

R1(config)# int f0/0

service-policy input WEB_TRAFFIC

Let assume our current http traffic is exceeding 15kps but still allowed through the router . Our router is making down this exceeding http traffic to 3.

That is my understanding:

First all the incoming packets on f0/0 are checked against the policy-map LEE.

If the traffic is matched by policy-map LEE,all the actions defined under policy-map Lee will be performed i.e if the http traffic rate is below 15 kbps, they will be allowed unchanged. If the http traffic rate is exceeding 15kbps, then http traffic will be marked down to ip precedence 3 and transmitted provided that our excess token bucket has enough tokens left.

In our example, let assume we have http traffic exceeding 15kbps and we have enough token lefts in our excess bucket.

Router will mark ip precedence in these exceeding http packets to 3 and then places these packets into input queue mapped to 3. 

Am i correct?

Thanks and have a great day.

Labels:
0 Helpful
4 Replies 4

Nagendra Kumar Nainar
Cisco Employee
Cisco Employee

‎07-28-2013 10:49 PM

Hi Sarah,

Your understanding is correct. But with this approach, web traffic more than the configured rate will be dropped. If this is what you are intenting to do, it is fine.

But if the web traffic is your business traffic, you can consider shaping @ outbound (WAN) interface.

HTH,

Nagendra

0 Helpful

sarahr202
Level 5
Level 5
In response to Nagendra Kumar Nainar

‎07-30-2013 08:00 PM

Thanks Kumar.   I coudnt find rating button. 

0 Helpful

Joseph W. Doherty
Hall of Fame
Hall of Fame
In response to sarahr202

‎07-31-2013 02:59 AM

Try "hovering" your pointer over the stars at the lower left of the post.

Also, as original poster, you should have a correctly answered option, but I don't know how that's selected.

sarahr202
Level 5
Level 5
In response to Joseph W. Doherty

‎07-31-2013 08:36 PM

Thanks Joseph

5 stars for that!!

I also wanted to give 5 stars to Kumar but couldn't do it. I tried hovering the mouse as you said on Kumar response but it did not work. But it did work on your reply.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card