cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1577
Views
5
Helpful
1
Replies

Rate-limit ACL question

Need some clarification on rate-limiting traffic acl's.  Simple question.

 

If you have a rate-limit acl, does the deny exclude it from the rate-limiting or does it drop it?

For example,

 

My understanding is that that object-group will not be rate-limited but any other traffic will be rate-limited.  Is that correct.

 

!
interface GigabitEthernet0/1

 rate-limit input access-group 100 1000000 128000 128000 conform-action continue exceed-action drop

 

Extended IP access list 100
        10 deny ip object-group TEST-OBJ-GROUP any (7655128 matches)
    20 permit ip any any (6806787 matches)

1 Accepted Solution

Accepted Solutions

Joseph W. Doherty
Hall of Fame
Hall of Fame

Disclaimer

The Author of this posting offers the information contained within this posting without consideration and with the reader's understanding that there's no implied or expressed suitability or fitness for any purpose. Information provided is for informational purposes only and should not be construed as rendering professional advice of any kind. Usage of this posting's information is solely at reader's own risk.

Liability Disclaimer

In no event shall Author be liable for any damages whatsoever (including, without limitation, damages for loss of use, data or profit) arising out of the use or inability to use the posting's information even if Author has been advised of the possibility of such damage.

Posting

"Deny", for a rate-limit, means rate-limit ignores that traffic.

"Permit", for a rate-limit, means that traffic is subjected to the rate-limit.

 

View solution in original post

1 Reply 1

Joseph W. Doherty
Hall of Fame
Hall of Fame

Disclaimer

The Author of this posting offers the information contained within this posting without consideration and with the reader's understanding that there's no implied or expressed suitability or fitness for any purpose. Information provided is for informational purposes only and should not be construed as rendering professional advice of any kind. Usage of this posting's information is solely at reader's own risk.

Liability Disclaimer

In no event shall Author be liable for any damages whatsoever (including, without limitation, damages for loss of use, data or profit) arising out of the use or inability to use the posting's information even if Author has been advised of the possibility of such damage.

Posting

"Deny", for a rate-limit, means rate-limit ignores that traffic.

"Permit", for a rate-limit, means that traffic is subjected to the rate-limit.

 

Review Cisco Networking for a $25 gift card