Buy or Renew
Buy or Renew
NOTICE: You can now engage in the community. Learn about the great new Cisco Umbrella content.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1577
Views
5
Helpful
1
Replies

Rate-limit ACL question

Go to solution
Jonathan Quinones
Level 1
Level 1

‎02-10-2015 08:34 AM - edited ‎03-07-2019 10:35 PM

Need some clarification on rate-limiting traffic acl's.  Simple question.

 

If you have a rate-limit acl, does the deny exclude it from the rate-limiting or does it drop it?

For example,

 

My understanding is that that object-group will not be rate-limited but any other traffic will be rate-limited.  Is that correct.

 

!
interface GigabitEthernet0/1

 rate-limit input access-group 100 1000000 128000 128000 conform-action continue exceed-action drop

 

Extended IP access list 100
        10 deny ip object-group TEST-OBJ-GROUP any (7655128 matches)
    20 permit ip any any (6806787 matches)

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Joseph W. Doherty
Hall of Fame
Hall of Fame

‎02-10-2015 08:48 AM

Disclaimer

The Author of this posting offers the information contained within this posting without consideration and with the reader's understanding that there's no implied or expressed suitability or fitness for any purpose. Information provided is for informational purposes only and should not be construed as rendering professional advice of any kind. Usage of this posting's information is solely at reader's own risk.

Liability Disclaimer

In no event shall Author be liable for any damages whatsoever (including, without limitation, damages for loss of use, data or profit) arising out of the use or inability to use the posting's information even if Author has been advised of the possibility of such damage.

Posting

"Deny", for a rate-limit, means rate-limit ignores that traffic.

"Permit", for a rate-limit, means that traffic is subjected to the rate-limit.

 

View solution in original post

1 Reply 1

Go to solution
Joseph W. Doherty
Hall of Fame
Hall of Fame

‎02-10-2015 08:48 AM

Disclaimer

The Author of this posting offers the information contained within this posting without consideration and with the reader's understanding that there's no implied or expressed suitability or fitness for any purpose. Information provided is for informational purposes only and should not be construed as rendering professional advice of any kind. Usage of this posting's information is solely at reader's own risk.

Liability Disclaimer

In no event shall Author be liable for any damages whatsoever (including, without limitation, damages for loss of use, data or profit) arising out of the use or inability to use the posting's information even if Author has been advised of the possibility of such damage.

Posting

"Deny", for a rate-limit, means rate-limit ignores that traffic.

"Permit", for a rate-limit, means that traffic is subjected to the rate-limit.

 

Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card