2015年5月9日

Cisco Switch 端口限速

低階端Cisco Switch只能針對Inbound流量限速
流量限速設定方式如下
先在Global端啟用Qos功能

mls qos
 ----------------------------------------------
5M範本
----------------------------------------------
設定ACL指定來源IP
ip access-list extended ACL_5M
 permit ip any any

指定CLASS套用ACL範本,標記封包
class-map match-all CLASS_5M
  match access-group name ACL_5M

指定policy套用CLASS,並指定限制速度
(此處限速5M,並且允許Burst 100KB,多出來的封包會Drop)
policy-map POLICY_5M
  class CLASS_5M
    police 5000000 100000 exceed-action drop

對要限速的端口做限速5M
interface GigabitEthernet0/2
 service-policy input POLICY_5M

----------------------------------------------
10M範本
----------------------------------------------
ip access-list extended ACL_10M
 permit ip any any

class-map match-all CLASS_10M
  match access-group name ACL_10M

policy-map POLICY_10M
  class CLASS_10M
    police 10000000 100000 exceed-action drop

interface GigabitEthernet0/2
 service-policy input POLICY_10M
----------------------------------------------
15M範本
----------------------------------------------
ip access-list extended ACL_15M
 permit ip any any

class-map match-all CLASS_15M
  match access-group name ACL_15M

policy-map POLICY_15M
  class CLASS_15M
    police 15000000 100000 exceed-action drop

指定介面
interface GigabitEthernet0/2
 service-policy input POLICY_15M



0 回應:

Copyright © 2009 New Life in Taipei All rights reserved. Theme by Laptop Geek. | Bloggerized by FalconHive.