11-24-2008 06:14 PM - edited 03-06-2019 02:39 AM
Hi All,
Does Cat 6509 has that feature like 3550 / 3560 which can *police* and drop traffic on a per-VLAN basis??
If so, what is that feature called and would anyone know which IOS train supports it??
Cheers,
Hunt
11-25-2008 01:48 PM
Hello Hunt,
see
VLAN based QoS on L2 ports where the QoS policy-map is applied on the SVI
Router(config-if)# mls qos vlan-based
Enables VLAN-based PFC QoS on a Layer 2 LAN port or a Layer 2 EtherChannel.
Hope to help
Giuseppe
11-25-2008 06:47 PM
Hi Giuseppe,
I'm not familar with this so i have put together the following and would appreciate your comment.
If my client wants to limit the traffic to 10MB on fa0/5 (incoming traffic towards 6509)
class-map match-all All-Traffic
description All Traffic
match access-group name All-Traffic
policy-map restrict-traffic
class All-Traffic
police 10000000 1000000 conform-action set-prec-transmit exceed-action drop
police flow 5000000 50000 conform-action set-prec-transmit exceed-action drop
interface fastethernet 0/5
service-policy input restrict-traffic
ip access-list extended All-Traffic
permit ip any any
Would this work??
Cheers,
Hunt
11-25-2008 11:32 PM
Hello Hunt,
ingress policing at the physical port is supported:
Policers can act on ingress traffic per-port or per-VLAN. For egress traffic, the policers can act per-VLAN only.
note: I think you need to provide a parameter to the set-prec-transmit that is the IP Precedence value you want to set.
see
set-prec-transmit value-Sets the IP precedence and transmits the packet with the new IP precedence value.
http://www.cisco.com/en/US/docs/ios/qos/command/reference/qos_n1.html#wp1025197
Besides this, your config looks like correct.
Hope to help
Giuseppe
11-26-2008 08:17 PM
Hi
I assume the way i did is by ingress policing at *inbound* physical port.
Is IP precedence 3 the lowest QoS?? Because my client wants their backup traffic to be on the lowest priority??
I have updated the config as follows:-
class-map match-all All-Traffic
description All Traffic
match access-group name All-Traffic
policy-map restrict-traffic
class All-Traffic
police 10000000 1000000 conform-action set-prec-transmit 3 exceed-action drop
police flow 5000000 50000 conform-action set-prec-transmit 3 exceed-action drop
interface fastethernet 0/5
service-policy input restrict-traffic
ip access-list extended All-Traffic
permit ip any any
However, assuming i want to do per-VLAN on egress packets, how should i configure this??
Cheers,
Hunt
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: