05-03-2012 02:55 AM - edited 03-04-2019 04:14 PM
hello
we have a mail server in HO and many remote sites connected via MPLS wan
the link speed in HO is 32M and is 2M in each remote site.
when users in remote site open their exchange some times the 2M will be 100% used due to big emails.
so i want to configure QoS in HO so that email bw will be limited to 1M for each site.
so in HO i config :
class-map match-any MAIL
match access-group 121 (access-list to match traffic where ss is mail server in HO and dest is the subnet in remote)
match access-group 122
match access-group 123
!
policy-map outbound-policy
class Mail
police cir 1024000
class class-default
fair-queue
queue-limit 1024 packets
!
interface g0/1
service-policy outb outbound-policy
!
my question is: using the match-any keyword, will the router police to 1024000 for every remote site or all mail flows to all branches will not exceed the 1024000 bps ?
thanks
Solved! Go to Solution.
05-03-2012 03:23 AM
All mail flows to all branches together will not exceed the 1024000 bps. You can do it invidually as well by separating the classes and match-any will trigger if any of the match conditions is true.
Nandan Mathure
05-03-2012 09:48 AM
Disclaimer
The Author of this posting offers the information contained within this posting without consideration and with the reader's understanding that there's no implied or expressed suitability or fitness for any purpose. Information provided is for informational purposes only and should not be construed as rendering professional advice of any kind. Usage of this posting's information is solely at reader's own risk.
Liability Disclaimer
In no event shall Author be liable for any damages whatsoever (including, without limitation, damages for loss of use, data or profit) arising out of the use or inability to use the posting's information even if Author has been advised of the possibility of such damage.
Posting
As noted by Nandan, what you have will restrict all email traffic to 1 Mbps.
Assuming you don't have too many sites, you can restrict email to each site, as also noted by Nandan.
However, beter might be something like:
class-map match-(any|all) RmtSite1
match access-group RmtSite1 !setup acl to match remote site's destination addresses
class-map match-(any|all) RmtSiteN
match access-group RmtSiteN !setup acl to match remote site's destination addresses
policy-map outbound-policy
class RmtSite1
shape average 2000000
class RmtSiteN
shape average 2000000
NB: if the above shapers do FIFO (there are different "flavors" of CBWFQ), then you would want to try fair-queue either in the policy class or as part of a (shared) subordinate policy.
05-03-2012 03:09 AM
Hi,
Yes it will match any of your match acl.
Mainly :
match any will match if any of the match statements - if any of the acl are matched then the action is applied
match all will match only if all the match statements are matched - if all the match statements are matched only then the action is applied
Dan
05-03-2012 03:23 AM
All mail flows to all branches together will not exceed the 1024000 bps. You can do it invidually as well by separating the classes and match-any will trigger if any of the match conditions is true.
Nandan Mathure
05-03-2012 09:48 AM
Disclaimer
The Author of this posting offers the information contained within this posting without consideration and with the reader's understanding that there's no implied or expressed suitability or fitness for any purpose. Information provided is for informational purposes only and should not be construed as rendering professional advice of any kind. Usage of this posting's information is solely at reader's own risk.
Liability Disclaimer
In no event shall Author be liable for any damages whatsoever (including, without limitation, damages for loss of use, data or profit) arising out of the use or inability to use the posting's information even if Author has been advised of the possibility of such damage.
Posting
As noted by Nandan, what you have will restrict all email traffic to 1 Mbps.
Assuming you don't have too many sites, you can restrict email to each site, as also noted by Nandan.
However, beter might be something like:
class-map match-(any|all) RmtSite1
match access-group RmtSite1 !setup acl to match remote site's destination addresses
class-map match-(any|all) RmtSiteN
match access-group RmtSiteN !setup acl to match remote site's destination addresses
policy-map outbound-policy
class RmtSite1
shape average 2000000
class RmtSiteN
shape average 2000000
NB: if the above shapers do FIFO (there are different "flavors" of CBWFQ), then you would want to try fair-queue either in the policy class or as part of a (shared) subordinate policy.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: