Configuring A Port-And-Ipv6 Acl-Based Traffic Reduction - Dell PowerConnect B-RX Configuration Manual
Bigiron rx series configuration guide v02.7.02
Hide thumbs
Also See for PowerConnect B-RX:
- Configuration manual (1458 pages) ,
- Getting started manual (32 pages) ,
- Installation manual (240 pages)
Table of Contents
Advertisement
19
Configuring rate limiting policies
These commands first configure access-list groups that contain the ACLs that will be used in the
rate limiting policy. Use the permit condition for traffic that will be rate limited. Traffic that match
the condition are not subject to rate limiting and allowed to pass through. Refer to
port-and-IPv6 ACL-based traffic reduction"
matches deny conditions.
Next, the commands configure two rate limiting policies on port 1/5. The policies limit the rate of
all inbound IP traffic that match the permit rules of ACLs 50 and 60. The first policy limits the rate
of all permitted IP traffic from host 1.1.1.2 to an requested rate of 500 Mbps with a maximum burst
size of 750 Mbps. Rate of all traffic from host 1.1.1.3 is not subject to rate limiting since it is denied
by ACL 50; it is merely forwarded on the port.
The second policy limits the rate of all IP traffic from host 2.2.2.3 to an requested rate of 100 Mbps
with a maximum burst size of 200 Mbits.
All IP traffic that does not match ACLs 50 and 60 are not subject to rate limiting.
Syntax: [no] rate-limit in access-group <number> | named-access-group <ACL-name>
The access-group <number> parameter or the named-access-group <acl-name> specifies the ACL
used in the policy.
For information on the other parameters, refer to
page 498.
For information on the number of ACL-based rate limiting policies that can be configured, refer to
the
"Configuration considerations"
Configuring a port-and-IPv6 ACL-based traffic reduction
The port-and-IPV6 ACL-based rate limiting limits the rate of traffic on individual physical ports that
match the permit conditions of an IPV6 ACL. Traffic that matches the deny condition is not subject
to rate limiting.
For example, the following commands in the Global Config mode configure the IPv6 access-list
"sample" to permit any traffic from the 10:10::0:0/64 network and deny all other traffic.
BigIron RX(config)# ipv6 access-list sample
BigIron RX(config-ipv6-access-list sample)# permit ipv6 10:10::0:0/64 any
BigIron RX(config-ipv6-access-list sample)# deny ipv6 any any
The following configuration creates a rate limiting policy on port 1/1. The policy limits the rate of all
inbound IP traffic that matches the permit rules a rate of 100 Mbps with a maximum burst size of
200 Mbits. Traffic denied by sample is forwarded on the port.
BigIron RX(config)# interface ethernet 1/1
BigIron RX(config-if-e10000-1/1)# rate-limit in ipv6-named-access-group sample
100000000 200000000
Average rate is adjusted to 99515432 bits per second
Syntax: [no] rate-limit in ipv6-named-access-group <name> <requested-rate> <maximum-burst>
The in parameter applies the policy to traffic on inbound ports.
The ipv6-named-access-group <name> parameter identifies the IPv6 ACL used to permit or deny
traffic on a port. Permitted traffic is subject to rate limiting. Denied traffic is forwarded on the port.
For information on the other parameters, refer to
page 498.
502
<requested-rate> <maximum-burst>
on page 502 for information on how to drop traffic that
"Configuring a port-based rate limiting policy"
on page 497.
"Configuring a port-based rate limiting policy"
"Configuring a
BigIron RX Series Configuration Guide
53-1001810-01
on
on
Advertisement
Table of Contents
