1-21
On Ethernet 1/0/1, assume that the filter command is configured to filter packets destined to IP
address 2.2.2.2 and the traffic-limit command is configured to limit the rate of packets sourced from IP
address 1.1.1.1 within 128 kbps. Whether packets conforming to the rate limit of 128 kbps, sourced
from IP address 1.1.1.1, and destined to IP address 2.2.2.2 (referred to as packets A later) will be
dropped depends on the union-effect keyword of the traffic-limit command.
z If the union-effect keyword is not specified, the traffic-limit command issues both the rate limiting
action and the permit action. Whether packets A can pass through depends on the configuration
order of the filter command and the traffic-limit command. If the traffic-limit command is
configured after the filter command is configured, packets A can pass through; otherwise, packets
A are dropped.
z If the union-effect keyword is specified, the traffic-limit command issues only the rate limiting
action. Whether packets A can pass through depends on the filter command. As for this example,
packets A are dropped.
target-rate: Target packet rate (in kbps) to be set. The range of this argument varies with the port type
as follows.
z Fast Ethernet port: 64 to 99,968
z Gigabit Ethernet port: 64 to 1,000,000
The granularity of rate limit is 64 kbps. If the number you input is in the range N*64 to (N+1)*64 (N is a
natural number), it will be rounded off to (N+1)*64.
burst-bucket burst-bucket-size: Specifies the maximum burst traffic size (in KB) allowed. The
burst-bucket-size argument ranges from 4 to 512 and defaults to 512. Note that it must be an integer
power of 2.
exceed action: Specifies the action to be taken when the traffic rate exceeds the threshold. The action
argument can be:
z drop: Drops the packets.
z remark-dscp value: Sets a new DSCP value for the packets and then forwards the packets.
Description
Use the traffic-limit command to enable traffic policing and set the related settings.
Use the undo traffic-limit command to disable traffic policing for packets matching specific ACL rules.
Related commands: display qos-interface traffic-limit.
Examples
# Configure traffic policing for inbound packets sourced from VLAN 200 on Ethernet 1/0/1, setting the
target packet rate to 128 kbps, burst bucket size to 64 KB, and configuring to drop the packets
exceeding the rate limit.
To Next Page
Loading...
