2811 Bandwidth Shaping / policing ??? 1

[SevenSins]

Hi!
I am new to Cisco routers and would like to know the difference between

1. fair-queue
2. rate-limit
3. traffic-shape

What I want to do is that i have a 2811 router with 2FE and one HWIC-4ES, I have created Vlans for the HWIC so I have 6FE's.

F0/0 WAN IP
F0/1 DMZ
F0/0/0 LAN Subnet 1 (building one)
F0/0/0 LAN Subnet 2 (building one)
F0/0/0 LAN Subnet 3 (building one)
F0/0/0 shutdown

Now I have enabled NAT so few specific ip's from the three subnets can access via NAT, others just user a cache server.

I need to implement some kind of traffic shaping in regards to bandwidth usage both upload and download for the ips that are using the NAT.

Any suggestions.. pointers would be highly appreciated....

Regards

 

[SevenSins]

The Router has 12.4(13r)T ISO

e.g

F0/0/0 LAN Subnet 1
VLAN 1 (192.168.200.0/24)

F0/0/0 LAN Subnet 2
VLAN 2 (192.168.100.0/24)

F0/0/0 LAN Subnet 3
VLAN 3 (192.168.0.0/24)

The users that are Nat enabled

192.168.200.10
192.168.200.20
192.168.100.10
192.168.100.20
192.168.0.10
192.168.0.20

 

[SevenSins]

Sorry.. it is
Cisco IOS Software, 2800 Software (C2800NM-IPBASE-M), Version 12.4(3i)

 

[SevenSins]

anyone>?

 

[burtsbees]

Give people a chance to wake up!

Burt

 

[Minue]

Hello
I will try to explain the difference between the queing methods.Then you can decide what's fit for your situation.

1. fair-queue:Is the default queuing method for interfaces under 2Mbps.This works good for low flow traffic like telnet and ICMP when the link is congested.Bandwith hungry traffic will suffer most.Fair-queue isn't flexible and you can't classify traffic.
2. rate-limit: is a legacy method use for controlling the amount of traffic passing on a line ant a given time interval.The new method is call "Policing" which is much more flexible.
3. traffic-shape:Is use mainly to slow down traffic going into the ISP network,to avoid it being drop.Example:Lets say you have a 10Mbps METRO ethernet connection to your ISP.You will obviously be using a fastethernet interface on the router.(In the case we didn't hare code or interface at 10Mbps for easy future upgrade).So this is what will happen,the router will try to send at 100Mbps to ISP,but the excess traffic will be drop because the ISP will be policing your traffic to the contracted limit.So the best thing to do in this case is to shape your traffic to avoid it being drop.
Note,this concept is normally associated with frame-relay networks,but here in Europe we use it with other technologies.
If some points aren't clear please let me know.
Regards

 

[SevenSins]

Thankyou all,

After a lot of googln and reading, I have done this;

class-map match-any class-std
match access-group name std
class-map match-any class-vip
match access-group name VIP
class-map match-any class-squid
match access-group name squid
class-map match-any class-master
match access-group name master

policy-map policy1
class class-master
police cir 300000
conform-action transmit
exceed-action drop
violate-action drop
shape average 300000
class class-std
shape average 200000
police cir 200000
conform-action transmit
exceed-action drop
violate-action drop
class class-vip
class class-squid
shape average 300000
police cir 300000
conform-action transmit
exceed-action transmit
violate-action drop
class class-default




ip access-list extended VIP
permit ip host 192.168.200.10 any
permit ip any host 192.168.200.10
permit ip host 192.168.200.20 any
permit ip any host 192.168.200.20
ip access-list extended master
permit tcp host 192.168.100.10 any
permit udp host 192.168.100.20 any
permit tcp any host 192.168.100.10
permit udp any host 192.168.100.20
ip access-list extended squid
permit tcp host 192.168.0.10 any
permit udp host 192.168.0.20 any
permit udp any host 192.168.0.10
permit tcp any host 192.168.0.20
ip access-list extended std
permit ip host 192.168.1.1 any
permit ip any host 192.168.1.1


Regards