Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations derfloh on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
Limit the trafic or size of S0
- Thread starter mocale
- Start date
BusinessPhoneSystems
Vendor
Sounds like a bit of a tricky one!
You can obvously route http & ftp servers through specific interfaces and restrict them from others thus, maby have a priority interface for interactive users perhaps!
Have you looked at any of the Quality of Service (QoS) stuff. I know this is normally used to protect bandwidth for VoIP however, I wonder if you can use it for other purposes. I am afraid this is a whild guess as I do not have experiance with QoS.
Regards
Richard
[sig][/sig]
You can obvously route http & ftp servers through specific interfaces and restrict them from others thus, maby have a priority interface for interactive users perhaps!
Have you looked at any of the Quality of Service (QoS) stuff. I know this is normally used to protect bandwidth for VoIP however, I wonder if you can use it for other purposes. I am afraid this is a whild guess as I do not have experiance with QoS.
Regards
Richard
[sig][/sig]
Hi
You could try the rate-limit command (CAR):
define an extended access-list for, let's say, http and ftp:
access-list 150 permit tcp any any eq www
access-list 150 permit tcp any any eq ftp
access-list 150 permit tcp any any eq ftp-data
then go to the interface:
interface serial0
rate-limit input access-group 150 1000000 8000 8000 conform-action transmit exceed-action drop
the rate-limit line is long, but it's the same line
what is says is that any traffic which is ok for access-list 150 would be limited to 1M on the input direction...
Arie
You could try the rate-limit command (CAR):
define an extended access-list for, let's say, http and ftp:
access-list 150 permit tcp any any eq www
access-list 150 permit tcp any any eq ftp
access-list 150 permit tcp any any eq ftp-data
then go to the interface:
interface serial0
rate-limit input access-group 150 1000000 8000 8000 conform-action transmit exceed-action drop
the rate-limit line is long, but it's the same line
what is says is that any traffic which is ok for access-list 150 would be limited to 1M on the input direction...
Arie
- Status
Similar threads
- Locked
- Question