Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Chriss Miller on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

RATE-LIMIT Problem Cisco 3845 router

Status
Not open for further replies.
IPAX

IPAX

IS-IT--Management
Mar 24, 2008
6
Hi There,

Greetings. I've 3 cisco 3845 routers (R1,R2 & R3). R1's GI 0/0
is connected to internet and GI 0/1.1 for local lan, 1.98 to R3, 1.99 to R2. Running OSPF. one of my client is connected to
R2 and using internet. I wanted to rate-limit him, so i created an access-list permitting ip any client's ip and i rate limit R1 gi 0/0 input to that access group but rate limit not working.
what went wrong. help please.
 
Sort by date Sort by votes

My ROUTER config......




Building configuration...

Current configuration : 6975 bytes
!
version 12.4
service timestamps debug datetime msec localtime show-timezone
service timestamps log datetime msec localtime show-timezone
service password-encryption
!
hostname XXXXXXXXX
!
boot-start-marker
boot-end-marker
!
logging buffered 4096 debugging
enable secret 5 XXXXXXXXXXXXXXXXXXXXXXXXXX
!
aaa new-model
!
!
!
aaa session-id common
clock timezone
ip wccp version 1
ip wccp web-cache redirect-list 101
ip cef
!
!
!
!
ip flow-cache timeout active 1
ip domain name XXXXXXXXXXXX
ip name-server XXXXXXXX
ip name-server XXXXXXXX
voice-card 0
no dspfarm
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
username XXXXX password 7 XXXXXXXXXXX
!
!
!
!
!
interface Loopback0
ip address XXXXXXXXXX XXXXXXXXXXXXXX
!
interface GigabitEthernet0/0
ip address XXXXXXXXX XXXXXXXXXXXXXXX
rate-limit input access-group 120 400000 80000 80000 conform-action transmit exceed-action drop
rate-limit input access-group 121 16000 1500 2000 conform-action transmit exceed-action drop
rate-limit output access-group 140 144000 20000 20000 conform-action transmit exceed-action drop
ip route-cache flow
duplex auto
speed auto
media-type rj45
!
interface GigabitEthernet0/1
no ip address
ip wccp web-cache redirect in
ip route-cache flow
duplex auto
speed auto
media-type rj45
!
interface GigabitEthernet0/1.1
encapsulation dot1Q 1 native
ip address XXXXXXXXXXX XXXXXXXXXXX
ip access-group mynet in
ip wccp web-cache redirect in
ip nbar protocol-discovery

!
interface GigabitEthernet0/1.2
!
interface GigabitEthernet0/1.10
encapsulation dot1Q 10
ip address XXXXXXXXX XXXXXXXXXXXXX
!
interface GigabitEthernet0/1.98
description FOR_OSPF
encapsulation dot1Q 98
ip address XXXXXXXXXX XXXXXXXXXXXX
ip wccp web-cache redirect in
!
interface GigabitEthernet0/1.99
description FOR_OSPF
encapsulation dot1Q 99
ip address XXXXXXXXXXXXXXX XXXXXXXXXXX
ip wccp web-cache redirect in
!
router ospf 1
log-adjacency-changes
network XXXXXXXXXXX 0.0.0.255 area 0
network XXXXXXXXXXX 0.0.0.255 area 0
network XXXXXXXXXXX 0.0.0.0 area 0
network XXXXXXXXXXX 0.0.0.3 area 0
network XXXXXXXXXXX 0.0.0.3 area 0
network XXXXXXXXXXX 0.0.0.3 area 0
default-information originate always
!
router bgp XXXXXX
no synchronization
no bgp fast-external-fallover
bgp log-neighbor-changes
network XXXXXXXXXXXX mask 255.255.240.0
neighbor XXXXXXXXXXXXX remote-as 17494
neighbor XXXXXXXXXXXXX description eBGP WITH BTTB
neighbor XXXXXXXXXXXXX version 4
neighbor XXXXXXXXXXXXX soft-reconfiguration inbound
neighbor XXXXXXXXXXXXX prefix-list default in
neighbor XXXXXXXXXXXXX prefix-list announce out
no auto-summary
!
ip forward-protocol nd
ip route XXXXXXXXXXXXX XXXXXXXXXXXXXX Null0 250
!
ip flow-export source GigabitEthernet0/1
ip flow-export version 5
ip flow-export destination XXXXXXXXXXXXX XXXX
!
no ip http server
no ip http secure-server
!

!
!
ip prefix-list announce description Our allowed routing announcements
ip prefix-list announce seq 5 permit XXXXXXXXXXXXX/xx
ip prefix-list announce seq 20 deny 0.0.0.0/0 le 32
!
ip prefix-list default seq 5 permit 0.0.0.0/0
access-list 1 permit XXXXXXXXXXXXX
access-list 101 permit ip XXXXXXXXXXXXX XXXXXXXXXX any
access-list 120 permit tcp any host XXXXXXXXXXXXX
access-list 121 permit tcp any host XXXXXXXXXXXXX
access-list 121 permit tcp any host YYYYYYYYYYYYY
access-list 140 permit tcp host XXXXXXXXXXXXX any
snmp-server community *********** RW 1
snmp-server ifindex persist
snmp-server enable traps snmp authentication linkdown linkup coldstart warmstart
snmp-server enable traps vrrp
snmp-server enable traps ds1
snmp-server enable traps tty
snmp-server enable traps eigrp
snmp-server enable traps xgcp
snmp-server enable traps flash insertion removal
snmp-server enable traps ds3
snmp-server enable traps envmon
snmp-server enable traps icsudsu
snmp-server enable traps isdn call-information
snmp-server enable traps isdn layer2
snmp-server enable traps isdn chan-not-avail
snmp-server enable traps isdn ietf
snmp-server enable traps ds0-busyout
snmp-server enable traps ds1-loopback
snmp-server enable traps atm subif
snmp-server enable traps bgp
snmp-server enable traps bstun
snmp-server enable traps bulkstat collection transfer
snmp-server enable traps cnpd
snmp-server enable traps config-copy
snmp-server enable traps config
snmp-server enable traps dial
snmp-server enable traps dlsw
snmp-server enable traps dsp card-status
snmp-server enable traps entity
snmp-server enable traps event-manager
snmp-server enable traps frame-relay
snmp-server enable traps frame-relay subif
snmp-server enable traps hsrp
snmp-server enable traps ipmobile
snmp-server enable traps ipmulticast
snmp-server enable traps mpls ldp
snmp-server enable traps mpls traffic-eng
snmp-server enable traps mpls vpn
snmp-server enable traps msdp
snmp-server enable traps mvpn
snmp-server enable traps ospf state-change
snmp-server enable traps ospf errors
snmp-server enable traps ospf retransmit
snmp-server enable traps ospf lsa
snmp-server enable traps ospf cisco-specific state-change nssa-trans-change
snmp-server enable traps ospf cisco-specific state-change shamlink interface-old
snmp-server enable traps ospf cisco-specific state-change shamlink neighbor
snmp-server enable traps ospf cisco-specific errors
snmp-server enable traps ospf cisco-specific retransmit
snmp-server enable traps ospf cisco-specific lsa
snmp-server enable traps pim neighbor-change rp-mapping-change invalid-pim-message
snmp-server enable traps pppoe
snmp-server enable traps cpu threshold
snmp-server enable traps rsvp
snmp-server enable traps rtr
snmp-server enable traps stun
snmp-server enable traps syslog
snmp-server enable traps l2tun session
snmp-server enable traps vsimaster
snmp-server enable traps vtp
snmp-server enable traps voice poor-qov
snmp-server enable traps voice fallback
snmp-server enable traps dnis
snmp-server host XXXXXXXXXXXXX public
!
!
!
control-plane
!
!
!
!
!
!
!
!
!
line con 0
password 7 *************
line aux 0
line vty 0 4
password 7 ************
transport preferred none
transport input telnet ssh
transport output telnet ssh
!
scheduler allocate 20000 1000
!
end
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

B
  • Locked
  • Question
Cisco IP phone 7841 8851 unable to forward all to external number
Replies
0
Views
201
badwolf1686
B
pbxcomm
  • Locked
  • Question
CISCO VG450
Replies
1
Views
555
nt8d09
nt8d09
CPM86
  • Question
Cisco isr 4331 with IOS and sip busy fail over to 2nd sip number on pbx?
Replies
0
Views
207
CPM86
CPM86
Skip Rango
  • Locked
  • Question
how to backup cisco sg500-52p switch
Replies
1
Views
552
madwok
madwok
Jared R
  • Locked
  • Question
Cisco UC320W Paging Help
Replies
0
Views
520
Jared R
Jared R

Part and Inventory Search

Sponsor

Back
Top