ryezak
Technical User
- Jul 1, 2008
- 256
Which model of router and IOS release support the Committed ACcess rate feature?
Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations gkittelson on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
Which routers support CAR Traffic shaping 1
- Thread starter ryezak
- Start date
- Status
mikedudeha
Technical User
I don't know all of the models that do or don't, but I have done CAR on many of the different ones, particularly older ones (3+ years old). Which models do you have?
Also, you can check to see if your IOS (which is what you want, not router platform necessarily) supports whatever feature you have a question about at Cisco Feature Navigator...
It gives you the option of "Search by Feature" as well as others (platform, image name, feature set, etc.).
/
It gives you the option of "Search by Feature" as well as others (platform, image name, feature set, etc.).
/
- Thread starter
- #5
- Thread starter
- #7
-
1
- #8
You set CAR up, point it to an ACL, and specify IP address/ranges/subnets and protocols (if you wish, or just "permit ip") in said ACL, and in the CAR input statement, set the limits, and set the conform action and exceed action, and set the same with CAR output statement, depending on which direction you want to rate limit (or both directions). That's how it is done, not "per IP address", per se...
Minue---tell him about NBAR (NOT being sarcastic! It could help!).
/
Minue---tell him about NBAR (NOT being sarcastic! It could help!).
/
- Thread starter
- #11
ryezak
Technical User
- Jul 1, 2008
- 256
We have a Tranzeo Wi Fi network. About 30 Access Points.
All in Bridging mode.
At the remote ends are small linksys 4 port routers running DHCP and Nat.
I have an E10 to the ISP.
I want to upgrade the router that directly connects to the ISP.
Also I want to restrict or police the traffic I think on a mac or vlan basis. Like perhaps 3 vlans and shape the traffic so that some get 2meg others 3 and others 5meg.
Will my 1841 security IOS K9 do this
and is Committed Access rate the best way or is there a better easier way?
thanks
All in Bridging mode.
At the remote ends are small linksys 4 port routers running DHCP and Nat.
I have an E10 to the ISP.
I want to upgrade the router that directly connects to the ISP.
Also I want to restrict or police the traffic I think on a mac or vlan basis. Like perhaps 3 vlans and shape the traffic so that some get 2meg others 3 and others 5meg.
Will my 1841 security IOS K9 do this
and is Committed Access rate the best way or is there a better easier way?
thanks
Hello
This can be done,with some effort.It would be best to use class-maps and policed be class instead of using "CAR" that isn't very flexible.You will need to match traffic on incoming interfaces,if the VLAN's are terminating on the router,if not match by subnet.
You mention "shape traffic" do you want to shape or police ?In any case,we should be able to post you some example.
Regards
This can be done,with some effort.It would be best to use class-maps and policed be class instead of using "CAR" that isn't very flexible.You will need to match traffic on incoming interfaces,if the VLAN's are terminating on the router,if not match by subnet.
You mention "shape traffic" do you want to shape or police ?In any case,we should be able to post you some example.
Regards
- Thread starter
- #13
ryezak
Technical User
- Jul 1, 2008
- 256
At this point I am open to suggestions. I was hoping to provide some bursting. So that it does not completely slow down the network with re broadcasting dropped packets.
Shaping vs policing. Which would be more effective for what I am trying to accomplish?
Thanks.
Shaping vs policing. Which would be more effective for what I am trying to accomplish?
Thanks.
Hello
Shaping is more softer,whilst police is harsh.You will have to know the kind of data that's on your network to decide.I would say if your'e worried about re-trasmission go with the shaping.
In the end if your real goal is to guarantee bandwith for certain users and not restrict users to a pre-defined limit.You should just do a CBWFQ policy,where all the classes are able to use the bandwith when it's available.But as soon as there's congestion the bandwith will get divide as you specified.Please advice,so as that we can send you a sample conf.
Regards
Shaping is more softer,whilst police is harsh.You will have to know the kind of data that's on your network to decide.I would say if your'e worried about re-trasmission go with the shaping.
In the end if your real goal is to guarantee bandwith for certain users and not restrict users to a pre-defined limit.You should just do a CBWFQ policy,where all the classes are able to use the bandwith when it's available.But as soon as there's congestion the bandwith will get divide as you specified.Please advice,so as that we can send you a sample conf.
Regards
- Thread starter
- #15
Hello
This is a basic example to let you get the idea.But I need to need if you have different subnet or VLAN's terminating on the router,so as to design the class-maps .
The policy map normally reserve 25% of the actually bandwith for management and the default class.So maybe the bandwith command will give an error if you try to reserve all 10Mbps.Let me know if it does.
class-map match-any GOLD
match access-group 101
class-map match-any SILVER
match access-group 102
class-map match-any BRONZE
match access-group 103
policy-map MYPOLICY
class GOLD
bandwidth 4000
class SILVER
bandwidth 3000
class BRONZE
bandwidth 3000
access-list 101 permit tcp any 192.168.1.0 0.0.0.255 any
access-list 102 permit tcp any 192.168.2.0 0.0.0.255 any
access-list 103 permit tcp any 192.168.3.0 0.0.0.255 any
interface Serial0/0/0
description WAN
bandwidth 10000
service-policy output MYPOLICY
Regards
This is a basic example to let you get the idea.But I need to need if you have different subnet or VLAN's terminating on the router,so as to design the class-maps .
The policy map normally reserve 25% of the actually bandwith for management and the default class.So maybe the bandwith command will give an error if you try to reserve all 10Mbps.Let me know if it does.
class-map match-any GOLD
match access-group 101
class-map match-any SILVER
match access-group 102
class-map match-any BRONZE
match access-group 103
policy-map MYPOLICY
class GOLD
bandwidth 4000
class SILVER
bandwidth 3000
class BRONZE
bandwidth 3000
access-list 101 permit tcp any 192.168.1.0 0.0.0.255 any
access-list 102 permit tcp any 192.168.2.0 0.0.0.255 any
access-list 103 permit tcp any 192.168.3.0 0.0.0.255 any
interface Serial0/0/0
description WAN
bandwidth 10000
service-policy output MYPOLICY
Regards
- Thread starter
- #17
ryezak
Technical User
- Jul 1, 2008
- 256
So with my limited knowledge on shaping...looks like we are using the access list to control the limit on traffic?
What if I wanted to use a vlan? Just change the acl?
Could you include a snippet of code for using vlans as well.
I am looking at router on a stick for my gateway with the physical interface being used with several subinterfaces?
Hope this makes sense.
Thanks again for the GREAT info.
What if I wanted to use a vlan? Just change the acl?
Could you include a snippet of code for using vlans as well.
I am looking at router on a stick for my gateway with the physical interface being used with several subinterfaces?
Hope this makes sense.
Thanks again for the GREAT info.
You should be able to match on the interface with the command "match input-interface"
class-map match-any GOLD
match input-interface fastethernet0/0.1
class-map match-any SILVER
match input-interface fastethernet0/0.2
class-map match-any BRONZE
match input-interface fastethernet0/0.3
policy-map MYPOLICY
class GOLD
bandwidth 4000
class SILVER
bandwidth 3000
class BRONZE
bandwidth 3000
interface Serial0/0/0
description WAN
bandwidth 10000
service-policy output MYPOLICY
Regards
class-map match-any GOLD
match input-interface fastethernet0/0.1
class-map match-any SILVER
match input-interface fastethernet0/0.2
class-map match-any BRONZE
match input-interface fastethernet0/0.3
policy-map MYPOLICY
class GOLD
bandwidth 4000
class SILVER
bandwidth 3000
class BRONZE
bandwidth 3000
interface Serial0/0/0
description WAN
bandwidth 10000
service-policy output MYPOLICY
Regards
- Status
Similar threads
- Locked
- Question