asked on

Limit bandwidth on a single PC with Cisco ASA

I try to test the QOS possibilities of the ASA5520 so i've throttle my IP but i didn't seem to slow down

And in the config i've put this

hostname(config)# access-list myPC permit tcp host 10.6.18.40 any
hostname(config)# class-map myPC
hostname(config-cmap)# match access-list PC
hostname(config)# policy-map restrict_PC
hostname(config-pmap)# class myPC
hostname(config-pmap-c)# police output 256000 20000

service-policy restrict_PC interface outside

Is there anything wrong in my syntax ?

harbor235

How are you test throughput? you have defined 256K bps with max burst of 20K Bps.

Do the following;

show service-policy myPC, what do youo see? also look for ACL hits

-harbor235 ;}

cegepdematane

ASKER

sh service-policy interface outside

Interface outside:
Service-policy: restrict_PC
Class-map: myPC
Output police Interface outside:
cir 256000 bps, bc 20000 bytes
conformed 0 packets, 0 bytes; actions: transmit
exceeded 0 packets, 0 bytes; actions: drop
conformed 0 bps, exceed 0 bps

Voltz-dk

At the very least you seem to have a typo - myPC vs PC:

hostname(config)# access-list myPC permit tcp host 10.6.18.40 any
hostname(config-cmap)# match access-list PC

Voltz-dk

It's likely also an issue that you match again a 10 address on the outside interface.

cegepdematane

ASKER

Sorry it was a mistake there were no typo error in my config ..only here

you've right it should be applied on the inside interface ?

ASKER CERTIFIED SOLUTION

Voltz-dk

membership

This solution is only available to members.

To access this solution, you must be a member of Experts Exchange.

Start Free Trial