• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 224
  • Last Modified:

Cisco / Routers - how can i categorize a group of users/ip on my bgp router to set max bandwidth

Hello,

we have 200 users / Ip's and a pipe of 5 mb to the internet. It goes through a bgp router to the ISP. Internally we run EIGRP. Is there a way i can divide them in goups or range of IP's and set max bandwidth on these groups ?

thanx.
0
c_hockland
Asked:
c_hockland
1 Solution
 
ciscoml320Commented:
Hi
sounds like you need do implement traffic policing.  You can surely do that, assuming your internal network has an IP structure that can be easily referenced by some straight foward access-lists
look at a sample config below for an idea of the parts involved in this;

1. create access list defining the group of IPs you want to filter on this policy
2. create your class-map
3. define your policy ( here is the hard part in sizing up the rates properly)
4. apply your policy to the interface facing users (since you're interested in traffic FROM the internet  - you'd want to police traffic coming back to the users - so OUT of that interface facing your internal network)

start with that and see how you can scale it.

Of Course, for your edification, this is a great read:
http://www.cisco.com/en/US/tech/tk543/tk545/technologies_tech_note09186a00800a3a25.shtml
! Step1
ip access-list extended HOGS_ACL
 permit ip i.i.i.i m.m.m.m
 
!step 2
class-map match-all CLASS_HOGS
  match access-group name HOGS_ACL
 
!step 3
policy-map POLICY_HOGS
  class CLASS_HOGS
    police 4000000 100000 exceed-action drop
 
!step 4
interface GigabitEthernet0/2
 service-policy output POLICY_SLAP

Open in new window

0
 
c_hocklandAuthor Commented:
thnx , and sorry for the big delay.
0

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now