?
Solved

limiting bandwidth on a particular VLAN

Posted on 2009-05-04
1
Medium Priority
?
1,504 Views
Last Modified: 2012-05-06
I have a cisco catalyst 4506 switch with a supervisor IV engine.  We are looking to limit the bandwidth of a particular vlan that is coming into the switch.  We share a 5 MBPS connection with 2 other entities.  They come into our 4506 via fiber and then thru copper to our ISP's router.  They are on their own vlan(Vlan 902).  Since they are a school they are always using up all available bandwidth and the natives (my people) are getting upset at the fact that Dial up internet is faster.

My question is how do i limit the total amount of bandwidth on that vlan to only 1.5 mbps total for that vlan.  I just want them to be limited to that amount and that amount only.  We would then have the remaining 3.5 mbps to divide up amongst us and the other entity whom need it more.
0
Comment
Question by:pauljmiller
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 3

Accepted Solution

by:
yegs2000 earned 1500 total points
ID: 24301620
So there are two ways you can do this. You can use the "Rate limit" command which effectively drops all packets that overflow the amount of bandwidth you set.

You can also use the "traffic shape" command which will buffer into memory packets that exceed the amount of bandwidth you specify.

Here is a link that you can use to see what command is better suited to you:

http://www.cisco.com/en/US/tech/tk543/tk545/technologies_tech_note09186a00800a3a25.shtml

I use these commands on a network for a small business (the small business shares a connection with a user in an attached apartment and the business didnt want the user in the apartment hogging the bandwidth at peak business hours)

This command is implemented on the interface closest to the traffic in this case. (Not sure how that would work, if you would implement this on the vlan itself or the port connected to the backbone/uplink to the switch)

!
rate-limit input access-group 123 384000 256000 512000 conform-action transmit exceed-action drop
!
! The access list that corresponds to this is as follows:
!
access-list 123 permit ip 192.168.1.0 0.0.0.63 any time-range WrkWkDay


So what this is doing is limiting the amount of upload the specified range of IP's can transmit into that interface.

For limiting download, I used the traffic shape command as seen below:

!
traffic-shape group 121 4010000 96240 96240 1000
!
! The corresponding access list
!
access-list 121 permit ip any 192.168.1.0 0.0.0.63 time-range WrkWkDay
!

So that traffic shape command is basically saying any address sending to 192.168.1.0/27 will be limited to about 4000kbps.

For the rate limit command, it's saying that 192.168.1.0/27 can send to any device but at a maximum of about 384kbps.
---


Hope this helps! Let me know if you need anything else.

-Yegs
0

Featured Post

Get MySQL database support online, now!

At Percona’s web store you can order your MySQL database support needs in minutes. No hassles, no fuss, just pick and click. Pay online with a credit card.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When it comes to security, there are always trade-offs between security and convenience/ease of administration. This article examines some of the main pros and cons of using key authentication vs password authentication for hosting an SFTP server.
When you try to share a printer , you may receive one of the following error messages. Error message when you use the Add Printer Wizard to share a printer: Windows could not share your printer. Operation could not be completed (Error 0x000006…
Internet Business Fax to Email Made Easy - With  eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, f…
Monitoring a network: how to monitor network services and why? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the philosophy behind service monitoring and why a handshake validation is critical in network monitoring. Software utilized …
Suggested Courses

801 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question