Solved

Rate limit specific traffic

Posted on 2011-02-27
5
460 Views
Last Modified: 2012-05-11
Hi,

I was wondering if there is a way to rate limit http, https and ftp traffic on a Cisco 2811 (running advanced ip services)?

Essentially the connection (bandwidth) is billed on the 95th percentile and users are downloading crap from the internet which is creating higher usage and I want to limit their download speed, whilst allowing the other applications (VPN, VoIP & RDP) un-restricted access.

Thanks


 
0
Comment
Question by:mark_06
  • 3
5 Comments
 
LVL 24

Accepted Solution

by:
rfc1180 earned 400 total points
ID: 34994173
You do not want to rate-limit, you are better off shaping traffic:

1Mbps traffic shape
access-list 100 permit tcp any eq 80 any
access-list 100 permit tcp any eq 443 any
access-list 100 permit tcp any eq 21 any

interface fast0/0
traffic-shape group 100 1000000 125000 125000

Billy
0
 
LVL 79

Assisted Solution

by:lrmoore
lrmoore earned 100 total points
ID: 34994188
Generic Traffic Shaping is the simplest method IMHO.
match on an access-list and rate limit.
I recommend that your acl includes the return download traffic as well as the sources.
http://www.cisco.com/en/US/docs/ios/12_0/qos/configuration/guide/qcgts.html
0
 
LVL 6

Author Comment

by:mark_06
ID: 34996718
how do I apply it on the return download traffic?
0
 
LVL 6

Author Comment

by:mark_06
ID: 34996756
worked it out!
0
 
LVL 6

Author Closing Comment

by:mark_06
ID: 34996762
thanks!
0

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Meet the world's only “Transparent Cloud™” from Superb Internet Corporation. Now, you can experience firsthand a cloud platform that consistently outperforms Amazon Web Services (AWS), IBM’s Softlayer, and Microsoft’s Azure when it comes to CPU and …
I had an issue with InstallShield not being able to use Computer Browser service on Windows Server 2012. Here is the solution I found.
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

733 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question