Solved

Rate limit specific traffic

Posted on 2011-02-27
5
456 Views
Last Modified: 2012-05-11
Hi,

I was wondering if there is a way to rate limit http, https and ftp traffic on a Cisco 2811 (running advanced ip services)?

Essentially the connection (bandwidth) is billed on the 95th percentile and users are downloading crap from the internet which is creating higher usage and I want to limit their download speed, whilst allowing the other applications (VPN, VoIP & RDP) un-restricted access.

Thanks


 
0
Comment
Question by:mark_06
  • 3
5 Comments
 
LVL 24

Accepted Solution

by:
rfc1180 earned 400 total points
ID: 34994173
You do not want to rate-limit, you are better off shaping traffic:

1Mbps traffic shape
access-list 100 permit tcp any eq 80 any
access-list 100 permit tcp any eq 443 any
access-list 100 permit tcp any eq 21 any

interface fast0/0
traffic-shape group 100 1000000 125000 125000

Billy
0
 
LVL 79

Assisted Solution

by:lrmoore
lrmoore earned 100 total points
ID: 34994188
Generic Traffic Shaping is the simplest method IMHO.
match on an access-list and rate limit.
I recommend that your acl includes the return download traffic as well as the sources.
http://www.cisco.com/en/US/docs/ios/12_0/qos/configuration/guide/qcgts.html
0
 
LVL 6

Author Comment

by:mark_06
ID: 34996718
how do I apply it on the return download traffic?
0
 
LVL 6

Author Comment

by:mark_06
ID: 34996756
worked it out!
0
 
LVL 6

Author Closing Comment

by:mark_06
ID: 34996762
thanks!
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
SD - WAN 2 43
The purpose of using BGP 33 71
SOFS cluser offline 3 40
access vs trunk with voice vlan 2 19
If your business is like most, chances are you still need to maintain a fax infrastructure for your staff. It’s hard to believe that a communication technology that was thriving in the mid-80s could still be an essential part of your team’s modern I…
When it comes to security, there are always trade-offs between security and convenience/ease of administration. This article examines some of the main pros and cons of using key authentication vs password authentication for hosting an SFTP server.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

911 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now