Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 827
  • Last Modified:

Dividing ISP bandwidth using traffic policing/shaping

Hi! Hoping to find out what the best practice is for this situation:

We're getting a 100mbps link from our ISP and would like to split it between three routers servicing their respective LANs.

Router1 should be able to use up to 70mbps
Router2 should be able to use up to 20mbps
Router3 should be able to use up to 10mbps

Our initial thought is to use a managed switch like a HP 9304M or Cisco Catalyst and rate-limit the ports.  

However while rate-limiting (i think it's called policing on the Cisco side) works both inbound/outbound, it seems to simply drop packets after the rate limit is hit, which seems to be really bad for traffic like voip or videoconferencing.

On the Cisco side traffic-shaping looks to be the better solution, but it only works outbound?

We're thus looking at using the Adaptive Rate Limiting feature on the HP switch which apparently will still drop packets once the rate limit is reached, but we can specify certain traffic like SIP to be able to pass through unmolested.  

Is this the best solution for this case, or is there a better way to do this (with different hardware perhaps)?
0
smocohiba
Asked:
smocohiba
1 Solution
 
Aaron TomoskyTechnology ConsultantCommented:
Policing just drops packets. Shaping does a better job but at the cost of CPU. Here are some good examples
http://packetlife.net/blog/2008/jul/30/policing-versus-shaping/
0

Featured Post

Free Backup Tool for VMware and Hyper-V

Restore full virtual machine or individual guest files from 19 common file systems directly from the backup file. Schedule VM backups with PowerShell scripts. Set desired time, lean back and let the script to notify you via email upon completion.  

Tackle projects and never again get stuck behind a technical roadblock.
Join Now