Quick Reference Guide
432 PowerConnect B-Series TI24X Configuration Guide
53-1002269-02
ACL-based rate limiting using traffic policies
17
1. Create a traffic policy. Enter a command such as the following.
PowerConnect(config)# traffic-policy TPDAfour rate-limit adaptive cir 10000
cbs 1600 pir 20000 pbs 4000 exceed-action drop
2. Create a new extended ACL entry or modify an existing extended ACL entry that references the
traffic policy.
Example
PowerConnect(config)# access-list 104 permit ip host 210.10.12.2 any
traffic-policy TPDAfour
3. Bind the ACL to an interface.
PowerConnect(config)# int e 7
PowerConnect(config-if-e7)# ip access-group 104 in
PowerConnect(config-if-e7)# exit
The above commands configure an adaptive rate limiting policy that enforces a guaranteed
committed rate of 10000 kbps on port e7 and allows bursts of up to 1600 bytes. It also enforces a
peak rate of 20000 kbps and allows bursts of 4000 bytes above the PIR limit. If the port receives
additional bits during a given one-second interval, the port drops all packets on the port until the
next one-second interval starts.
Syntax: [no] traffic-policy <TPD name> rate-limit adaptive cir <cir value> cbs <cbs value> pir <pir
value> pbs <pbs value> exceed-action <action> [count]
Syntax: access-list <num> permit | deny.... traffic policy <TPD name>
Syntax: [no] ip access-group <num> in
NOTE
For brevity, some parameters were omitted from the above access-list syntax.
The software allows you to add a reference to a non-existent TPD in an ACL statement and to bind
that ACL to an interface. The software does not issue a warning or error message for non-existent
TPDs.
Use the no form of the command to delete a traffic policy definition. Note that you cannot delete a
traffic policy definition if it is currently in use on a port. To delete a traffic policy, first unbind the
associated ACL.
<TPD name> is the name of the traffic policy definition. This value can be 8 or fewer alphanumeric
characters.
rate-limit adaptive specifies that the policy will enforce a flexible bandwidth limit that allows for
bursts above the limit.
<cir value> is the committed information rate in kbps. Refer to Table 70.
<cbs value> is the committed burst size in bytes. Refer to Table 70.
<pir value> is the peak information rate in kbps. Refer to Table 70.
<pbs value> is the peak burst size in bytes. Refer to Table 70.
exceed-action <action> specifies the action to be taken when packets exceed the configured
values. Refer to “Specifying the action to be taken for packets that are over the limit” on page 433.
The count parameter is optional and enables ACL counting. Refer to “ACL and rate limit counting”
on page 434.