Follow us on...
Follow us on G+ Follow us on Twitter Follow us on Facebook Watch us on YouTube
Register
Results 1 to 10 of 10
  1. #1
    Status
    Offline
    herusm's Avatar
    Baru Gabung
    Join Date
    Jan 2008
    Posts
    15
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0

    limit BW di CISCO

    Dear All,

    mohon info untuk konfigurasi limit bandwith client di cisco, namun yang dilimit bukan interfacenya tapi ip setiap user.
    aku sudah mencari beberapa referensi di internet belum ketemu, yang ada hanya limit interfacenya,,,,

    mohon pencerahanya suhu2,,,,, Click here to enlarge

  2. #2
    Status
    Offline
    cupunech's Avatar
    Member Senior
    Join Date
    Mar 2008
    Location
    bogor
    Posts
    327
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    tipe cisco yang di pake..?

  3. #3
    Status
    Offline
    herusm's Avatar
    Baru Gabung
    Join Date
    Jan 2008
    Posts
    15
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    apa setiab CISCO settingannya beda ya bos?

  4. #4
    Status
    Offline
    akbar_lana's Avatar
    VIP Member
    Join Date
    Aug 2007
    Location
    Jakarta, Indonesia, Indonesia
    Posts
    735
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    1 (100%)
    pake Mikrotik aja bro, lebih simple..dan ada GUI nya juga...Click here to enlarge

  5. #5
    Status
    Offline
    herusm's Avatar
    Baru Gabung
    Join Date
    Jan 2008
    Posts
    15
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge yup aku mendukungmu bro, tapi masalahnya ini kantor pakek cisco. jadi kurang penmgalaman nih aku kl cisco, dan kebanyakan tutorial. limit via interface bukan ip usernya hehehehehe,,,,ada yang bisa bantu? thanks a lot

  6. #6
    Status
    Offline
    akbar_lana's Avatar
    VIP Member
    Join Date
    Aug 2007
    Location
    Jakarta, Indonesia, Indonesia
    Posts
    735
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    1 (100%)
    Click here to enlarge Originally Posted by herusm Click here to enlarge
    Click here to enlarge yup aku mendukungmu bro, tapi masalahnya ini kantor pakek cisco. jadi kurang penmgalaman nih aku kl cisco, dan kebanyakan tutorial. limit via interface bukan ip usernya hehehehehe,,,,ada yang bisa bantu? thanks a lot
    klo CISCO yang gw tau seh tuk limit per IP lewat marking firewall per IP nya...Click here to enlarge

    Mungkin ini bisa jadi referensi (COPAS dari forum sebelah) mengenai bandwidth limiting per user di Cisco:
    12. May 17, 2009 5:56 PM in response to: josephdoherty
    Re: How to rate-limit different IP's entering/leaving an Interface?

    Thanks for everybody's reply.



    I re-arranged some class-maps and ACL's around and got much better CPU performance.



    Rather than having the majority of packets entering and leaving the interface scroll through each class-map before hitting the class-default class, I created the very first class map to "match not" against the ACL's I was using for each customer.



    1/ Define a class-map to match all customers that are NOT to be rate-limited:



    class-map match-all DEFAULT-TRAFFIC

    description Match all customers that are NOT to be rate limited

    match not access-group name ACL-TCS-200338

    match not access-group name ACL-TCS-200208

    match not access-group name ACL-TCS-205593

    match not access-group name ACL-TCS-205679

    match not access-group name ACL-TCS-200441

    match not access-group name ACL-TCS-200005

    match not access-group name ACL-TCS-205560



    2/ Apply this new class-map as the FIRST class to be looked at inside the policy-map.



    policy-map DEFAULT-RATE-LIMIT

    class DEFAULT-TRAFFIC

    class CLASS-TCS-200005

    police 2000000 375000 750000 conform-action transmit

    exceed-action transmit violate-action drop

    class CLASS-TCS-200208

    police 2000000 375000 750000 conform-action transmit

    exceed-action transmit violate-action drop

    class CLASS-TCS-200441

    police 4000000 750000 1500000 conform-action transmit

    exceed-action transmit violate-action drop

    class CLASS-TCS-200338

    police 4000000 750000 1500000 conform-action transmit

    exceed-action transmit violate-action drop

    class CLASS-TCS-205679

    police 4000000 750000 1500000 conform-action transmit

    exceed-action transmit violate-action drop

    class CLASS-TCS-205560

    police 4000000 750000 1500000 conform-action transmit

    exceed-action transmit violate-action drop

    class CLASS-TCS-205593

    police 3000000 562500 1125000 conform-action transmit

    exceed-action transmit violate-action drop



    Doing it this way didn't have any impact on the CPU and surprised me somewhat.



    I then googled around and found the importance of structuring your ACL's to get better CPU performance, so I redid the ACL's under class-map DEFAULT-TRAFFIC and instead of having a separate ACL per customer to "match not" with, I put all of the customers into one big ACL.



    ip access-list extended ACL-DEFAULT

    remark ACL-TCS-200338

    permit ip host x.x.x.

    remark ACL-TCS-200208

    permit ip host x.x.x.x

    remark ACL-TCS-205593

    permit ip host x.x.x.x

    remark ACL-TCS-205679

    permit ip host x.x.x.x

    remark ACL-TCS-200005

    permit ip host x.x.x.x

    remark ACL-TCS-205560

    permit ip host x.x.x.x

    !

    class-map match-all DEFAULT-TRAFFIC

    match not access-group name ACL-DEFAULT



    Doing it this way caused a reduction in CPU by 10%.



    Thanks.



    Andy
    Click here to enlarge

  7. #7
    nuxer
    nuxer's Avatar
    ok saya baca dan coba mengerti tapi....kok endak ngerti2x yah Click here to enlarge
    Click here to enlarge

  8. #8
    Status
    Offline
    akbar_lana's Avatar
    VIP Member
    Join Date
    Aug 2007
    Location
    Jakarta, Indonesia, Indonesia
    Posts
    735
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    1 (100%)
    Click here to enlarge Originally Posted by nuxer Click here to enlarge
    ok saya baca dan coba mengerti tapi....kok endak ngerti2x yah Click here to enlarge
    Click here to enlarge
    ydah bro klo ga ngerti di ubah aja topologinya menjadi kaya gini:

    CISCO ------ Mikrotik (Bridge + Limiter) -------- LAN

    tuh cara gampang ngelimit client....Click here to enlargeClick here to enlargeClick here to enlarge

  9. #9
    Status
    Offline
    iveco's Avatar
    Baru Gabung
    Join Date
    Nov 2009
    Posts
    2
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Setubuh.. good idea Click here to enlarge

  10. #10
    Status
    Offline
    Akangage's Avatar
    Administrator
    Join Date
    Aug 2007
    Location
    Daerah Khusus Ibukota Jakarta, Indonesia
    Posts
    4,195
    Reviews
    Read 0 Reviews
    Downloads
    210
    Uploads
    87
    Feedback Score
    0
    Sory boz disini buat bahas MikroTik, kalo mau tanya CisCo bukan disini tempatnya, Trit Closed

 

 

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Cisco 3600xl
    By purimedia in forum MikroTik Products
    Replies: 0
    Last Post: 24-11-2009, 10:16
  2. Jual Cisco Asa 5520 Bun K9
    By harry in forum MikroTik Products
    Replies: 1
    Last Post: 16-11-2009, 17:41
  3. mau tanya buat rule utk limit dan tidak limit
    By onnymikrotik in forum General Networking
    Replies: 7
    Last Post: 13-01-2009, 11:15
  4. [WTS] Cisco WIC-1ENET
    By GajahOling in forum Others Hardware
    Replies: 10
    Last Post: 29-11-2008, 12:32

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •