Cisco C3560 switch - bandwidth control

lordpassat · Sep 26, 2018

Hi,

I would like to start off by saying that I am no tech expert like many of your here and my question will probably seem very simple.

I have a Cisco 3560-C-8PC-S switch (15.2(2)E8 used in a home environment and I have a single goal:

I would like to limit the maximum up/download speed for a certain LAN port.

I have done my homework and Googled for days trying to understand the posts that to me seemed overly complex and most are described using Telnet connection. Although I can login via telnet, instead of the CLI I would like to doing everything through the Cisco Network Assistant app (v6.3).

While playing around with the QoS / Rate Limit functions I managed to find a way to throttle the download speed for LAN port 1. However, the upload was not getting throttled, it was still much higher speed than the download. I would greatly appreciate the help of one of the many experts, if he/she could explain what needs to be done using the Network Assistant software to set this up properly.

Thank you so much in advance!

bill001g · Sep 26, 2018

Apply a service policy inbound on the port that has a police statement set to the value you want.

lordpassat · Sep 26, 2018

bill001g :

Thanks for your reply.. however, like I said I don't have a lot of experience working with switches so I do not really know how set the things that you wrote.

If you could give me some guidelines how I can set this up using Cisco Network Assistant, I would greatly appreciate it!

Ps: I tried to check out QoS / Policies and configured a QoS policy but when I had to add a Class and I had to chose from DSCP / IP Precedence / ACL ... I was practically lost. :/

bill001g · Sep 26, 2018

mls qos

ip access-list extended xxx
permit ip any any

class-map match-all limitport
match access-group name xxx

policy-map portlimit
class limitport
police 10000000 100000 exceed-action drop

interface GigabitEthernet0/1
service-policy input portlimit

lordpassat · Sep 26, 2018

bill001g :

Fantastic, thank you very much. Given that I am not an expert I am happy I managed to follow your steps and it works. :bounce:

Am I right that this only limits the upload speed for the given port and I still need to set Rate Limit to throttle the download speed? That I can do already, I just wanted to double check that the policy you sent me was not supposed to affect the download as well.

Two last questions if you allow me:

1. "police 10000000 100000 exceed-action drop"

The 10,000 for burst byte is enough? With all honesty, I do not know what it actually does but when I googled, I saw that many were saying it's best to keep it at maximum... was that nonsense?

2. For Rate Limit, the smallest value I can set is '10'. That results in 6mpbs upload speed. What can I do if I want to further reduce it to let's say appoximately 2 mpbs? (my max UL speed is 99 mbps).

Thank you very much once again, I really appreciate your prompt help.

bill001g · Sep 26, 2018

You can experiment with the burst rate. You need to keep it as low as you can without it causing a artificial limit.

I am not 100% sure I did that correctly, i just keyed it in I did not put it in a actual switch. If I did this correctly it should limit to 10mbits. I think you can default the burst rate. I forget these details when I do not have a actual switch to key it in on. The ? option shows you lots of stuff.

Just apply a different policy outbound. You can use police or shape on a outbound policy. I forget why you do not use the ratelimit.

I forget many thing now that I retired it seems.

lordpassat · Sep 26, 2018

Your instructions were perfect and super helpful. There were smaller bits I had to figure out but that's because I no nothing about these. I have only dealt with household routers before so working with a Cisco switch is like sailing out to the wild seas for me... And yes, I did use the ? command to see what each option does.

> You can experiment with the burst rate. You need to keep it as low as you can without it causing a artificial limit.

Don't forget, I have zero experience in advanced networking... sorry but I don't know how I can tell if I am causing an artificial limit or how I experiment with it.

> I am not 100% sure I did that correctly, i just keyed it in I did not put it in a actual switch. If I did this correctly it should limit to 10mbits.
Yes, it limits the upload speed to 10mbits (actually, only 2mbits, because that's what I wanted to set so I used 2000000 as value).

> Just apply a different policy outbound. You can use police or shape on a outbound policy.
Any chance you can help me do that? Looking at the commands you sent me, I cannot see which part is which sets that it's for inbound or outbound.

> I forget why you do not use the ratelimit.
Because Rate Limit only throttles the download speed on that port and the upload is not affected by Rate Limit - that's what I found via Googling.

Thank you!

bill001g · Sep 26, 2018

You could apply exactly the same policy if you wanted by using
service-policy output

on the ethernet interface.

In general you should use shaping rather than policing on a output policy. It give a much smother and better traffic control. It has a very similar command format to the police command.

You can make massively complex policies with this stuff with mulitple policier and shaper based on traffic markings and/or ip address ranges. That is partially why it is so complex because what you want to do is rather simple but you still must configure a bunch of stuff you are not really going to use.

lordpassat · Sep 27, 2018

bill001g :

Thanks once again. As I am completely unfamiliar with all this, could I please kindly ask you to send me the commands I need to go through to use the shaping instead of the policy.

Sorry to bother you with such novice questions...

bill001g · Sep 27, 2018

This simplest form is shape average xxxxxxx. This explain the difference between shape and police

https://www.cisco.com/c/en/us/support/docs/quality-of-service-qos/qos-policing/19645-policevsshape.html

lordpassat · Sep 28, 2018

bill001g :

Thank you. I am travelling for a few days but when I am back I will read into this. I will let you know if I managed.

Thanks!

Search

Cisco C3560 switch - bandwidth control

lordpassat

bill001g

bill001g

Titan

lordpassat

bill001g

Titan

lordpassat

bill001g

Titan

lordpassat

bill001g

Titan

lordpassat

bill001g

Titan

lordpassat

TRENDING THREADS

Latest posts

Moderators online

Share this page