Foundry NetIron M2404C and M2404F Metro Access Switches
Configuring ACLs (Rev. 03)
Overview
© 2008 Foundry Networks, Inc
Page 38 of 50
2.
Set the priority remarking policy (use the
qos policy priority
command in Global
Configuration mode).
3.
Apply the ACG on the incoming interface/VLAN with the
option
keyword (use the
ip access-
group
command in Interface/VLAN Configuration mode).
4.
Use the
rate-limit
command in
Interface VLAN ACG Configuration mode to apply the policy
settings on the incoming traffic.
For more information regarding the QoS configuration refer to chapter “
Configuring Quality of
Service (QoS)
”.
By default, the color marking of the packet is ignored (color-blind).
Command Syntax
device-name
(config-if
UU/SS/PP
acg
acl-num
)#
rate-limit single-rate
RATE
BURST
[
COMMITTED-BURST
]
BURST
[
EXCESS-BURST
] [
policy
{
dscp
|
priority
|
priority-dp
}] [
exceed-action mark-yellow
]
device-name
(config-if
UU/SS/PP
acg
acl-num
)#
no rate-limit
device-name
(config-vlan
VLAN-NAME
acg
acl-num
)#
rate-limit single-rate
RATE
BURST
[
COMMITTED-BURST
]
BURST
[
EXCESS-BURST
] [
policy
{
dscp
|
priority
|
priority-dp
}][
exceed-action mark-yellow
]
device-name
(config-vlan
VLAN-NAME
acg
acl-num
)#
no rate-limit
Argument Description
single-rate
Sets the rate limit to use the Single Rate Three Color Marker (RFC 2697).
RATE
Committed Information Rate (CIR) in Kbps.
The values, which can be
configured, are
64 kbps to 100 Mbps or up to 1 Gbps per Gigabit port, with
64 kbps granularity.
BURST
EXCESS-BURST
(Optional). Excess Burst Size (EBS) in Kbps.
COMMITED-BURST
Committed Burst Size (CBS) in Kbps. The range is 4KB, 8KB, 16KB,
32KB, 64KB, 128KB, 256KB, or 512KB (in Kilo-bytes).
exceed-action
mark-yellow
(Optional). The action to perform once the packet has been classified as
exceeding a particular rate limit. The packet is marked with the yellow
color. The packet is evaluated using WRED or Tail-drop, if none of them is
set, the packet is transmitted.
policy
(Optional). Sets the remarking policy according to the policy set by the
qos
policy dscp
and
qos policy priority
commands
in Global Configuration
mode.
dscp
(Optional). Remarks the DSCP, priority, transmit queue and drop
precedence level according to the policy set by the
qos policy dscp
command
in Global Configuration mode.
Note:
1.
This argument is effective only if the user sets the dscp remarking
policy (with the
qos policy dscp
command in Global Configuration
mode).
2.
Use of this argument consumes a high amount of ACL hardware
resources (up to 32 entries of the maximum 128 allowed for the ACL
conditions – see
Table 3
).