ACL
³z¹LACL¨Ó¶i¦æ¬y¶q±±¨î¡AXOS¤ä´©¤FMeter¤ÎQoS Profile ¨âºØ¬y¶q¶ì«¬¤u¨ã¡C
º¥ý§ÚÌ¨Ó¬Ý¬Ý Meter ªº°µªk¡C
n³z¹LMeter¨Ó°µ¬y¶q¨î¡A´Nn«Ø¥ß¤@ÓMeter¡A³]©w¦n¸ÓMeterªº¬y¶q°t¸m«á¡A¦A³z¹LACL®M¥Î¨ì²Å¦X±ø¥óªº¨Ó·½ºÝ¡C
«Ø¥ßMeterªº«ü¥O¦p¤U¡C
create meter <Meter-Name>
°t¸m¸ÓMeterªº¬y¶q¶ì«¬¡C
configure meter <Meter-Name> {committed-rate cir [Gbps | Mbps | Kbps]} {max-burstsize burst-size [Kb | Mb]} {out-actions [drop | set-drop-precedence {dscp [none | dscp-value]}}
¬d¸ßMeterªº«ü¥O¦p¤U¡C
show meter <Meter-Name>
°²³]§ÚÌn«Ø¥ß¬y¶q¬°1MªºMeter m1¡A¨ä³]©w¦p¤U¡C
create meter m1 configure meter m1 committed-rate 1 M out-actions drop
µM«á«Ø¥ß®M¥ÎMeterªº ACL ÀɮסA¨Ò¦pingress_limit.pol¡C
vi ingress_limit.pol
entry ingress {
if {
#¥i¨Ì»Ý¨D°w¹ïIP¡AMAC¡AProtocolµ¥¡A³]©w¹LÂo±ø¥ó
} then {
Meter m1;
count c1;
}
}
«Ø¥ß¦nACL«á¡ACheck¤@¤UACL¤º®e¦³¨S¦³°ÝÃD¡H
check policy ingress_limit
³Ì«á¦A§âACL®M¥Î¦b¹ïÀ³ªºPort¤W¡A´N§¹¦¨¤FIngressªº¬y¶q¨î¤F¡C
configure access-list <ACL-Name> ports <Port-String> ingress
¨Ò¦p§ÚÌ¥i¥H§âingress_limit³o±øACL®M¥Î¦bPort 3¤W¡AµM«á³z¹L«ü¥O¥hÆ[¹î³oportªº¬y¶qÅܤơC
configure access-list ingress_limit ports 3 ingress
show ports 3 utilization
¡ô127KB´«ºâ°_¨Ó¬O1016Kb¡A¤]´N¬O1M¡F100MÀW¼eªº1%¤]¬O1M¡A¨âªÌ§k¦X¤@P¡C
*ACLªº³]©w¥i¥H°Ñ¦Ò³o¤@½g Access Control List (ACL)
³z¹L QoS Profile ·f°tACL°µ¬y¶q¨î¡A
°ò¥»¤W¸ò·f°tMeterªº¤è¦¡¬Û¦P¡A¥u¬O¬y¶qªº¶ì«¬¤£¬O¥ÑMeter¨Ó¶i¦æ¡A¦Ó¬O§ï¥ÑQoS Profile¨Ó°µ¡C
QoS Profileªº«Ø¥ß»P³]©w¡A¶¶¤l¦b±µ¤U¨ÓªºEgress¤è¦VQoSùئ³¤ñ¸û§¹¾ãªº»¡©ú¡A
¦b³oùØ¡A¶¶¤l¥u¬O²³æªº¥Ü½dQoS Profileªº³]©w¡A¨Ã®M¥Î¦bACL¤¤¨Ó¹ï²Ä3 port¶i¦æ¬y¶q¨î¡C
create qosprofile qp2
configure qosprofile qp2 committed_rate 1 M peak_rate 1 M Port 3
vi ingress_limit.pol
entry ingress {
if {
} then {
qosprofile qp2;
count c1;
}
}
check policy ingress_limit
configure access-list ingress_limit ports 3 ingress
±q¤Wz½d¨Ò¤£Ãøµo²{¡A³z¹LMeter©ÎQoS Profile·f°tACL¨Ó°µ¬y¶q±±¨î¡Aì«h¤W§¹¥þ¬Û¦Pªº¡A
¥u¦³¬y¶q¹LÂoªº¤u¨ã¤£¦P¦Ó¤w¡C