Dear all, I have some Q for rate-limit:
I have see the help from router and having some confuse for it: rate-limit input conform-action transmit exceed-action drop First of all, I want to know that if I want to limit particular interface to 2M Max, which of the following is correct? option 1) or 2)? 1) rate-limit input 2000000 6000 6000 conform-action transmit exceed-action drop (the reason for this answer as 2000000 + 6000*8 = 2M) 2) rate-limit input 2048000 256000 256000 conform-action transmit exceed-action drop (the reason for this answer as 256000*8 = 2M) Normally I use rate-limit to test whether our customer is hacked by outside (especially UDP), is it a good way? I don't want to enable the "debug all" as it will make my router hang.... The config is like this (limit udp traffic to 64k max and logging, I first suppose option2 is correct) rate-limit input access-group 102 64000 8000 8000 conform-action transmit exceed-action drop (apply on customer serial interface which connected with my router) access-list 102 permit udp any any log Just ask again, is it a correct? Also is it a good way to limit the UDP traffic in case it happened? If it is correct, I can use rate-limit to control particular networks BW? Am I correct? Thx all again if you help any input...... Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=58653&t=58653 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
