Things to note
1. Queuing: Can only be applied outbound of an interface.
2. Shaping: Can only be applied outbound of an interface.
3. Policing: Can be applied either inbound or outbound of an interface.
4. Policy can only be applied in one direction and on only one interface.
Classification
class-map match-all vlan10->http
match protocol http
match vlan 10
HTTP traffic originated from vlan 10 to AS 65002 will be classified
Policy
policy-map vlan10->http-policy
class vlan10->http
police 200000
class class-default
fair-queue
random-detect
HTTP traffic originated from vlan 10 will only allow to use 200kbps, if this is conformed the traffic is allowed else it’s dropped. Any other traffic that is not HTTP from Vlan10 will be applying WRED.
Apply policy on an interface
interface FastEthernet0/0
ip address 209.65.200.225 255.255.255.252
ip access-group public-only out
ip nat outside
ip virtual-reassembly
duplex auto
speed auto
service-policy output vlan10->http-policy
end
Show class-map
Class Map match-all vlan10->http (id 3)
Match protocol http
Match vlan 10
Class Map match-any class-default (id 0)
Match any
Show policy-map
Policy Map vlan10->http-policy
Class vlan10->http
police cir 200000 bc 6250
conform-action transmit
exceed-action drop
Class class-default
fair-queue
packet-based wred, exponential weight 9
class min-threshold max-threshold mark-probablity
———————————————————-
0 – – 1/10
1 – – 1/10
2 – – 1/10
3 – – 1/10
4 – – 1/10
5 – – 1/10
6 – – 1/10
7 – – 1/10
cyruslab 