What’s the password?
From: [email protected] [mailto:[email protected]] On
Behalf Of Don Ely
Sent: Wednesday, July 16, 2014 12:19 PM
To: ntsysadm
Subject: [NTSysADM] For any of you router jockey's out there...
If you ever find yourself needing to rate-limit specific traffic during
specific times of the day or week, here's a snippet on how to make that happen.
You can have multiple time ranges within a single time entry too... IP
addresses below are fakes ;)
time-range DATADOMAIN_REPLICATION
periodic daily 9:00 to 21:00 - based off of GMT per NTP config
!
!
ip access-list extended DATADOMAIN_OUT
remark DATADOMAIN_REPLICATION_HOSTS
permit tcp host 192.168.206.16 host 192.168.223.79
permit tcp any any eq 2051
permit tcp host 192.168.223.79 host 192.168.206.16
!
access-list 110 remark DATADOMAIN_TIME_BASED_REPLICATION
access-list 110 permit ip host 192.168.206.16 host 192.168.223.79 time-range
DATADOMAIN_REPLICATION
!
class-map match-all DATADOMAIN_IN
match access-group 110
!
policy-map DATADOMAIN_IN
class DATADOMAIN_IN
set dscp af11
!
class-map match-all DATADOMAIN_OUT
match dscp af11
!
policy-map MY_QOS
class DATADOMAIN_OUT
police 250000 conform-action transmit exceed-action drop
!
interface FastEthernet0/0 - connected to core network
service-policy input DATADOMAIN_IN
!
interface FastEthernet0/1 - connected to core network
service-policy input DATADOMAIN_IN
!
interface Multilink1
service-policy output MY_QOS
