RE: [NTSysADM] For any of you router jockey's out there...

[Free, Bob]

42

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Michael B. Smith
Sent: Wednesday, July 16, 2014 9:28 AM
To: ntsysadm@lists.myitforum.com
Subject: RE: [NTSysADM] For any of you router jockey's out there...

What’s the password?

From: listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com> 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Don Ely
Sent: Wednesday, July 16, 2014 12:19 PM
To: ntsysadm
Subject: [NTSysADM] For any of you router jockey's out there...

If you ever find yourself needing to rate-limit specific traffic during 
specific times of the day or week, here's a snippet on how to make that happen. 
 You can have multiple time ranges within a single time entry too...  IP 
addresses below are fakes  ;)



time-range DATADOMAIN_REPLICATION
 periodic daily 9:00 to 21:00 - based off of GMT per NTP config
!
!
ip access-list extended DATADOMAIN_OUT
 remark DATADOMAIN_REPLICATION_HOSTS
 permit tcp host 
192.168.206.16<https://urldefense.proofpoint.com/v1/url?u=http://192.168.206.16/&k=4%2BViHuL0UtSJBpVrYi3EdQ%3D%3D%0A&r=Jek3QSvahmIrNAN1nuPfQA%3D%3D%0A&m=W5IMv%2FRCY81xyaSBiU%2BMjoXA9ns1Xnf1z1bmNPUM3QU%3D%0A&s=ab0adba3d34dc002ed550af672d1534897677c2aea5e805a2698b99b617d3475>
 host 
192.168.223.79<https://urldefense.proofpoint.com/v1/url?u=http://192.168.223.79/&k=4%2BViHuL0UtSJBpVrYi3EdQ%3D%3D%0A&r=Jek3QSvahmIrNAN1nuPfQA%3D%3D%0A&m=W5IMv%2FRCY81xyaSBiU%2BMjoXA9ns1Xnf1z1bmNPUM3QU%3D%0A&s=e6c9346baedfdc7a15a0ce16518edb507731589dde7c1beec97f0bc0789806ee>
 permit tcp any any eq 2051
 permit tcp host 
192.168.223.79<https://urldefense.proofpoint.com/v1/url?u=http://192.168.223.79/&k=4%2BViHuL0UtSJBpVrYi3EdQ%3D%3D%0A&r=Jek3QSvahmIrNAN1nuPfQA%3D%3D%0A&m=W5IMv%2FRCY81xyaSBiU%2BMjoXA9ns1Xnf1z1bmNPUM3QU%3D%0A&s=e6c9346baedfdc7a15a0ce16518edb507731589dde7c1beec97f0bc0789806ee>
 host 
192.168.206.16<https://urldefense.proofpoint.com/v1/url?u=http://192.168.206.16/&k=4%2BViHuL0UtSJBpVrYi3EdQ%3D%3D%0A&r=Jek3QSvahmIrNAN1nuPfQA%3D%3D%0A&m=W5IMv%2FRCY81xyaSBiU%2BMjoXA9ns1Xnf1z1bmNPUM3QU%3D%0A&s=ab0adba3d34dc002ed550af672d1534897677c2aea5e805a2698b99b617d3475>
!
access-list 110 remark DATADOMAIN_TIME_BASED_REPLICATION
access-list 110 permit ip host 
192.168.206.16<https://urldefense.proofpoint.com/v1/url?u=http://192.168.206.16/&k=4%2BViHuL0UtSJBpVrYi3EdQ%3D%3D%0A&r=Jek3QSvahmIrNAN1nuPfQA%3D%3D%0A&m=W5IMv%2FRCY81xyaSBiU%2BMjoXA9ns1Xnf1z1bmNPUM3QU%3D%0A&s=ab0adba3d34dc002ed550af672d1534897677c2aea5e805a2698b99b617d3475>
 host 
192.168.223.79<https://urldefense.proofpoint.com/v1/url?u=http://192.168.223.79/&k=4%2BViHuL0UtSJBpVrYi3EdQ%3D%3D%0A&r=Jek3QSvahmIrNAN1nuPfQA%3D%3D%0A&m=W5IMv%2FRCY81xyaSBiU%2BMjoXA9ns1Xnf1z1bmNPUM3QU%3D%0A&s=e6c9346baedfdc7a15a0ce16518edb507731589dde7c1beec97f0bc0789806ee>
 time-range DATADOMAIN_REPLICATION
!
class-map match-all DATADOMAIN_IN
 match access-group 110
!
policy-map DATADOMAIN_IN
 class DATADOMAIN_IN
  set dscp af11
!
class-map match-all DATADOMAIN_OUT
 match  dscp af11
!
policy-map MY_QOS
 class DATADOMAIN_OUT
    police 250000 conform-action transmit  exceed-action drop
!
interface FastEthernet0/0 - connected to core network
 service-policy input DATADOMAIN_IN
!
interface FastEthernet0/1 - connected to core network
 service-policy input DATADOMAIN_IN
!
interface Multilink1
 service-policy output MY_QOS


PG&E is committed to protecting our customers' privacy. 
To learn more, please visit http://www.pge.com/about/company/privacy/customer/