Rate Limiting
NOTE: The deny option is not applicable to rate limiting. Always specify permit when configuring an ACL for use in a rate limiting rule.
Syntax: [no]
NOTE: For complete syntax descriptions for standard and extended ACLs, see “Using Access Control Lists (ACLs)” on page
Here is the syntax for rate limit ACLs.
Syntax: [no]
The <num> parameter specifies the ACL number.
The
To specify a MAC address, enter the address in the following format: xxxx.xxxx.xxxx.
To specify an IP precedence, specify one of the following:
•0 – The ACL matches packets that have the routine precedence.
•1 – The ACL matches packets that have the priority precedence.
•2 – The ACL matches packets that have the immediate precedence.
•3 – The ACL matches packets that have the flash precedence.
•4 – The ACL matches packets that have the flash override precedence.
•5 – The ACL matches packets that have the critical precedence.
•6 – The ACL matches packets that have the internetwork control precedence.
•7 – The ACL matches packets that have the network control precedence.
To specify a mask value for a set of IP precedence values, enter mask followed by a
The precedence values are in an
Bit position | 8 | 7 | 6 | 5 | 4 | 3 | 2 | 1 |
|
|
|
|
|
|
|
|
|
Precedence | 7 | 6 | 5 | 4 | 3 | 2 | 1 | 0 |
|
|
|
|
|
|
|
|
|
Bit pattern | 0 | 0 | 1 | 1 | 0 | 1 | 0 | 0 |
|
|
|
|
|
|
|
|
|
Then, reading the digits from right to left, convert the number to hexadecimal. In this case, 00110100 binary becomes 0x34. Enter the mask as mask 34.
For simplicity, you can convert the digits in groups of four bits each.
For example, you can convert bits 1 – 4 (binary 0100) to get hexadecimal “4” for the right digit. Then convert bits 5 – 8 (binary 0011) to get hexadecimal “3” for the left digit. The result is “34”.
Alternatively, you can enter the entire
4 - 15