Rate Limiting

187500 conform-action set-prec-transmit 5 exceed-action drop

The following rule applies to traffic that matches ACL 103. Like the previous rule, this rule drops packets received after the maximum number of conforming packets have been received. However, notice that this rule applies to traffic in the outbound direction.

HP9300(config-if-e1000-1/1)# rate-limit output access-group 103 1000000 100000 100000 conform-action set-prec-transmit 5 exceed-action drop

The following command configures a rule for all Ethernet traffic that does not match one of the ACLs used in the rules above.

HP9300(config-if-e1000-1/1)# rate-limit input 4000000 80000 120000 conform-action set-prec-transmit 5 exceed-action drop

When you make configuration changes, make sure you save them to the startup-config file. If the system resets for any reason or you reload the software, the configuration changes you make are reinstated only if they have been saved to the startup-config file. Enter the following command to save configuration changes:

HP9300(config-if-e1000-1/1)# write memory

You can enter this command from any configuration level of the CLI.

Commands for “Adaptive Rate Policy for a Specific MAC Address”

To configure the Adaptive Rate Limiting application described in “Adaptive Rate Policy for a Specific MAC Address” on page 4-7,enter the following commands.

The following command configures a rate limit ACL to characterize the traffic. In this case, the rate policy is for a specific host, so the rate limit ACL specifies a host MAC address.

HP9300(config)# access-list rate-limit 100 aaaa.bbbb.cccc

The following command changes the CLI to the configuration level for virtual interface ve2.

HP9300(config)# interface virtual ve2

The following command configures rule for inbound traffic that matches the rate limit ACL configured above. The rule sends traffic that conforms to the Normal Burst Size and drops traffic received after the maximum number of conforming bytes have been received.

The Average Rate for the rule is 8000000 bps. The Normal Burst Size is 640000 bytes, and the Excess Burst Size is 800000 bytes. Based on the Average Rate and Normal Burst Size values, the Committed Time Interval is 6.4/ 10ths of a second, or about 2/3 seconds.

HP9300(config-ve-2)# rate-limit input access-group ratelimit 100 4000000 320000 400000 conform-action transmit exceed-action drop

The following command saves the configuration changes:

HP9300(config-ve-2)# write memory

Commands for “Adaptive Rate Policy for a Port-Based VLAN”

To configure the Adaptive Rate Limiting application described in “Adaptive Rate Policy for a Port-Based VLAN” on page 4-8,enter the following commands.

The following command changes the CLI to the configuration level for port-based VLAN 2.

HP9300(config)# vlan 2

The following command configures a rule for all inbound Ethernet traffic on the VLAN’s ports. The rule applies to all Ethernet packets that come into the device on a port in VLAN 2.

HP9300(config-vlan-2)# rate-limit input 10000000 125000 187500 conform-action set­ prec-transmit 5 exceed-action set-prec-transmit 0

The following command saves the configuration changes:

HP9300(config-vlan-2)# write memory

4 - 19