beautypg.com

Brocade Multi-Service IronWare QoS and Traffic Management Configuration Guide (Supporting R05.6.00) User Manual

Page 51

background image

Multi-Service IronWare QoS and Traffic Management Configuration Guide

37

53-1003037-02

Layer 2 ACL-based rate limiting

2

Rate limiting protocol traffic using Layer 2 inbound ACLs

Using interface level Layer 2 inbound ACLs, you can rate limit the following types of protocol traffic
by explicitly configuring a filter to match the traffic:

STP/RSTP/BPDU

MRP

VSRP

LACP

GARP

UDLP

To rate-limit all such control traffic enter commands such as the following:

Brocade(config)#access-list 402 permit any 0180.c200.0000 ffff.ffff.ffff any

etype any

Brocade(config)#access-list 402 permit any 0304.8000.0000 ffff.ffff.ffff any

etype any

Brocade(config)#access-list 402 permit any 0304.8000.0100 ffff.ffff.ff00 any

etype any

Brocade(config)#access-list 402 permit any 0180.c200.0002 ffff.ffff.ffff any

etype any

Brocade(config)#access-list 402 permit any 0180.c200.0020 ffff.ffff.fff0 any

etype any

Brocade(config)#access-list 402 permit any 00e0.5200.0000 ffff.ffff.ffff any

etype any

Brocade(config)#access-list 402 deny any any any etype any

Table 12

lists the protocols and their corresponding filters.

NOTE

The filters must have the specific destination MAC address as shown above in the configuration. You
can filter all protocols as shown in the previous configuration example above, or only specific
protocols.

Example of Layer 2 ACL to rate limit broadcast traffic

To define an ACL that rate limits broadcast traffic and forwards all other traffic without rate limiting,
enter commands such the following:

Brocade(config)#access-list 411 permit any ffff.ffff.ffff ffff.ffff.ffff

Brocade(config)#access-list 411 deny any any

TABLE 12

Filters for protocols

Protocol

Filter

STP/RSTP/BPDU

access-list 402 permit any 0180.c200.0000 ffff.ffff.ffff any etype any

MRP

access-list 402 permit any 0304.8000.0000 ffff.ffff.ffff any etype any

VSRP

access-list 402 permit any 0304.8000.0100 ffff.ffff.ff00 any etype any

LACP

access-list 402 permit any 0180.c200.0002 ffff.ffff.ffff any etype any

GARP

access-list 402 permit any 0180.c200.0020 ffff.ffff.fff0 any etype any

UDLP

access-list 402 permit any 00e0.5200.0000 ffff.ffff.ffff any etype any

See also other documents in the category Brocade Computer Accessories: