Section 8.2 Question

I am just wondering if using the rate-limit command at the interface level would also be a correct alternative solution than the one in the solutions guide?



  • HI CT,

    I have done it this way using rate-limit, But I do not know if is correct solution. I hope that we get some feedback from other members.

    Rack1R4#sh run int e1/0
    Building configuration...

    Current configuration : 175 bytes
    interface Ethernet1/0
    ip address
    rate-limit output access-group 101 256000 4000 4000 conform-action transmit exceed-action drop

    Rack1R4#sh ip access-lists 101
    Extended IP access list 101
    10 permit tcp any eq www time-range HTTP_TIME (active)
    Rack1R4#sh time-range
    time-range entry: HTTP_TIME (active)
    periodic weekdays 8:00 to 17:00
    used in: IP ACL entry

    Rack1R4#sh interfaces e1/0 rate-limit
    matches: access-group 101
    params: 256000 bps, 4000 limit, 4000 extended limit
    conformed 0 packets, 0 bytes; action: transmit
    exceeded 0 packets, 0 bytes; action: drop
    last packet: 2567564ms ago, current burst: 0 bytes
    last cleared 00:42:23 ago, conformed 0 bps, exceeded 0 bps

    Please let me know if you know the correct answer
    my email: karim_bari at hotmail dot com
Sign In or Register to comment.