Configuring traffic reduction, Traffic policing on the bigiron rx series, Chapter 19 – Brocade BigIron RX Series Configuration Guide User Manual

BigIron RX Series Configuration Guide

511

53-1002484-04

Chapter

19

Configuring Traffic Reduction

In this chapter

•

Traffic policing on the BigIron RX Series . . . . . . . . . . . . . . . . . . . . . . . . . . . 511

•

Traffic reduction parameters and algorithm . . . . . . . . . . . . . . . . . . . . . . . . 512

•

Configuration considerations . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 513

•

Configuring rate limiting policies . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 514

•

NP based multicast, broadcast, and unknown-unicast rate limiting . . . . . 519

•

Displaying traffic reduction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 520

Traffic policing on the BigIron RX Series

The BigIron RX Series Router provides line-rate traffic policing in hardware on inbound ports and
outbound ports.

You can configure a BigIron RX Series Router to use one of the following modes of traffic policing
policies:

•

Port-based – Limits the rate on an individual physical port to a specified rate. Only one inbound
and one outbound port-based traffic policing policy can be applied to a port. These policies can
be applied to inbound and outbound traffic. (Refer to

“Configuring a port-based rate limiting

policy”

on page 514.)

•

Port-and-priority-based – Limits the rate on an individual hardware forwarding queue on an
individual physical port. Only one port-and-priority-based traffic policing policy can be specified
per priority queue for a port. These policies can be applied to inbound and outbound traffic.

•

Port-and-VLAN-based – Limits the rate of packets tagged with a specific VLAN on an individual
physical port. Only one rate can be specified for each VLAN.

•

VLAN-group-based – Limits the traffic for a group of VLANs. Members of a VLAN group share
the specified bandwidth defined in the rate limiting policy that has been applied to that group.
You can configure multiple VLAN group rate limits. Each grouping of Port + VLAN Groups will
take up multiple entries from the CAM (one entry for each VLAN in the group).

•

Port-and-ACL-based – Limits the rate of IP traffic on an individual physical port that matches
the permit conditions in IP Access Control Lists (ACLs). You can use standard or extended IP
ACLs. Standard IP ACLs match traffic based on source IP address information. Extended ACLs
match traffic based on source and destination IP address and IP protocol information.
Extended ACLs for TCP and UDP also match on source and destination TCP or UDP addresses.
and protocol information. (Refer to

“Configuring a port-and-ACL-based traffic policing policy”

on

page 517.)

•

Port-and-IPV6 ACL-based – Limits the rate of traffic on an individual physical port that matches
the permit conditions of IPV6 ACL. These policies can be applied to inbound traffic only. (Refer
to

“Configuring a port-and-IPv6 ACL-based traffic reduction”

on page 518.)