Cisco Vlan Access Maps
Cisco Catalyst 3550 QoS question — why won’t this work?
Here’s what I’ve done:
mls qos
access-list 100 permit tcp any eq 80 any
class-map match-all nethttp
match access-group 100
end
policy-map http-pol
class nethttp
police exceed-action drop 75000 16000
end
interface Fa0/2
switchport
switchport access vlan 2
service-policy input http-pol
Now everything goes in fine, but when i test the connection speed from the computer on Fa0/2, it still goes way high. I am trying to limit the rate of http on a per port basis so that users can’t hog all the bandwidth.
Thanks!
QOS is only used when you have a congested network connection. If it’s not being overly congested, your switch will process it and not rate limit it. You probably want to use CAR or Committed Access Rate to limit http traffic to a finite number. On the provided link, check out the example of using CAR to rate-limit by access list near the bottom of the page.
WG
The Switching Kitchen: Cisco Catalyst Virtualization
|
|
VLAN Management Policy Server $70.1 High Quality Content by WIKIPEDIA articles A VLAN Management Policy Server or VMPS is a network switch that contains a mapping of device information to VLAN. The primary goal of VMPS is VLAN assignment for general network management purposes, but can also be used for providing security through segregating clients with an unknown MAC address, or through further extension of the protocol to provide login for Cisco ACS. This last functionality is now deprecated by Cisco, in favour of 802.1x, and as the VMPS technology is Cisco only, the VLAN assignment can now be carried out in the 802.1x framework. Client switches query the VMPS server using the VLAN Query Protocol, or VQP. Only Cisco produces hardware with VMPS client functionality, and is currently fully supported across their IOS switching lines. Cisco officially only supports the use of Catalyst 4000, 5000 and 6500 switch platforms (with appropriate firmware) as VMPS servers, but these have limited functionality, and only support a static text file transferred into them with tftp. Author: Surhone, Lambert M./ Tennoe, Mariam T./ Henssonow, Susan F. Binding Type: Paperback Number of Pages: 76 Publication Date: 2010/09/05 Language: English Dimensions: 6.00 x 9.02 x 0.18 inches |
|
|
Cisco 541N Wireless Access Point $340.99 1 1 Year 1.73″ 12 V DC 2 dBi 2.40 GHz 2.95 lb 3 300 Mbps 5 GHz 500 541N 541N Wireless Access Point 7.09″ 541N Wireless Access Point Quick Start Guide CD-ROM (Product documentation and information) Ethernet Network Cable Power Adapter Accessory Kit 3 x Antennas Installation Guide Cisco Configuration Assistant QoS HTTP/HTTPS VLAN SNMP v1/2/3 Syslog DHCP WEP WPA-PSK WPA2-PSK WPA2-ENT WPA-ENT WPA2 IEEE 802.1X IEEE 802.11i Supports Wi-Fi Multimedia (WMM) The Cisco AP 541N Dual Band 802.11n Clustering Access Point gives partners and their customers a complete and easy-to-install wireless solution to address their network infrastructure needs. The AP 541N offers employees and guests highly secure, reliable access to data and multimedia, increasing productivity while providing the freedom to work efficiently. With clustering technology, configuring a wireless network is simplified, creating a single point of administration for multiple access points. As part of the Cisco Small Business Pro Series, the AP 541N integrates easily with other Pro Series products and with the Cisco Smart Business Communications System. AC Adapter AP541N-A-K9 Ceiling-mountable Cisco Cisco Systems, Inc IEEE 802.11n (draft) Omnidirectional Antenna RoHS WEEE Wireless Access Point Yes www.cisco.com |
|
|
Cisco 881 Integrated Access Device $641.99 1 1 x Console/Auxiliary Management 1 x RJ-45 10/100Base-TX WAN 1 x USB USB 1.1 1.90″ Height x 12.80″ Width x 9.80″ Depth 10 Mbps 10 Mbps Ethernet 10/100Base-TX 100 Mbps 100 Mbps Fast Ethernet 100 V AC to 240 V AC Power Supply 2.10 lb 4 4 x RJ-11 FXS 4 x RJ-45 10/100Base-TX Auto MDI/MDI-X LAN 881 881 Integrated Access Device 90 Limited Cisco IOS Firewall IEEE 802.1x NAT ACL SSL RADIUS TACACS SSH Cisco IOS Software IEEE 802.1p QoS IEEE 802.1q VLAN HTTP Telnet CLI DHCP SNMP v3 PoE on 2 x LAN ports Session Initiation Protocol (SIP) Media Gateway Control Protocol (MGCP) H.323 Voice activity detection (VAD) The Cisco IAD881 Integrated Access Device is cost-effective fixed configuration customer premises equipment for service providers offering managed voice and data services. The Cisco IAD881 offers cost-effective platforms for providing interconnect solutions for accelerating the migration from time-division multiplexing (TDM) to voice over IP (VoIP). Cisco Cisco Systems, Inc Desktop G.711 G.723.1 G.726 G.728 G.729 G.729ab IAD881F-K9 Integrated Access Device Twisted Pair 10/100Base-TX www.cisco.com |
|
|
Cisco 1721 Modular Access Router $337.99 (1 Total) VPN Module (2 Total) WIC -4°F (-20°C) to 149°F (65°C) Non-operating 1 1 Year Limited 1 x Power Switch 10% to 85% Non-condensing Operating 100 V AC to 240 V AC 110 V AC 128 MB 1700 1721 1721 Modular Access Router 2.90 lb 20 W Maximum 220 V AC 3 3.10″ Height x 11.20″ Width x 8.70″ Depth 32 MB 328 ft 32°F (0°C) to 104°F (40°C) Operating 47 Hz to 64 Hz 5% to 95% Non-condensing Non-operating 500 mA 64 MB 1721 Modular Access Router Power cord (black)(CAB-AC) Power supply DB-25 to DB-9 adapter Console cable, RJ-45 to DB-9 (light blue) Product documentation Blank WAN Interface Card Panel (WIC-BLANK-PANEL) Cisco 1700 IOS IP BASE Cisco 1700 IOS IP BASE IEEE 802.1Q VLAN routing Cisco Easy VPN Remote Cisco Easy VPN Server Cisco Security Device Manager Manageable via Simple Network Management Protocol (SNMP) CiscoView CiscoWorks 2000 Cisco ConfigMaker Setup Configuration Utility Cisco AutoInstall Telnet RADIUS Remote Monitoring (RMON) CiscoWorks Small Network Management Solution NetFlow Refurbished No Returns Dial-on-Demand Routing Kensington security slot Modular Architecture Device Integration Dual Bank Flash Memory Frame Relay switched virtual circuit (SVC) Quality of Service (QoS): Weighted Fair Queuing (WFQ) IP Precedence Committed access rate (CAR) Policy routing Low-latency queuing (LLQ) Generic traffic shaping (GTS) Frame Relay traffic shaping (FRTS) RSVP VPN Tunneling with IPSec Network Address Translation (NAT) Access control lists Stateful Inspection Firewall: Context-based access control Dynamic firewall filtering Denial-of-service detection and prevention Java blocking Real-time alerts Encryption: DES 3DES Device Authentication and Key Management: IKE X.509v3 digital certification Support for CEP with certification authorities such as Verisign and Entrust Back Panel LEDs: WIC0 OK FDX 100 LINK MOD OK WIC1 OK Front Panel LEDs: PWR OK WIC0 ACT/CH0 ACT/CH1 WIC1 ACT/CH0 ACT/CH1 ETH ACT COL IEEE: IEEE 802.1Q IEEE 802.3 IEEE 802.3u Safety: UL 1950 CSA 22.2-No. 950 EN60950 EN41003 AUSTEL TS001 AS/NZS 3260 ETSI 300-047 BS 6301 (po |
|
|
Cisco Access Point AIRLAP1252AGEK9 $603.74 Cisco Access Point AIRLAP1252AGEK9 |
|
|
Cisco X45-SUP6L-E High-Performance Access Supervisor Engine $7630.99 1 1 x 10/100Base-TX 1 x Compact Flash Port 1 x RJ-45 10/100Base-TX Management 1 x RJ-45 Console Management 10 Mbps 10 Mbps Ethernet 10/100Base-TX 100 Mbps 100 Mbps Fast Ethernet 2 x X2 CLI Telnet DHCP Syslog RMON SNMP v1, v2, v3 IEEE 802.1p QoS IEEE 802.1Q VLAN Web-based Management CiscoWorks Management Cisco Catalyst 4503-E Cisco Catalyst 4506-E Cisco Catalyst 4507R-E Spare Product IPv6 Support in Hardware Advanced Security: RADIUS TACACS+ Standard and extended ACLs Predictable Performance: 280 Gbps switching fabric Layer 2 hardware forwarding at 225 mpps The Cisco Catalyst 4500 Supervisor Engine 6L-E is a next-generation, high-performance Basic Layer 3 supervisor addition to the Cisco Catalyst 4500 E-Series product line. It is optimized for enterprise user access. Cisco Cisco Systems, Inc Data Networking Hot-swappable Lifetime Limited Supervisor Engine Twisted Pair 10/100Base-TX WS-X45-SUP6L-E= X45-SUP6L-E X45-SUP6L-E High-Performance Access Supervisor Engine www.cisco.com |
|
|
Cisco ME-3400G-2CS-A Multi-layer Ethernet Access Switch $1062.99 (2 Total) SFP (mini-GBIC) Shared (2 Total) SFP (mini-GBIC) Uplink 1.73″ Height x 10.60″ Width x 7.10″ Depth 10/100/1000Base-T 100 V AC to 240 V AC 110 V AC 128 MB 2 220 V AC 3 3 x Cisco IOS Software feature image options (METROBASE, METROACCESS, and METROIPACCESS) 3.50 lb 32 MB 3400 4 6.5Mpps Forwarding Rate 8Gbps Forwarding Bandwidth 90 Day CLI Telnet RMON IEEE 802.1p QoS IEEE 802.1Q VLAN SNMP v1, v2, v2c,v3 CiscoWorks Management Software The Cisco ME-3400G-2CS-A Ethernet Access Switch is a next-generation Layer 2 and Layer 3 customer-located device purposely built for service providers. Its design is based on the experience learned from today’s most widely deployed access switches, the Cisco Catalyst 2950 Series and Catalyst 3550 Series. Category 5 UTP 10/100/1000Base-T Cisco Cisco Systems, Inc DRAM Desktop Layer 3 Switch ME 3400 ME-3400G-2CS-A ME-3400G-2CS-A Multi-layer Ethernet Access Switch Power Consumption: 20W Rack-mountable Wall-mountable Yes www.cisco.com |
|
|
Cisco ME-3400G-12CS Ethernet Access Layer 3 Switch $4450.99 (12 Total) SFP (mini-GBIC) Shared (4 Total) SFP Uplink 1 x RJ-45 Console Management 1.73″ Height x 17.50″ Width x 11″ Depth 10/100/1000Base-T 100 V AC to 240 V AC 110 V AC 12 12 x RJ-45 10/100/1000Base-T LAN 128 MB 16 1U 2 to 3 220 V AC 26 Mpps 32 Gbps 32 MB 3400 9.26 lb CiscoWorks 2000 LAN IEEE 802.1p QoS IEEE 802.1q VLAN SNMP v1, v2c, v3 Web GUI RMON DHCP CLI Telnet Syslog IEEE 802.1x TACACS RADIUS ACL SSH 3 Cisco IOS Software feature image options (METROBASE, METROACCESS, and METROIPACCESS) Cisco ME-3400G-12CS Ethernet Access Layer 3 Switch of next-generation Layer 2 and Layer 3 customer-located devices for service providers. Its design is based on the experience learned from today’s most widely deployed access switches, the Cisco Catalyst 2950 and 3550 Series. With service provider-friendly hardware and mission-specific software, the Cisco ME-3400G-12CS is the first Cisco access switch family optimized for both Ethernet-to-the-Home (ETTH) triple-play services and Ethernet-to-the-Business (ETTB) VPN services. It provides a complete security solution for Metro Ethernet access that includes subscriber, switch, and network protection. Cisco Cisco Systems, Inc DRAM Layer 3 Switch ME 3400 ME-3400G-12CS Ethernet Access Layer 3 Switch ME-3400G-12CS-A Power Supply Rack-mountable Yes www.cisco.com |
|
|
Cisco WAP4410N Wireless-N Access Point $179.99 1 1.60″ 12 V DC 13.76 oz 2 dBi 2.40 GHz 3 300 Mbps 6.69″ HTTP/HTTPS SNMP v1/2c Syslog IEEE 802.1q VLAN IEEE 802.1p QoS Supports up to 4 BSSIDs Supports RFC2460 (IPv6 protocol) Wi-Fi Multimedia (WMM) Operating Modes: Point-to-point Bridge Mode Point-to-multipoint Bridge Mode Repeater Mode Wireless Client Mode WEP 64-bit/128-bit WPA-PSK WPA2-PSK WPA-ENT WPA2-ENT The Linksys Wireless-N Access Point lets you connect Wireless-N (802.11n), Wireless-G (802.11g) or Wireless-B (802.11b) devices to your wired network so you can add PCs to the network with no cabling hassle. Power over Ethernet (PoE) support makes the Access Point easy to install you can mount the Access Point anywhere, even without ready access to a power plug. With appropriate PoE support at the other end, you only need to run one cable to the Access Point to deliver both data and power. Of course, you can also use the included AC adapter if your installation point has power available nearby. AC Adapter Cisco Cisco Systems, Inc IEEE 802.11n (draft) Omnidirectional Antenna WAP4410N WAP4410N Wireless-N Access Point WAP4410N-LA Wireless Access Point Yes www.cisco.com |
|
|
Cisco Wireless Access Point AIRLAP1252AGNK9-RF $608.74 Cisco Wireless Access Point AIRLAP1252AGNK9-RF |
|
|
Cisco WAP2000 Wireless-G Access Point with Power over Ethernet $149.99 1 1.69 lb 12 V DC 2 2.40 GHz 3 Year Limited 3 dBi 54 Mbps FCCICES-003CE IEEE802.11gIEEE802.11bIEEE802.3IEEE802.3u IEEE802.3af (Power over Ethernet)IEEE802.1p (QoS priority)IEEE802.1Q (VLAN) IEEE802.1X (Security Authentication)IEEE802.11i – Ready (Security WPA2) IEEE802.11e – Ready (Wireless QoS)IEEE802.11F (Wireless Roaming) Syslog DHCP SNMP Version 1, 2c, 3 IEEE 802.1p QoS IEEE802.1Q (VLAN) Built-In Web UI for Easy Browser-Based Configuration (HTTP/HTTPS) WAP2000 Wireless-G Access Point with Power over Ethernet 2 x SMA Detachable Dipole Antenna (3 dBi) User Guide on CD-ROM Quick Installation Guide Ethernet Network Cable Power Adapter Registration Card WEP 64bit/128bitWPA-PSKWPA2-PSKWPA-ENTWPA2-ENT Wireless MAC Filtering The WAP2000 is a Wireless Access Point ideal for small businesses that want to expand their existing wired networks or create new wireless networks for the workforce or guests. It features RangeBooster technology that is compatible to standard 802.11g but with a range up to two times farther and throughput by up to 35% faster. Unlike ordinary wireless technologies that are hampered by wireless signals that reflect off walls, ceilings, and other objects, RangeBooster uses these multiple signals with two smart receivers at each end (router or access point and client adapter) to boost range and throughput speeds. As a result, a RangeBooster solution reduces or eliminates wireless signal dead spots in offices and other buildings so users can connect to the network in more areas. The WAP2000 comes with 3 dBi antennas for increased power, also helping to extend the range of the Access Point. AC Adapter Cisco Cisco Systems, Inc IEEE 802.11b/g Omnidirectional Antenna SMA Connector WAP2000 WAP2000 Wireless-G Access Point with Power over Ethernet Wireless Access Point Yes www.cisco.com |