Задача: На Juniper QFX полисить трафик транзитного VLAN.
show interfaces ge-0/0/44
unit 0 {
family ethernet-switching {
interface-mode trunk;
vlan {
members [ 1 600 800-801 ];
}
filter {
input ratelimit-vlan;
output ratelimit-vlan;
}
}
}
show firewall family ethernet-switching
filter ratelimit-vlan {
term VLAN490 {
from {
user-vlan-id 490;
}
then policer VLAN490_1m;
}
term VLAN800 {
from {
user-vlan-id 800;
}
then policer VLAN800_10m;
}
term accept-other-vlan {
then accept;
}
}
show firewall policer VLAN800_10m
if-exceeding {
bandwidth-limit 10m;
burst-size-limit 400k;
}
then discard;
show interfaces ge-0/0/44
unit 0 {
family ethernet-switching {
interface-mode trunk;
vlan {
members [ 1 600 800-801 ];
}
filter {
input ratelimit-vlan;
output ratelimit-vlan;
}
}
}
show firewall family ethernet-switching
filter ratelimit-vlan {
term VLAN490 {
from {
user-vlan-id 490;
}
then policer VLAN490_1m;
}
term VLAN800 {
from {
user-vlan-id 800;
}
then policer VLAN800_10m;
}
term accept-other-vlan {
then accept;
}
}
show firewall policer VLAN800_10m
if-exceeding {
bandwidth-limit 10m;
burst-size-limit 400k;
}
then discard;
Комментариев нет:
Отправить комментарий