SupportDocumentationRoutersAccess RoutersAR600&6100&6200&6300Configuration & CommissioningConfiguration Examples

NetEngine AR600, AR6100, AR6200, and AR6300 Web-based Typical Configuration Examples

Example for Configuring QoS to Limit the Sharing Bandwidth of Some Intranet IP Address Segments

Example for Configuring QoS to Limit the Sharing Bandwidth of Some Intranet IP Address Segments

Specifications

This example applies to all AR models of ARV200R007C00 and later versions.

Networking Requirements

In Figure 2-327, Router serves as the egress gateway of the enterprise and connects to the Internet through GE0/0/9. GE0/0/9 uses a static IP address 10.1.1.110/24; the gateway address of Router is 10.1.1.1; the DNS server addresses of Router are 203.10.1.150 and 203.1.1.148. Intranet users access the Internet after address translation through the network address translation (NAT) service deployed on Router. The customer wants to limit the upload rate of the Internet access traffic to 5 Mbit/s for IP addresses from 192.168.10.110 to 192.168.10.254 and the download rate to 10 Mbit/s. The rate does not need to be limited for other IP addresses in the network segment. In addition, the customer wants to limit the upload rate of the Internet access traffic to 15 Mbit/s for IP addresses in the network segment 192.168.20.0/24 and the download rate to 30 Mbit/s.

Figure 2-327 Networking diagram for configuring traffic policing

Configuration Roadmap

The configuration roadmap is as follows:
  1. Complete basic network configurations. (If basic network configurations have been completed, skip this step and go to step 2. You only need to perform rate limit configurations.)

    • Set parameters, such as the interface IP address and gateway address on GE0/0/9.

    • Create VLAN 10 and VLANIF 10 and use VLANIF 10 as the gateway of the network segment 192.168.10.0/24. Create VLAN 20 and VLANIF 20 and use VLANIF 20 as the gateway of the network segment 192.168.20.0/24. Add the Layer 2 Ethernet interface GE0/0/7 connecting to Switch to VLAN 10 and VLAN 20 as a trunk interface.

  2. Configure rate limit by IP network segment on VLANIF 10 and VLANIF 20 respectively.

Procedure

  1. Configure GE0/0/9, add the Layer 2 Ethernet interface GE0/0/7 to VLANs, and create VLANIF interfaces.

    1. Configure GE0/0/9.
      Choose Configuration > WAN Configuration > Ethernet Interface > Interface Configuration. Set the parameters in the Ethernet Interface Settings area, and click OK, as shown in Figure 2-328.
      Figure 2-328 Creating an Ethernet interface
    2. Choose Configuration > LAN Configuration > VLAN > VLAN. Set the parameters in the VLAN Settings area, and click Add, as shown in Figure 2-329.
      Figure 2-329 Creating a VLAN interface

      Select GE0/0/7 and add it to VLAN 10 as a trunk interface.

    3. Choose Configuration > LAN Configuration > VLAN > VLANIF. In the VLANIF Settings area, select VLANIF 10 and click Modify. Set the parameters in the Modify VLANIF area, and click OK, as shown in Figure 2-330.
      Figure 2-330 Modifying VLANIF 10
    4. Configure VLAN 20. The procedure is similar to that for configuring VLAN 10.

  2. Configure rate limit by source IP network segment on the VLANIF interfaces.

    On the web platform, choose Advanced > QoS Configuration > Interface Rate Limit. Set the parameters in the Interface Rate Limit Settings area, and click Apply.
    Figure 2-331 Configuring upload rate limit on VLANIF 10
    Figure 2-332 Configuring download rate limit on VLANIF 10
    Figure 2-333 Configuring upload rate limit on VLANIF 20
    Figure 2-334 Configuring download rate limit on VLANIF 20

Precautions

  1. In this example, rate limit is configured on an intranet interface (a router interface connecting to the intranet). Typically, rate limit by intranet user or network segment is configured on an intranet interface. As the NAT service is deployed on an extranet interface, configuring rate limit for intranet users on the same extranet interface will increase the device cost and reduce the device performance due to complex configurations.
  2. Set Direction to Inbound or Outbound based on the direction of the traffic to be limited.
    • On an intranet interface, Inbound indicates traffic passing through the intranet interface to the router. The traffic is sent by a PC to the Internet, so the limited rate is the upload rate or uplink bandwidth. Similarly, Outbound indicates traffic passing out of the intranet interface of the router. The traffic is sent by the Internet to a PC, so the limited rate is the download rate or downlink bandwidth.
    • On an extranet interface, Inbound indicates traffic passing through the extranet interface to the router. The traffic is sent by the Internet to a PC, so the limited rate is the download rate or downlink bandwidth. Similarly, Outbound indicates traffic passing out of the extranet interface of the router. The traffic is sent by a PC to the Internet, so the limited rate is the upload rate or uplink bandwidth.