BigIron RX Series Configuration Guide 49953-1001986-01Chapter19Configuring Traffic ReductionTraffic policing on the BigIron RX SeriesThe BigIron RX Series Router provides line-rate traffic policing in hardware on inbound ports andoutbound ports.You can configure a BigIron RX Series Router to use one of the following modes of traffic policingpolicies:• Port-based – Limits the rate on an individual physical port to a specified rate. Only one inboundand one outbound port-based traffic policing policy can be applied to a port. These policies canbe applied to inbound and outbound traffic. (Refer to “Configuring a port-based rate limitingpolicy” on page 502.)• Port-and-priority-based – Limits the rate on an individual hardware forwarding queue on anindividual physical port. Only one port-and-priority-based traffic policing policy can be specifiedper priority queue for a port. These policies can be applied to inbound and outbound traffic.• Port-and-VLAN-based – Limits the rate of packets tagged with a specific VLAN on an individualphysical port. Only one rate can be specified for each VLAN.• VLAN-group-based – Limits the traffic for a group of VLANs. Members of a VLAN group sharethe specified bandwidth defined in the rate limiting policy that has been applied to that group.You can configure multiple VLAN group rate limits. Each grouping of Port + VLAN Groups willtake up multiple entries from the CAM (one entry for each VLAN in the group).• Port-and-ACL-based – Limits the rate of IP traffic on an individual physical port that matchesthe permit conditions in IP Access Control Lists (ACLs). You can use standard or extended IPACLs. Standard IP ACLs match traffic based on source IP address information. Extended ACLsmatch traffic based on source and destination IP address and IP protocol information.Extended ACLs for TCP and UDP also match on source and destination TCP or UDP addresses.and protocol information. (Refer to “Configuring a port-and-ACL-based traffic policing policy” onpage 505.)• Port-and-IPV6 ACL-based – Limits the rate of traffic on an individual physical port that matchesthe permit conditions of IPV6 ACL. These policies can be applied to inbound traffic only. (Referto “Configuring a port-and-IPv6 ACL-based traffic reduction” on page 506.)Traffic reduction parameters and algorithmA rate limiting policy specifies two parameters: requested rate and maximum burst.Requested rateThe requested rate is the maximum number of bits a port is allowed to receive during a one-secondinterval. The rate of the traffic that matches the rate limiting policy will not exceed the requestedrate.