论坛 › Cisco › Cisco ASA 5520(8.2.4)配置企业内网案例(按时段限速)

ph033378 发表于 2018-7-16 13:03:54

Cisco ASA 5520(8.2.4)配置企业内网案例(按时段限速)

object-group network rate_limit20　　
network-object 192.168.2.20 255.255.255.255
　　
network-object 192.168.2.21 255.255.255.255
　　
network-object 192.168.2.22 255.255.255.255
　　
network-object 192.168.2.23 255.255.255.255
　　
network-object 192.168.2.24 255.255.255.255
　　
network-object 192.168.2.25 255.255.255.255
　　
network-object 192.168.2.26 255.255.255.255
　　
network-object 192.168.2.27 255.255.255.255
　　
network-object 192.168.2.28 255.255.255.255
　　
network-object 192.168.2.29 255.255.255.255
　　
object-group network rate_limit30
　　
network-object 192.168.2.30 255.255.255.255
　　
network-object 192.168.2.31 255.255.255.255
　　
network-object 192.168.2.32 255.255.255.255
　　
network-object 192.168.2.33 255.255.255.255
　　
network-object 192.168.2.34 255.255.255.255
　　
network-object 192.168.2.35 255.255.255.255
　　
network-object 192.168.2.36 255.255.255.255
　　
network-object 192.168.2.37 255.255.255.255
　　
network-object 192.168.2.38 255.255.255.255
　　
network-object 192.168.2.39 255.255.255.255
　　
object-group network rate_limit40
　　
network-object 192.168.2.40 255.255.255.255
　　
network-object 192.168.2.41 255.255.255.255
　　
network-object 192.168.2.42 255.255.255.255
　　
network-object 192.168.2.43 255.255.255.255
　　
network-object 192.168.2.44 255.255.255.255
　　
network-object 192.168.2.45 255.255.255.255
　　
network-object 192.168.2.46 255.255.255.255
　　
network-object 192.168.2.47 255.255.255.255
　　
network-object 192.168.2.48 255.255.255.255
　　
network-object 192.168.2.49 255.255.255.255
　　
access-list rate_limit20 extended permit ip object-group rate_limit20 any time-range rate_limit
　　
access-list rate_limit20 extended permit ip any object-group rate_limit20 time-range rate_limit
　　
access-list rate_limit30 extended permit ip object-group rate_limit30 any time-range rate_limit
　　
access-list rate_limit30 extended permit ip any object-group rate_limit30 time-range rate_limit
　　
access-list rate_limit40 extended permit ip object-group rate_limit40 any time-range rate_limit
　　
access-list rate_limit40 extended permit ip any object-group rate_limit40 time-range rate_limit
　　
class-map map20
　　
match access-list rate_limit20
　　
class-map map30
　　
match access-list rate_limit30
　　
class-map map40
　　
match access-list rate_limit40
　　
policy-map rate_limit
　　
class map20
　　
police input 10240000 5120
　　
police output 10240000 5120
　　
class map30
　　
police input 10240000 5120
　　
police output 10240000 5120
　　
class map40
　　
police input 10240000 5120
　　
police output 10240000 5120
　　
service-policy rate_limit interface inside

查看完整版本: Cisco ASA 5520(8.2.4)配置企业内网案例(按时段限速)