Login
- Table of Contents
-
- H3C Access Controllers Application Security Web-Based Configuration Examples-6W100
- 00-Preface
- 01-H3C Access Controllers Comware 7 IPS Configuration Example
- 02-H3C Access Controllers Comware 7 URL Filtering Configuration Example
- 03-H3C Access Controllers Comware 7 Anti-Virus Configuration Example
- 04-H3C Access Controllers Comware 7 Application Audit and Management Configuration Example
- 05-H3C Access Controllers Comware 7 Application Rate Limiting Configuration Example
- Related Documents
-
| Title | Size | Download |
|---|---|---|
| 05-H3C Access Controllers Comware 7 Application Rate Limiting Configuration Example | 107.42 KB |
|
|
|
H3C Access Controllers |
|
Comware 7 Application Rate Limiting |
|
Configuration Example |
Copyright © 2024 New H3C Technologies Co., Ltd. All rights reserved.
No part of this manual may be reproduced or transmitted in any form or by any means without prior written consent of New H3C Technologies Co., Ltd.
Except for the trademarks of New H3C Technologies Co., Ltd., any trademarks that may be mentioned in this document are the property of their respective owners.
The information in this document is subject to change without notice.
Introduction
The following information provides an example for configuring application rate limiting.
Usage guidelines
Application scenarios
This configuration example is used in networks with security threats.
Prerequisites
This document is not restricted to specific software or hardware versions. Procedures and information in the examples might be slightly different depending on the software or hardware version of the device.
The configuration examples were created and verified in a lab environment, and all the devices were started with the factory default configuration. When you are working on a live network, make sure you understand the potential impact of every command on your network.
Restrictions and guidelines
This feature is supported only in E5568P01 and later.
Example: Configuring application rate limiting
Network configuration
As shown in Figure 1, configure application rate limiting on the AC to limit the total rates of P2P applications and limit the per-client upstream rate to 300 kbps and the per-client upstream rate to 500 kbps for P2P applications.
Configuring the switch
Configure VLAN interfaces and DHCP. (Details not shown.)
· Assign IP address 192.1.1.2/24 to VLAN interface 100. Create a DHCP address pool named vlan100, specify subnet 192.1.1.0/24 for dynamic allocation, and specify gateway address 192.1.1.1.
· Assign IP address 192.2.1.2/24 to VLAN interface 200. Create a DHCP address pool named vlan200, specify subnet 192.2.1.0/24 for dynamic allocation, and specify gateway address 192.2.1.1.
· Configure the interface connecting to the AC as a trunk port, and configure the interface connecting to the AP as an access port.
Configuring the AC
Configuring basic AC functions
Configure VLAN interfaces. (Details not shown.)
Configure application rate limiting
1. From the left navigation pane, select Application Security > Rate Limit > Rate Limit.
Figure
2 Configuring application rate limiting 
2. Click 
to add a rate limit
rule: Enter rule name traffic 1, select SSID service, select AP ap1,
select AP group default-group, and select
application group P2P. Set the total upstream rate limit to 3000 kbps and the total downstream rate
limit to 5000 kbps. Set the per-terminal upstream rate limit
to 300 kbps and the per-terminal downstream rate
limit to 500 kbps.
Figure 3 Configuring an application rule
3. Click Apply. You can view and edit the added rate limit rule.
Figure 4 Added rate limit rule
Verifying the configuration
After the configuration, you can limit the rate of specific applications.
Related documentation
H3C Access Controllers Web-Based Configuration Guide
