I can create rate limiting within a dynamic profile for a tunnel. But this takes affect on every subscriber within the tunnel.
Othe than configuring a separate rate for every single subscriber (impossible), is there a way, on the LNS to rate limit different subscribers dynamically please (i.e: 1 subscriber 10mb, one subscriber 20mb, 1 sibscriber 30mb etc etc)?
(I have this configured on the RADIUS and when viewing the interface for the subscriber it shows the correct rate but it, for some reason is not using the rate).
Could you please provide sample for the config and sample radius profile which you are using for this, ? Generally, You can create different variable dynamic profiles, and send the dynamic profile name, and variables with radius.
Here is subscriber management services config guide, which describes how to set COS dynamically for subs, and applying these values from radius.
I have been through the Juniper documentation but with no actual RADIUS server that I can use it makes it quite difficult to test anything. So for me to come up with a config that I cannot test is not good.
I was hoping someone would say "configure this" or "configure that".
I am just trying to rate limit this now. So, I have configured the following:
Dynamic profile with policers and you will also see the configuration attached.
So, here is the weird part...
Laptop1 --- CPE ---- LAC ---- LNS ---- ISP ---- Internet ---- other laptop
If initiate a speedtest from laptop1 I get between 37 and 47mbps, and the Policer etc is set to 1mbps. However, if I initiate a connection from "other laptop" to the CPE it seems to work correctly. Something is not right here.
Have a look at the files attached and see what you think
What is this router rule LNS-TEST ? Based on name it suggests that it`s LNS ? However in lns subscribers are terminated on si- interface not pp0 interface as pp0.xx should be on LAC side. Also, the dynamic profile looks to be a LAC profile as well.
Could you please provide the dynamic profile config for both LAC and LNS ?
Also, please clarify how you would initiate the session from other labtop ? I believe it should from direction LAC--->LNS
I think you need also to config rate limits on both RE
Please mark "Accept as solution" if this answers your query.
It's a terminator on the si interface for L2TP and a secondary dynamic profile for PPPoE subscribers.
Let me have a look for the rules on PPPoE interface (pp0)
Other laptop knows the IP address of the Laptop behind the CPE.
When you look at the subscribers tunnel interface pp0.xxxxxxxxxx (in the attached I placed here) it shows the settings are being picked up by the Juniper VSAs for egress and ingress and the config is exactly as Juniper states plus other sites that have implimented this.
To test from other laptop we simply used FTP - it's only a 1mb pipe for the test and easily fills it up.
So, that's the weird thing. Everything looks configured correctly and it works from external through the LNS through the downstream providers systems and through the CPE. It just doesn't work the other way.