6-1
6 Traffic Filtering Configuration
When configuring traffic filtering, go to these sections for information you are interested in:
z Traffic Filtering Overview
z Configuring Traffic Filtering
z Traffic Filtering Configuration Example
Traffic Filtering Overview
You can filter in or filter out a class of traffic by associating the class with a traffic filtering action. For
example, you can filter packets sourced from a specific IP address according to network status. By
using ACL rules configured with a time range for traffic classification, you can implement time-based
traffic filtering.
Configuring Traffic Filtering
Follow these steps to configure traffic filtering:
To do… Use the command… Remarks
Enter system view system-view —
Create a class and enter
class view
traffic classifier tcl-name [ operator
{ and | or } ]
—
Configure the match criteria if-match match-criteria —
Exit class view quit —
Create a behavior and enter
behavior view
traffic behavior behavior-name —
Configure the traffic filtering
action
filter { deny | permit }
Required
z deny: Drops packets.
z permit: Permits packets
to pass through.
Exit behavior view quit —
Create a policy and enter
policy view
qos policy policy-name —
Associate the class with the
traffic behavior in the QoS
policy
classifier tcl-name behavior
behavior-name
—
Exit policy view quit —
To an interface
Applying the QoS policy to an
interface
—
To online users
Applying the QoS policy to online
users
—
Apply the
QoS
policy
To a VLAN
Applying the QoS policy to a VLAN —
To Next Page
Loading...
