Alcatel-Lucent OmniSwitch 6860 Series

To Next Page

To Previous Page

Configuring Access Guardian Access Guardian Overview

OmniSwitch AOS Release 8 Network Configuration Guide December 2017 page 28-24

Binding Classification Rules for UNP Profiles

The port and domain ID classification rules can be combined with other classification rules to create a

binding rule. The following binding rule combinations are supported and are listed in the order of

precedence:

1 Port + MAC address + IP address

2 Port + MAC address

3 Port + IP address

4 Domain ID + MAC address + IP address

A device must match all the rules specified in the binding rule combination. For example, if a binding rule

specifies a port, MAC address, and IP address, then the device must have a matching port, source MAC

address, and source IP address.

Extended Classification Rules for UNP Profiles

An Extended classification rule defines a list of individual rules and assigns the list a name and a

precedence value. A device must match all of the rules specified in the extended rule list.

4. Domain ID Packet is learned on a port or link aggregate that is assigned to a matching

domain ID.

5. MAC address + VLAN

tag

Packet contains a matching source MAC address and a matching VLAN ID

tag.

6. MAC address Packet contains a matching source MAC address.

7. MAC OUI + VLAN tag Packet contains a source MAC address with a matching OUI and a matching

VLAN ID tag.

8. MAC OUI Packet contains a source MAC address with a matching OUI.

9. MAC address range +

VLAN tag

Packet contains a source MAC address that falls within a specified range of

MAC addresses and a matching VLAN ID tag.

10. MAC address range Packet contains a source MAC address that falls within a specified range of

MAC addresses.

11. LLDP for media

endpoint devices

LLDP TLVs from an IP phone or from an OmniAccess Stellar Access Point

(AP) are detected.

12. Authentication Type +

VLAN tag

Packet received from a device authenticated through the matching

authentication type and the packet contains a matching VLAN ID tag.

13. Authentication Type Packet received from a device authenticated through the matching

authentication type.

14. IP address + VLAN

tag

Packet contains a matching source IP address and a matching VLAN ID tag.

15. IP address Packet contains a matching source IP address.

16. VLAN tag Packet contains a matching VLAN ID tag.

Note. Binding classification rules take precedence over individual classification rules.

Precedence Step/Rule Matching Condition

Main Page

Alcatel-Lucent OmniSwitch 6860 Series

Table of Contents

Related product manuals