EasyManua.ls Logo

Alcatel-Lucent OmniSwitch 9900 Series - Page 779

Alcatel-Lucent OmniSwitch 9900 Series
1078 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
Configuring Access Guardian Configuring Port-Based Network Access Control
OmniSwitch AOS Release 8 Network Configuration Guide December 2017 page 28-62
-> policy rule r1 condition c1 action a1
-> policy condition c2 source ip 10.5.5.0
-> policy action a2 disposition accept
-> policy rule r2 condition c2 action a2
-> policy list temp_rules type unp
-> policy list temp_rules rules r1 r2
-> qos apply
The following command example uses the unp profile qos-policy-list command to assign the
“temp_rules” list to the “guest_user” UNP profile:
-> unp profile guest_user qos-policy-list temp_rules
Note the following guidelines when configuring QoS policy rules and lists:
A default policy list exists in the switch configuration. Rules are added to this list when the rule is
created. A rule can belong to multiple policy lists. As a result, the rule remains a member a of the
default list even when it is subsequently assigned to additional lists.
Each time a rule is assigned to a policy list, an instance of that rule is created. Each instance is
allocated system resources. To exclude a rule from the default policy list, use the no default-list option
of the policy rule command when the rule is created. For example:
-> policy rule r1 condition c1 action a1 no default-list
Up to 32 policy lists (including the default list) are supported per switch. Only one policy list per UNP
is allowed, but a policy list can be associated with multiple profiles.
If a rule is a member of multiple policy lists but one or more of these lists are disabled, the rule is still
active for those lists that are enabled.
If the QoS status of an individual rule is disabled, then the rule is disabled for all policy lists, even if a
list to which the policy belongs is enabled.
Policy lists are not active on the switch until the qos apply command is issued.
On the OmniSwitch 9900, only policy rules with the following conditions can be assigned to a UNP
policy list:
Destination MAC
EtherType / IPv6 Hop limit
Source VLAN
–SIP
–DIP / DIPv6
Layer 4 Protocol /NextHeader
Layer 4 source port
Layer 4 destination port
Source port bitmap
Use the show policy list command to display the QoS policy rule configuration. For example:
-> show policy list temp_rules
Group Name From Type Enabled Entries
--------------------------------+-----+-------+--------+----------------------
temp_rules cli unp Yes r1
r2

Table of Contents

Related product manuals