C
HAPTER
28
| General Security Measures
Network Access (MAC Address Authentication)
– 714 –
network-access
dynamic-qos
Use this command to enable the dynamic QoS feature for an authenticated
port. Use the no form to restore the default.
SYNTAX
[no] network-access dynamic-qos
DEFAULT SETTING
Disabled
COMMAND MODE
Interface Configuration
COMMAND USAGE
◆ The RADIUS server may optionally return dynamic QoS assignments to
be applied to a switch port for an authenticated user. The “Filter-ID”
attribute (attribute 11) can be configured on the RADIUS server to pass
the following QoS information:
◆ When the last user logs off of a port with a dynamic QoS assignment,
the switch restores the original QoS configuration for the port.
◆ When a user attempts to log into the network with a returned dynamic
QoS profile that is different from users already logged on to the same
port, the user is denied access.
◆ While a port has an assigned dynamic QoS profile, any manual QoS
configuration changes only take effect after all users have logged off of
the port.
N
OTE
:
Any configuration changes for dynamic QoS are not saved to the
switch configuration file.
EXAMPLE
The following example enables the dynamic QoS feature on port 1.
Console(config)#interface ethernet 1/1
Console(config-if)#network-access dynamic-qos
Console(config-if)#
Table 69: Dynamic QoS Profiles
Profile Attribute Syntax Example
DiffServ service-policy-in=policy-map-
name
service-policy-in=p1
Rate Limit rate-limit-input=rate rate-limit-input=100 (Kbps)
802.1p switchport-priority-
default=value
switchport-priority-default=2
To Next Page
Loading...
Need help?
General
