Table of Contents
Advertisement
Configuring Access Guardian
-> policy rule r1 condition c1 action a1
-> policy condition c2 source ip 10.5.5.0
-> policy action a2 disposition accept
-> policy rule r2 condition c2 action a2
-> policy list temp_rules type unp
-> policy list temp_rules rules r1 r2
-> qos apply
The following command example uses the
"temp_rules" list to the "guest_user" UNP profile:
-> unp profile guest_user qos-policy-list temp_rules
Note the following guidelines when configuring QoS policy rules and lists:
•
A default policy list exists in the switch configuration. Rules are added to this list when the rule is
created. A rule can belong to multiple policy lists. As a result, the rule remains a member a of the
default list even when it is subsequently assigned to additional lists.
•
Each time a rule is assigned to a policy list, an instance of that rule is created. Each instance is
allocated system resources. To exclude a rule from the default policy list, use the no default-list option
of the
policy rule
-> policy rule r1 condition c1 action a1 no default-list
•
Up to 32 policy lists (including the default list) are supported per switch. Only one policy list per UNP
is allowed, but a policy list can be associated with multiple profiles.
•
If a rule is a member of multiple policy lists but one or more of these lists are disabled, the rule is still
active for those lists that are enabled.
•
If the QoS status of an individual rule is disabled, then the rule is disabled for all policy lists, even if a
list to which the policy belongs is enabled.
•
Policy lists are not active on the switch until the qos apply command is issued.
•
On the OmniSwitch 9900, only policy rules with the following conditions can be assigned to a UNP
policy list:
– Destination MAC
– EtherType / IPv6 Hop limit
– Source VLAN
– SIP
– DIP / DIPv6
– Layer 4 Protocol /NextHeader
– Layer 4 source port
– Layer 4 destination port
– Source port bitmap
Use the
show policy list
-> show policy list temp_rules
Group Name
--------------------------------+-----+-------+--------+----------------------
temp_rules
OmniSwitch AOS Release 8 Network Configuration Guide
unp profile qos-policy-list
command when the rule is created. For example:
command to display the QoS policy rule configuration. For example:
Configuring Port-Based Network Access Control
command to assign the
From
Type
Enabled
cli
unp
Yes
December 2017
Entries
r1
r2
page 28-62
- Quick Links:
- Ethernet Port Defaults
Hide quick links:
Advertisement
Table of Contents
