H3C S10500 Series Configuration Manual
Hide thumbs
Also See for S10500 Series:
- Configuration manual (50 pages) ,
- Interface configuration manual (35 pages) ,
- Command reference manual (16 pages)
Related Manuals for H3C S10500 Series
Summary of Contents for H3C S10500 Series
- Page 1 H3C S10500 Switch Series Configuration Guide Hangzhou H3C Technologies Co., Ltd. http://www.h3c.com Software version: Release 1201 and Later Document version: 6W101-20120903...
- Page 2 SecPro, SecPoint, SecEngine, SecPath, Comware, Secware, Storware, NQA, VVG, V G, V G, PSPT, XGbus, N-Bus, TiGem, InnoVision and HUASAN are trademarks of Hangzhou H3C Technologies Co., Ltd. All other trademarks that may be mentioned in this manual are the property of their respective owners Notice The information in this document is subject to change without notice.
- Page 3 The OAA Configuration Guide describes OAA fundamentals and configuration. It describes how to log in to the H3C open application platform (OAP) module connected to your switch and reset the operating system of the OAP module, and configure the ACFP and ACSEI protocols to exchange information between your switch and the OAP module.
-
Page 4: Obtaining Documentation
The port numbers in this document are for illustration only and might be unavailable on your device. Obtaining documentation You can access the most up-to-date H3C product documentation on the World Wide Web at http://www.h3c.com. Click the links on the top navigation bar to obtain different categories of product documentation: [Technical Support &... -
Page 5: Technical Support
[Technical Support & Documents > Software Download] – Provides the documentation released with the software version. Technical support service@h3c.com http://www.h3c.com Documentation feedback You can e-mail your comments about product documentation to info@h3c.com. We appreciate your comments. -
Page 6: Table Of Contents
Contents Configuring OAP modules ·········································································································································· 1 Overview ············································································································································································ 1 Accessing an OAP module's CLI from the device ········································································································· 1 Resetting an OAP module ················································································································································ 1 Configuring ACFP ························································································································································ 3 Overview ············································································································································································ 3 ACFP operating mechanism ···································································································································· 3 ... -
Page 7: Configuring Oap Modules
Overview The H3C OAA provides an open interface for third-party vendors to develop value-added applications (such as firewall and IPS) and integrate the applications into H3C products. H3C has developed some application-specific modules called "Open Application Platform (OAP) modules." The S10500 switches support a series of OAP modules, including IPS, FW, NS, LB, AFC, AFD, ACG modules. - Page 8 To recover from an error condition, you can reset the OAP module by using the CLI or by pressing the reset button on the module. The device can still identify and control the OAP module after the reset. To reset the OAP module: Task Command Remarks...
-
Page 9: Configuring Acfp
Configuring ACFP Overview The Application Control Forwarding Protocol (ACFP) is designed based on the OAA architecture and operates in the server/client model (see Figure 1). In this model, an OAP module (the independent service component) operating as the ACFP client to control, process, and monitor the incoming traffic of the ACFP server (the switch called "routing/switching component") in this figure. -
Page 10: Acfp Information
ACFP information The following section describes the ACFP collaboration content. ACFP server information ACFP server information includes the following parts: Supported operating modes—Host, pass-through, mirror, and redirect. An ACFP server can support • multiple operating modes at the same time. An ACFP server and an ACFP client can collaborate only when the ACFP server supports the operating modes of the ACFP client. - Page 11 Policy-Index • • In-interface—Interface through which the packet enters the ACFP server. Out-interface—Interface through which the packet is normally forwarded. • Dest-interface—ACFP server interface that is connected to the ACFP client. • • Context ID—Carried in packets that are mirrored or redirected to the ACFP client. If the interface connected to the ACFP client is specified in the policy, the ACFP server assigns it a global serial number, called the Context ID.
-
Page 12: Acfp Usage Restrictions
less than. The source port number of a matched packet is greater than the starting source port number and less than the ending source port number. Starting source port number • Ending source port number • Destination IP address • •... -
Page 13: Acfp Configuration Task List
When you disable the ACSEI function or change the operating mode for an internal interface (a virtual interface connecting the ACFP server with the ACFP client), to avoid disrupting the traffic, H3C recommends you perform the operation first on the ACFP client and then on the ACFP server. -
Page 14: Displaying And Maintaining Acfp
Trap message Level Expiration period of ACFP collaboration policy changed Notice ACFP collaboration rules are created Informational ACFP collaboration rules are removed Informational ACFP collaboration rules failed Error Expiration period of ACFP collaboration policy timed out Notice The generated traps are sent to the information center of the device. With the parameters for the information center set, the output rules for traps (whether the traps are allowed to be output and the output destinations) are decided. -
Page 15: Configuring Acsei
Configuring ACSEI Overview ACSEI provides a method for exchanging information between an ACFP server and its ACFP clients. As a supporting protocol for ACFP collaboration, ACSEI makes sure that an ACFP server can cooperate with its ACFP clients to provide services. Like ACFP, ACSEI uses the server/client model: •... -
Page 16: Starting And Running Acsei
Starting and running ACSEI ACSEI starts up and runs by using the following procedures: Run the ACSEI client application to enable the ACSEI client. Start up the device and enable the ACSEI server function on it. The ACSEI client multicasts registration requests. After the ACSEI server receives a valid registration request, it negotiates parameters with the ACSEI client. -
Page 17: Closing An Acsei Client
Step Command Remarks Set the monitoring timer for Optional. the ACSEI server to monitor acsei timer monitor seconds Five seconds by default. the ACSEI client. Closing an ACSEI client This feature is available only for an ACSEI client running on a Linux operating system. To close an ACSEI client: Step Command... -
Page 18: Index
Index A C D E O R Accessing an OAP module's CLI from the device,1 Enabling the ACFP server (the switch),7 ACFP configuration task list,7 Enabling the ACFP trap function on the switch,7 Configuring the ACFP client (the OAP module),7 Overview,9 Configuring the ACSEI client (the OAP module),1 1...
Need help?
Do you have a question about the S10500 Series and is the answer not in the manual?
Questions and answers