Juniper JUNOSE SOFTWARE FOR E SERIES 11.3.X - POLICY MANAGEMENT CONFIGURATION GUIDE 2010-10-04 Configuration Manual page 142
Software for e series broadband services routers policy management configuration guide
Hide thumbs
Also See for JUNOSE SOFTWARE FOR E SERIES 11.3.X - POLICY MANAGEMENT CONFIGURATION GUIDE 2010-10-04:
- Reference manual (284 pages) ,
- Configuration manual (632 pages)
Table of Contents
Advertisement
JunosE 11.3.x Policy Management Configuration Guide
118
A packet that matches both the input policies and auxiliary input policies is subject to
both sets of policy actions.
E Series routers allow four input and two output policies per IP interface:
One secure input policy
Three nonsecure input policies
One secure output policy
One nonsecure output policy
Each classifier-group has a set of associated actions that is taken if it is the highest priority
match. The system performs only one set of actions per policy attachment. By using an
input and secondary-input policy, you can have overlapping classification with multiple
policy actions on ingress. Overlapping classification on egress is not supported.
An additional policy attachment point enables overlapping classification within the input
classification stage, between the input and secondary-input stages. There are five
attachment points for IP policies that are executed in series:
input
secondary-input
secure-input
output
secure-output
An explicit filter action, a forward action with a null next-interface, or a rate-limit action
can cause an immediate packet discard at any stage. Other actions, such are marking
and coloring can be done at each stage, with the last of each of these actions taking
precedence over the others.
For example, unique policies can be attached at each stage, all of which mark the IP TOS
field differently. The packet then exits the router with the TOS value that was set in the
output policy stage. However, if TOS is also used as a classification (input) term for each
of these policies, three different TOS values are presented to the classifier:
Original TOS received
TOS modified by the input policy
TOS value modified by the secondary-input policy
Figure 7 on page 119 shows the input policy stage after the addition of the auxiliary
substage. It is divided into three steps:
Apply classification for both substages.
1.
Perform policy actions (if any) for the primary attachment.
2.
Perform policy actions (if any) for the auxiliary attachment.
3.
Copyright © 2010, Juniper Networks, Inc.
Advertisement
Table of Contents
Related Manuals for Juniper JUNOSE SOFTWARE FOR E SERIES 11.3.X - POLICY MANAGEMENT CONFIGURATION GUIDE 2010-10-04
Related Products for Juniper JUNOSE SOFTWARE FOR E SERIES 11.3.X - POLICY MANAGEMENT CONFIGURATION GUIDE 2010-10-04
- Juniper JUNOSE SOFTWARE FOR E SERIES 11.0.X - BGP AND MPLS CONFIGURATION GUIDE 2009-12-30
- Juniper JUNOSE SOFTWARE FOR E SERIES 11.3.X - BGP AND MPLS CONFIGURATION GUIDE 2010-10-12
- Juniper JUNOSE SOFTWARE FOR E SERIES 11.3.X - IP SERVICES CONFIGURATION GUIDE 2010-10-01
- Juniper JUNOSE SOFTWARE FOR E SERIES 11.3.X - MULTICAST ROUTING CONFIGURATION GUIDE 2010-10-07
- Juniper JUNOSE SOFTWARE FOR E SERIES 11.3.X - PHYSICAL LAYER CONFIGURATION GUIDE 2010-09-24
- Juniper JUNOSE SOFTWARE FOR E SERIES 11.3.X - SERVICE AVAILABILITY CONFIGURATION GUIDE 2010-10-08
- Juniper JUNOSE SOFTWARE FOR E SERIES 11.3.X - LINK LAYER CONFIGURATION GUIDE 2010-10-13
- Juniper JUNOSE SOFTWARE FOR E SERIES 11.3.X - QUALITY OF SERVICE CONFIGURATION GUIDE 2010-09-22
- Juniper JUNOS OS 10.3 - XML MANAGEMENT PROTOCOL GUIDE 6-30-2010
- Juniper JUNOS SOFTWARE 10.2 - SOFTWARE INSTALLATION AND UPGRADE GUIDE 4-28-2010
- Juniper JUNOS 10.1 - CONFIGURATION GUIDE 1-2010
- Juniper JUNOSE 11.1.X - BROADBAND ACCESS CONFIGURATION GUIDE 6-4-2010
- Juniper JUNOSE SOFTWARE 11.1.X - BROADBAND ACCESS CONFIGURATION GUIDE 6-6-2010
- Juniper JUNOSE SOFTWARE 11.0.X - LINK LAYER CONFIGURATION GUIDE 4-1-2010
- Juniper JUNOSE SOFTWARE 11.2.X - LINK LAYER CONFIGURATION GUIDE 7-7-2010
- Juniper JUNOSE SOFTWARE 11.2.X - BROADBAND ACCESS CONFIGURATION GUIDE 7-20-2010