Table of Contents
Advertisement
Configuring Policy
Policy enforcement is based on a packet's source address (policy user group name, IP
address and subnet mask), destination address (policy user group name, IP address and
subnet mask), assigned protocols and W310 ports.
An ACL and QoS list is applied to AP Groups and to traffic going through the W310.
A Policy User Group ID (PUGID) is a name of a group of users, used for policy (ACL and
QoS) classification. The PUGID is stored as a field of the User Group table.
When a packet that arrives from a W110 (ingress) or to a W110 (egress), it is checked
against the policy list that was bound to the Access Point Group of that port (W110).
A user group is defined as follows:
user-group RnD-stuff
A typical policy list that includes a PUGID would look as follows:
ip access-control-list 305
name "list #305"
!
ip-rule 10
composite-operation "Deny"
ip-protocol tcp
source-user-group r&d
destination-ip any
tcp destination-port gt 1024
exit
!
exit
The Access Point Group is defined as follows:
interface AP-Group conference-rooms
ip active-policy-list 305 in
add-ports 2,6
exit
240
policy-user-group r&d
home-gateway 149.49.200.212
vlan 10
exit
Avaya W310 User's Guide
Advertisement
Table of Contents
Troubleshooting
