Page 42
Filters and QoS Configuration for ERS 5500 | | |
Technical Configuration Guide | v2.0 | NN48500-559 |
11.3 Meters
To add a meter, enter the following command:
•ERS5500-48T(config)#qos meter <1-64000> name <name> committed-rate <1000- 1023000 Kbit/sec> max-burst-rate <1-4294967295> max-burst-duration <1- 4294967295> in-profile-action <1-64000> out-profile-action <1-64000>
To view the action number, enter the following command:
ERS5500-48T(config)#show qos action
| Id | Name | Drop | Update | 802.1p | Set Drop Extension | Storage |
| | | | | DSCP | Priority | Precedence | Type |
_____ | ________________ _____ | ______ ____________ | ___________ _________ | _______ |
1 | Drop_Traffic | Yes | Ignore Ignore | High Drop | ReadOnl |
2 | Standard_Service DPass | 0x0 | Priority 0 | High Drop | ReadOnl |
3 | Bronze_Service | DPass | 0xA | Priority 2 | Low Drop | ReadOnl |
4 | Silver_Service | DPass | 0x12 | Priority 3 | Low Drop | ReadOnl |
5 | Gold_Service | DPass | 0x1A | Priority 4 | Low Drop | ReadOnl |
6 | Platinum_Service DPass | 0x22 | Priority 5 | Low Drop | ReadOnl |
7 | Premium_Service | DPass | 0x2E | Priority 6 | Low Drop | ReadOnl |
8 | Network_Service | DPass | 0x30 | Priority 7 | Low Drop | ReadOnl |
9 | Null_Action | DPass | Ignore Ignore | Low Drop | ReadOnl |
| 64001 UntrustedClfrs1 | DPass | Ing 1p Ignore | Low Drop | Other |
| 64002 UntrustedClfrs2 | DPass | 0x0 | Priority 0 | High Drop | Other |
| | | | | | |
| QoS Meter Command Parameters | | | | |
| | | | |
| Parameters and variables | Description | | |
| <metid> | | Enter an integer to specify the QoS meter; range is 1 to 64000. |
| name <metname> | | Specify name for meter; maximum is 16 alphanumeric characters. |
| committed-rate <rate> | | Specifies rate that traffic must not exceed for extended periods to |
| | | | be considered in-profile. Enter the rate in Kb/s for in-profile traffic |
| | | | in increments of 1000 Kbits/sec; range is 1000 to 1023000 |
| | | | Kbits/sec. | | | |
| | | |
| max-burst-rate <burstrate> | | Specifies the largest burst of traffic that can be received a given |
| | | | time for the traffic to be considered in-profile. Used in calculating |
| | | | the committed burst size. Enter the burst size in Kb/s for in-profile |
| | | | traffic; range is 1 to 4294967295 Kbits/sec | |
| | | |
| max-burst-duration | | Specifies the amount of time that the largest burst of traffic that |
| <burstdur> | | can be received for the traffic to be considered in-profile. Used in |
| | | | calculating the committed burst size. Enter the burst duration in |
| | | | ms for in-profile traffic; range is 1 to 4294967295 ms. | |
| in-profile-action <actid> | | Specify the in-profile action ID. | |
| in-profile-action-name | | Specify the in-profile action name. | |
| <actname> | | | | | | |
| out-profile-action <actid> | | Specify the out-of-profile action ID. | |
| out-profile-action-name | | Specify the out-of-profile action name. | |
| <actname> | | | | | | |
___________________________________________________________________________________________________________________________
Nortel Confidential Information Copyright © 2008 Nortel Networks. All Rights Reserved. | |
External Distribution | 41 |
Contents
Ethernet Routing Switch
NN48500-559
Abstract
Table of Contents
List of Figures
List of Tables
Conventions
Document Updates
Symbols
Text
Overview Ethernet Routing Switch 5500 QoS and Filtering
Unrestricted Ports
Classification
Untrusted Ports
Layer 2 Classifier Elements
Actions Supported
Statistics
QoS Flow Chart
Filter Functionality
Overall Classification Functionality
Classifier Block Functionality
Port Range Functionality
7, 15, 31, 63 255, 511, 1025 4095, 8191 32762, or Min =
Default Policy Drop Action
Policies
NN48500-559
5520-24T-PWRconfig#qos agent buffer large maximum regular
5520-24T-PWRconfig#default qos agent buffer
Queue Sets
Ethernet Routing Switch 5500 Egress CoS Queuing
Egress CoS Queuing
CoS
5520-24T-PWRconfig#show qos queue-set-assignment
5520-24T-PWRconfig#qos agent queue set
5520-24T-PWRconfig#default qos agent queue-set
5520-24T-PWRconfig#qos agent reset-default
Egress Queue Recommendations
Traffic Meter and Shaping
Bucket Size
Actual Bucket Size in Bytes Actual size in bytes Interface
Actual Bucket Size
Policing Traffic
Parameter Description
Example
Interface Shaper
Meter Bucket Size and Duration
Bucket Size Max burst rate Committed rate Duration MSec
5530-24TFDconfig#show qos if-shaper port
Binary
Default Nortel Class of Service
Default Nortel CoS Markings
Hex Decimal
IP-ACL Configuration
QoS Access Lists ACL
ACL Configuration
Config#qos ip-acl name 1..16 character string ?
ACL Configuration Example
2 L2-ACL Configuration
ACL-Assign Configuration
Config#qos l2-acl name 1..16 character string ?
Verification
5530H-24TFD#show qos acl-assign
5530H-24TFD#show qos ip-acl
5530H-24TFD#show qos policy
5500config#no qos ip-acl
5500config#no qos acl-assign
5500config#no qos acl-assign 1 port 1/19
Changing ACL
Dynamic ARP Inspection Configuration
IP Security Features
Dhcp Snooping Configuration
Dhcp Snooping
IP Source Guard Configuration
IP Source Guard
Bpdu Filtering Configuration
Bpdu Filtering
QoS Applications Number of Classifiers Used Feature
QoS Interface Applications
Configuration Example
ARP Spoofing
Dhcp Attacks
Dhcp Snooping
10.3 DoS
Bpdu Blocking
ERS5500-48T#show qos if-assign
Configuration Steps Policy Configuration
Role Combination
ERS5500-48T#show qos if-group
Adding IP and L2 Element
ERS5500-48Tconfig#qos ip-element 1-64000?
Classification
IP Element
Adding a Classifier
Adding a Classifier Block
Meters
Parameters and variables Description
Add a New Policy
Configuration Examples
Pre-defined Values
QoS Action
Configure the Interface Role Combination
Configuration Example 1 Traffic Meter Using Policies
12.2.1 ERS5500 Configuration Using Policies
Configure the IP elements
Configure Meters
Configure the Classifier Block
ERS5500 Create the classifier block
ERS5500 Create the policy
Configure the Policy
Verify Operations
Verify the Role Combination
Verify Classifier and Classifier Block Configuration
Name m1
ERS5500-24T#show qos classifier-block
Verify Policy Configuration Verify that the QoS Policy
12.3.1 ERS5500 Configuration
IP ACL, Dhcp Snooping, ARP Inspection, and Source Guard
ERS5500 Add IP address to Vlan 700 and enable Ospf
ERS5500 Enable ARP-Inspection for VLAN’s 110
ERS5500 Assign the IP-ACL’s to ports
Verify DHCP-Snooping
Verify ARP Inspection
VID
Verify ACL Configuration
Verify IP Source Guard
NN48500-559
NN48500-559
ERS5500-24T#show qos acl-assign
Configuration Example 3 Port Range Using ACL or Policy
TCP Port Range
Configuration Using Policies
Configure the Policies
ERS5500 Create IP elements for UDP port range
Configuration Using IP-ACL’s
ERS5500 Remark all other traffic to Bronze
12.5.1 ERS5500 Configuration Using Policies
Create Policy
12.5.2 ERS5500 Configuration Using IP-ACL’s
ERS5500 Pass all other traffic with standard CoS
ERS5500 Assign the L2-ACL’s to ports
Configuration Example 5 L2 and L3 Classification
12.6.1 ERS5500 Configuration Using Policies
Configure Classifier and Classifier Blocks
ERS5500 Add L2 elements for Vlan 110
12.7.1 ERS5500 Configuration
Dscp Mapping via Un-restricted Port Role
ACL Configuration
Policy Configuration
View the Queue Assignments
ID ID
Configuration Example 7 Interface Shaping
Enable Shaping on Port
Verify Shape Rate Configuration
Software Baseline
Reference Documentation
Contact us