Nortel Networks 5530, 5520, 5510 manual Configure Meters, Configure the Classifier Block

Page 46

Filters and QoS Configuration for ERS 5500

 

 

Technical Configuration Guide

v2.0

NN48500-559

ERS5500-24T(config)#qos ip-element 2 addr-type ipv4 protocol 17 dst-port-min 69 dst-port-max 69

ERS5500-24T(config)#qos ip-element 3 addr-type ipv4 protocol 17 dst-port-min 137 dst-port-max 137

Please note that protocol 17 = UDP.

12.2.1.3Configure three Classifiers, one for each of the IP elements configured above ERS5500 Step 1 – Create the an IP Classifier for each IP element created above

ERS5500-24T(config)#qos classifier 1 set-id 1 name c1 element-type ip element- id 1

ERS5500-24T(config)#qos classifier 2 set-id 2 name c2 element-type ip element- id 2

ERS5500-24T(config)#qos classifier 3 set-id 3 name c3 element-type ip element- id 3

The element-id = the element number you assigned in the previous step above

12.2.1.4 Configure Meters

As mentioned in section 5.2 above, if we do not configure a maximum duration rate, the committed burst will be automatically set to the maximum value. For all 10/100 Mbps and 1 GigE Ethernet ports, the maximum committed burst is 524,288 bytes. Hence, it does not matter what value you enter for the max-burst-rate as long is it is greater than the committed-rate.

ERS5500 Step 1 – Create the QoS meters: “m1” with 10M, “m2” with 5M, and “m3” with 1M

ERS5500-24T(config)#qos meter 1 name m1 committed-rate 10000 max-burst-rate 11000 in-profile-action 2 out-profile-action 1

ERS5500-24T(config)#qos meter 2 name m2 committed-rate 5000 max-burst-rate 6000 in-profile-action 2 out-profile-action 1

ERS5500-24T(config)#qos meter 3 name m3 committed-rate 1000 max-burst-rate 2000 in-profile-action 2 out-profile-action 1

12.2.1.5 Configure the Classifier Block

For this example, we will create a classifier block named “b1” with the following

ID 1 with Classifier element 1 and meter 1

ID 2 with classifier element 2 and meter 2

ID 3 with classifier element 3 and meter 3

ERS5500 Step 1 – Create the classifier block

ERS5500-24T(config)#qos classifier-block 1 block-number 1 name b1 set-id 1 meter 1

ERS5500-24T(config)#qos classifier-block 2 block-number 1 name b1 set-id 2

___________________________________________________________________________________________________________________________

Nortel Confidential Information Copyright © 2008 Nortel Networks. All Rights Reserved.

 

External Distribution

45

Page 45 Page 47
Image 46
Page 45 Page 47
Contents Ethernet Routing Switch NN48500-559 Abstract Table of Contents List of Figures List of TablesConventions Document UpdatesSymbols TextOverview Ethernet Routing Switch 5500 QoS and Filtering Unrestricted Ports ClassificationUntrusted Ports ƒ Layer 2 Classifier ElementsActions Supported StatisticsQoS Flow Chart Overall Classification Functionality Filter FunctionalityClassifier Block Functionality Port Range Functionality 7, 15, 31, 63 255, 511, 1025 4095, 8191 32762, or Min =Default Policy Drop Action PoliciesNN48500-559 5520-24T-PWRconfig#default qos agent buffer 5520-24T-PWRconfig#qos agent buffer large maximum regularQueue Sets Ethernet Routing Switch 5500 Egress CoS Queuing Egress CoS QueuingCoS 5520-24T-PWRconfig#show qos queue-set-assignment 5520-24T-PWRconfig#qos agent queue set5520-24T-PWRconfig#qos agent reset-default 5520-24T-PWRconfig#default qos agent queue-setEgress Queue Recommendations Traffic Meter and Shaping Bucket SizeActual Bucket Size in Bytes Actual size in bytes Interface Actual Bucket SizePolicing Traffic Parameter DescriptionExample Meter Bucket Size and Duration Interface ShaperBucket Size Max burst rate Committed rate Duration MSec 5530-24TFDconfig#show qos if-shaper port Binary Default Nortel Class of ServiceDefault Nortel CoS Markings Hex DecimalIP-ACL Configuration QoS Access Lists ACLACL Configuration Config#qos ip-acl name 1..16 character string ?ACL Configuration Example 2 L2-ACL ConfigurationACL-Assign Configuration Config#qos l2-acl name 1..16 character string ?5530H-24TFD#show qos acl-assign Verification5530H-24TFD#show qos ip-acl 5530H-24TFD#show qos policy 5500config#no qos ip-acl 5500config#no qos acl-assign5500config#no qos acl-assign 1 port 1/19 Changing ACLDynamic ARP Inspection Configuration IP Security FeaturesDhcp Snooping Configuration Dhcp SnoopingIP Source Guard Configuration IP Source GuardBpdu Filtering Configuration Bpdu FilteringQoS Applications Number of Classifiers Used Feature QoS Interface ApplicationsConfiguration Example ARP SpoofingDhcp Attacks Dhcp Snooping10.3 DoS Bpdu Blocking ERS5500-48T#show qos if-assign Configuration Steps Policy ConfigurationRole Combination ERS5500-48T#show qos if-groupAdding IP and L2 Element ERS5500-48Tconfig#qos ip-element 1-64000?Classification IP ElementAdding a Classifier Adding a Classifier BlockMeters Parameters and variables DescriptionAdd a New Policy Pre-defined Values Configuration ExamplesQoS Action Configure the Interface Role Combination Configuration Example 1 Traffic Meter Using Policies12.2.1 ERS5500 Configuration Using Policies Configure the IP elementsConfigure the Classifier Block Configure MetersERS5500 Create the classifier block ERS5500 Create the policy Configure the PolicyVerify Operations Verify the Role CombinationVerify Classifier and Classifier Block Configuration Name m1ERS5500-24T#show qos classifier-block Verify Policy Configuration Verify that the QoS Policy 12.3.1 ERS5500 Configuration IP ACL, Dhcp Snooping, ARP Inspection, and Source GuardERS5500 Add IP address to Vlan 700 and enable Ospf ERS5500 Enable ARP-Inspection for VLAN’s 110 ERS5500 Assign the IP-ACL’s to ports Verify DHCP-SnoopingVerify ARP Inspection VIDVerify ACL Configuration Verify IP Source GuardNN48500-559 NN48500-559 ERS5500-24T#show qos acl-assign Configuration Example 3 Port Range Using ACL or Policy TCP Port RangeConfigure the Policies Configuration Using PoliciesERS5500 Create IP elements for UDP port range Configuration Using IP-ACL’s ERS5500 Remark all other traffic to Bronze12.5.1 ERS5500 Configuration Using Policies Create PolicyERS5500 Pass all other traffic with standard CoS 12.5.2 ERS5500 Configuration Using IP-ACL’sERS5500 Assign the L2-ACL’s to ports Configuration Example 5 L2 and L3 Classification 12.6.1 ERS5500 Configuration Using PoliciesConfigure Classifier and Classifier Blocks ERS5500 Add L2 elements for Vlan 11012.7.1 ERS5500 Configuration Dscp Mapping via Un-restricted Port RoleACL Configuration Policy ConfigurationView the Queue Assignments ID IDEnable Shaping on Port Configuration Example 7 Interface ShapingVerify Shape Rate Configuration Software Baseline Reference DocumentationContact us
Top Page Image Contents