Manuals / Avaya / Computer Equipment / Switch

Avaya P3343T-ML manual About Multilayer Policy

Models: P3343T-ML

1 178

Download 178 pages 4.71 Kb

Page 127

Multilayer Policy

Chapter 11 Avaya P330 Layer 2 Features

Multilayer Policy

Multilayer Policy is a set of features for enforcing QoS and Access Control policy on routed and switched packets. One of its major goals is supporting Differentiated Services for Avaya VoIP solutions.

About Multilayer Policy

Multilayer Policy is enforced on the 10/100 Mbps ports of a P334T-ML module. In general, Multilayer Policy consists of the following parts:

•Policy Lists — groupings of Access lists, DSCP-to-COS maps, and Trust mode attributes.

•Access Lists — ordered lists of classification rules applied to frames received and action pairs determining how they are to be handled.

•DSCP-to-COS Maps — mapping function that set the frame 802.1p priority according to its DSCP value.

•Trust Modes — policy-list attribute; either “untrusted,” “trust-COS,” or “trust-DSCP.”

Access Lists

Access Lists (ACL) are at the center of Multilayer Policy. Typically, users specify their classification demands by defining Access Lists. An Access List is an ordered list of classification rules and actions. For each frame received by the system, the Multilayer Policy application tries the classification rules—one-by-one—and executes the action associated with the first rule that matches.

Rules are based on the following properties:

•IP:IP version 4 packets with specific source and destination addresses (+ wildcards)

•IP version 4 packets with a specific protocol number – 0 to 255 – with specific source and destination addresses (+ wildcards).

•TCP:TCP/IPv4 packets with specific source and destination addresses (+ wildcards) and source and destination ports (+port ranges). The keyword “established” enables “permit” for TCP packets with “ack” flag set. E.g., this will not allow matching packets that open TCP connections.

•UDP:UDP/IPv4 packets with specific source and destination addresses (+ wildcards) and source and destination ports (+ port ranges).

Actions supported include:

•permit – allows the packet through

•deny – drops the packet

•deny-and-notify – drops the packet and sends an SNMP trap

•fwd0, fwd1 .... fwd7 – assigns priority to the packet

Avaya P334T-ML User’s Guide

111

Image 127

Avaya P3343T-ML manual About Multilayer Policy

Contents

AVAYA P334T-ML STACKABLE SWITCHSOFTWARE VERSION Installation and Configuration GuideDocument no avaya.comSection ContentsOverview Section InstallationConfiguring the Terminal Serial Port Parameters Section ConfigurationIngress VLAN Security Port Mirroring Constraints Section Troubleshooting and MaintenanceChapter 15 Updating the Software FCC Notice Before you Install the P330-MLSafety Information PrefaceNotes, Cautions, and Warnings WarrantyAvaya P334T-ML User’s Guide Avaya SupportAvaya P334T-ML User’s Guide SECTION 1 OVERVIEW Page Introduction Avaya P334T-ML FeaturesAvaya P334T-ML Overview ChapterDevice Manager Embedded Web Layer 3 Features P330-MLCommand Line Interface CLI Network Management and MonitoringPort Mirroring Avaya Integrated ManagerSMON Chapter 1 Avaya P334T-ML Overview Fans, Power Supply, and BUPS-ML MonitoringAvaya P334T-ML User’s Guide IETF - Layer Standards and CompatibilityAvaya P330 Standards Supported IEEEIETF - Network Monitoring Physical SpecificationsP334T-ML Switch Power RequirementsEMC Emissions SafetySafety - AC Version Safety - DC VersionBasic MTBF Stacking Sub-moduleInterfaces Basic MTBFApproved SFF/SFP GBIC Transceivers Safety InformationTo Remove the SFF/SFP GBIC transceiver InstallationSpecifications To Install the SFF/SFP GBIC transceiverAgency Approval Gigabit Fiber Optic CablingConsole Pin Assignments Avaya P334T-ML User’s Guide ChapterSECTION 2 INSTALLATION Page Chapter InstallationRequired Tools Site PreparationPower Requirements - DC Table 4.2 Power Requirements - ACRack Mounting Optional Connecting Stacked Switches Installing the X330STK-ML Stacking Sub-Module OptionalTo connect stacked switches 5 Power up the added modules X330RC InstallationChapter Avaya P334T-ML User’s GuideMaking Connections to Network Equipment Connecting Cables to Network EquipmentPrerequisites Page Chapter Powering Up the Avaya P330Powering On - Avaya P330 Module AC Powering On - Avaya P330 Switch DCPost-Installation Avaya P334T-ML Front Panel Avaya P334T-ML Front and Rear PanelsChapter LED Name P334T-ML LEDsChapter 6 Avaya P334T-ML Front and Rear Panels Avaya P334T-ML LED Descriptions Continued Figure 6.4 P334T-ML AC version Back Panel with Stacking Sub-module Avaya P334T-ML Back PanelBUPS-ML connector cover plate removed Table 6.2 Avaya P334T-ML - - Select buttonsAvaya P334T-ML User’s Guide BUPS-ML Input ConnectorFigure 6.6 BUPS-ML Input Connector Sticker Chapter 6 Avaya P334T-ML Front and Rear PanelsEstablishing a Serial Connection Establishing Switch AccessConfiguring the Terminal Serial Port Parameters Connecting a Terminal to the Avaya P330 Serial portThe mode can be either switch, router, wan, atm, mgp P330 SessionsAssigning P330’s IP Stack Address session routerEstablishing an SSH Connection Establishing a Telnet ConnectionOverview Connecting a Modem to the Console Portset interface ppp enable Establishing a Modem PPP Connection with the P330Entering the Supervisor Level Security LevelsEntering the CLI Chapter User AuthenticationSNMP Support Introduction to SNMPcontrol the P330 Users Groups Views SNMP CommandsIn order to In order to Introduction to SSH SSH Protocol SupportFigure 8.1 SSH Session Establishment Process SSH CommandsSCP Protocol Support Introduction to RADIUS RADIUSsent to switch Chapter 8 User AuthenticationUser attempts login Local User account authenticated in switch? No User name and password authenticated? No Authentication RejectRadius Commands Telnet Client Support Telnet CommandsIntroduction to Telnet Recovery Password Commands Recovery PasswordIntroduction Allowed Managers Allowed Managers CLI CommandsAllowed Managers Introduction Allowed Protocols Allowed Protocols CLI CommandsAllowed Protocols Introduction switch Use the following commandEnable Telnet access from the ip telnet-client enableSECTION 3 CONFIGURATION Page Chapter P330 Default SettingsConfiguring the Switch Avaya P330 Default SettingsFunction Ports 1 Ensure that the other side is also set to Autonegotiation EnabledPorts 51 Avaya P334T-ML User’s Guide Chapter 9 P330 Default SettingsIntroduction Switch ConfigurationBasic Switch Configuration ChapterIdentifying the system System Parameter ConfigurationOperating parameters Network Time Acquiring Protocols Parameter Configuration Uploading and Downloading Device Configurations and ImagesLayer 2 Configuration File In order to Layer 3 Configuration File In order to System Logging Introduction System LoggingApplications SinksSyslog Servers Syslog Configuration CLI Commands In order to Monitoring CPU Utilization Avaya P334T-ML User’s Guide Chapter 10 Switch ConfigurationOverview Avaya P330 Layer 2 FeaturesChapter Gigabit Ethernet Configuring Ethernet ParametersEthernet Fast EthernetGigabit Ethernet ports MMMMMMSSSSSS MM-MM-MM-SS-SS-SS Ethernet Configuration CLI Commands Priority queuing - 10/100 ports 4 queues 1G ports 2 queues Ethernet Implementation in the Avaya P334T-MLChapter 11 Avaya P330 Layer 2 Features Speed - 10/100 ports 1-48 1G ports 51VLAN Overview VLAN ConfigurationMulti VLAN Binding VLAN TaggingFigure 11.3 illustrates these binding modes in P330 Automatic VLAN Learning VLAN CLI CommandsIngress VLAN Security VLAN Implementation in the Avaya P334T-ML How “Port Based” Authentication Works Port Based Network Access Control PBNACPBNAC Implementation in the P330 Family Configuring the P330 for PBNAC PBNAC CLI Commands In order to Overview Spanning Tree ProtocolSpanning Tree Protocol Spanning Tree per PortRapid Spanning Tree Protocol RSTP Spanning Tree Implementation in the P330 Family Spanning Tree Protocol CLI Commands admin and operational RSTP status Use the following commandSet the port point-to-point admin set port point-to-point adminMAC Security Implementation in P330 MAC SecurityMAC Security CLI Commands Overview Configuring the P330 for MAC AgingMAC Aging CLI Commands MAC AgingLAG Overview LAG CLI CommandsLAG Implementation in the Avaya P330 Family of Products Port Redundancy Operation Port RedundancyIntermodule Port Redundancy Port Redundancy CLI CommandsIn order to Use the following commandswitch Chapter 11 Avaya P330 Layer 2 FeaturesOverview IP Multicast FilteringIP Multicast Implementation in the Avaya P334T-ML IP Multicast CLI CommandsRMON RMON CLI CommandsRMON Overview In order to SMON Overview SMONPort Mirroring Constraints Port Mirroring ConfigurationPort Mirroring CLI commands Port Mirroring OverviewAbout Multilayer Policy Multilayer PolicyMultilayer Policy Implementation in the P334T-ML Configuring the P334T-ML for Multilayer Policy Multilayer Policy CLI Commands In order to Implementation of Weighted Queuing in the P330-ML Weighted QueuingWeighted Queuing CLI Commands Port Classification Port Classification CLI CommandsOverview Overview Stack RedundancyStack Health Implementation of Stack Health in the P330 Familyprocedure Stack Health CLI CommandsUse the following command Initiate the stack health testingAvaya P334T-ML User’s Guide Chapter 11 Avaya P330 Layer 2 FeaturesIntroduction Avaya P330 Layer 3 FeaturesWhat is Routing? ChapterFigure 12.1 Routing Forwarding Routing ConfigurationMultinetting Multiple Subnets per VLAN IP Configuration CLI Commands IP Configurationset vlan Vlan-id name Vlan-name replacing Vlan-id by the Assigning Initial Router ParametersRouterconfigure# interface interface-name# ip vlan vland-id Routerconfigure# interface interface-nameThe Routerconfigure-ifinterface-name# prompt appears Routerconfigure-ifinterface-name# ip address ip- address netmask1 Go to http//license-lsg.avaya.com and click “request new license” Obtaining a Routing License KeyTo obtain a License Key that enables routing features Chapter 12 Avaya P330 Layer 3 FeaturesAvaya P334T-ML User’s Guide Chapter 12 Avaya P330 Layer 3 Features4 Enter contact information once per certificate 5 Click Next 6 View number of licenses leftLicense Key CLI Commands set license module license featureNameActivating a Routing License Key Avaya P334T-ML User’s Guide Chapter 12 Avaya P330 Layer 3 FeaturesRIP Overview RIP Routing Interchange Protocol ConfigurationRIP2 RIP CLI CommandsTable 12.1 DIfferences Between RIP and RIP2 In order to OSPF Overview OSPF Open Shortest Path First ConfigurationOSPF CLI Commands Static Routing Configuration CLI Commands Static Routing ConfigurationStatic Routing Overview Route Preferences Route Redistribution Route Redistribution CommandsARP Overview ARP Address Resolution Protocol Table ConfigurationThe ARP Table ARP CLI CommandsBOOTP/DHCP Overview BOOTP/DHCP Dynamic Host Configuration Protocol Relay ConfigurationBOOTP/DHCP CLI Commands NetBIOS Overview NetBIOS Re-broadcast ConfigurationNetBIOS Re-broadcast Configuration CLI Commands VRRP Overview VRRP Virtual Router Redundancy Protocol ConfigurationVRRP Configuration Example Case #2 VRRP CLI CommandsIn order to SRRP Configuration Example SRRP ConfigurationSRRP Overview SRRP CLI Commands Policy Configuration Overview Policy ConfigurationPolicy Configuration CLI Commands In order to Figure 12.4 Avaya P330 Policy Policy Configuration ExamplePolicy Configuration Example P330-1super# ip access-list 100 1 fwd6 tcp 149.49.0.0 0.0.255.255 anyP330-1super# ip access-list 100 2 fwd3 tcp any host P330-1super# ip access-list 100 3 deny tcp host 192.168.5.33 any eqIP Fragmentation and Reassembly Overview IP Fragmentation and ReassemblyIP Fragmentation/Reassembly CLI Commands SECTION 4 TROUBLESHOOTING AND MAINTENANCE Page Troubleshooting the Installation Troubleshooting the InstallationChapter Avaya P334T-ML User’s Guide Chapter 13 Troubleshooting the InstallationIntroduction MaintenanceReplacing the Stacking Sub-module ChapterChapter MaintenanceAvaya P334T-ML User’s Guide Downloading Software Updating the SoftwareSoftware Download Obtain Software OnlineDownload New Version without Overwriting Existing Version