Chapter 4 Operational Concepts and Configuration Examples

For example: The Policy rule ip access-list 100 1 fwd3 tcp any any points to entry number 3 in the Composite Operations Table based on the action name - fwd3. The resulting action is the combination of all the relevant operations in this entry, meaning the packet is forwarded, no traps are issued, the packet’s priority is changed to 3, and ‘no’ DSCP modification occurs.

Since the predefined entries in the Composite Operations Table include all of the available priority modification and Access Control actions, the only time you need to add entries to this table is for DSCP coloring.

For example: To set the DSCP value to 45 for all of the UDP traffic:

1Create a new entry in the Composite Operations Table with the name ‘cngdscp’ (or any other name) by entering:

ip composite-op name 100 15 cngdscp

Where 100 is the Policy list number, and 15 is the number of the created entry in the Composite Operations Table.

2Set the DSCP value to 45 by entering: ip composite-op dscp 100 15 45 Where 100 is the Policy list number, and 15 is the number of the created entry in the Composite Operations Table.

3Create the following Policy rule:

ip access-list 100 1 cngdscp udp any any

Since the action part of the Policy rule has a value of cngdscp, this value is searched for in the Composite Operations Table, and the associated actions in the Composite Operations Table are applied to the packet. In this case, the DSCP is changed to 45.

4Activate the new Access List created on a required interface using the ip access-groupcommand in the interface’s context.

For example: entering ip access-group 100 in within the Serial 1 interface context activates Access List 100 on the ingress of the Serial 1 interface.

In a similar manner, the DSCP-802.1p mapping table can point to an entry in the Composite Operations Table, causing the action of a particular DSCP value not to be a 802.1p Priority, but rather the value of the referenced entry in the Composite Operations Table.

The following Policy commands are performed outside a context:

• [no] ip access-list

Creates/deletes a policy statement.

ip access-default-actionSets the default action for a specific Policy list.

ip access-list-name

Sets the name for the Policy list.

ip access-list-owner

Sets the owner for the Policy list.

ip

access-list-cookie

Sets the Policy list cookie.

ip

access-list-copy

Copies a Policy list.

50

Avaya X330WAN User’s Guide

Page 71 Page 73
Page 72
Image 72
Avaya X330WAN Creates/deletes a policy statement, Sets the name for the Policy list, Sets the owner for the Policy list
Page 71 Page 73
Top Page Image Contents