30-20
Catalyst2950 and Catalyst2955 Switch Software Configuration Guide
78-11380-10
Chapter30 Co nf iguring QoS
Configuring Standard QoS
Configuring Classification Using Port Trust States
This section describes how to classify incoming traffic by using port trust states:
Configuring the Trust State on Ports within the QoS Domain, page 30-20
Configuring the CoS Value for an Interface, page 30-23
Configuring Trusted Boundary, page 30-23
Enabling Pass-Through Mode, page 30-25
Note Both the SI and EI support this feature.

Configuring the Trust State on Ports within the QoS Domain

Packets entering a QoS domain are classified at the edge of the QoS domain. When the packets are
classified at the edge, the switch port within the QoS domain can be configured to one of the trusted
states because there is no need to classify the packets at ever y switch within t he QoS domain. Figure30-4
shows a sample network topology.
Table30-5 Interaction Between Policy Maps and Security ACLs
Policy-Map Conditions Security-ACL
Conditions Action
When the packet is in profile. Permit specified
packets. Traffic is forwarded.
When the packet is out of profile and the
out-of-profile action is to mark down the DSCP
value.
Drop specified
packets. Traffic is dropped.
When the packet is out of profile and the
out-of-profile action is to drop the packet. Permit specified
packets. Traffic is dropped.
Drop specified
packets. Traffic is dropped.