Chapter 5 Connecting the Management Interfaces and Performing Initial System Configuration

Initial System Configuration

Order of Entries

The order of the entries in the list is important. The entries in the list are tested sequentially, and the action is determined by the first entry that matches the connecting IP address. Therefore, when the entry “any” appears in an Access Control List, all succeeding entries are irrelevant.

Consider two hypothetical ACLs containing the same entries in a different order. The following list would permit access to all IP addresses, including 10.1.1.0:

permit any deny 10.1.1.0

Note that the above list could not actually be created using the setup utility, since after the “any” entry, no other entries could be added to the list.

The following list will deny access to IP address 10.1.1.0, but permit access to all others:

deny 10.1.1.0 permit any

If no entry in the assigned Access Control List matches the connection, or if the Access Control List is empty, the default action is deny.

To create the access control lists, complete the following steps:

Step 1 Enter the Access Control Lists configuration menu.

Would you like to enter the Access lists configuration menu? [no]: y

Type y and press Enter.

The Access Control Lists configuration dialog begins.

Step 2 You have the option of creating or modifying Access Control Lists, or skipping this section and proceeding directly to assign the existing ACLs to the desired management interfaces.

Would you like create new Access lists or modify existing lists? [no]: y

If you choose not to create or edit Access Control Lists, skip to Step 9: Configuring the Topology-

Dependent Parameters.

Step 3 Type the number of the Access Control List to be configured (1 through 99) and press

Enter.

Note that there is no default for this parameter.

Step 4 Begin adding entries to the selected list.

Indicate whether this entry is permitted access or denied access.

To permit access, press Enter.

To deny access, type n and press Enter.

Does this entry permit access? [yes]:

Step 5 Type the IP address to be added to this list, and press Enter.

SCE 2000 4xGBE Installation and Configuration Guide

5-14

OL-7824-02

 

 

 

 

Page 78
Image 78
Cisco Systems SCE 2000 4xGBE manual Order of Entries, Begin adding entries to the selected list

SCE 2000 4xGBE specifications

The Cisco Systems SCE 2000 4xGBE is a robust solution designed to optimize IP networks and enhance service delivery. As a member of Cisco's Service Control Engine (SCE) product line, this device is particularly suited for service providers looking to manage network traffic, improve service quality, and provide a suite of advanced management features.

One of the standout features of the SCE 2000 is its ability to process and analyze network traffic in real-time. This capability allows operators to gain insights into user behavior, application usage, and overall network performance. By utilizing deep packet inspection technology, the SCE 2000 can identify different types of traffic, enabling network managers to enforce policies and prioritize critical applications effectively.

In terms of interface capabilities, the SCE 2000 offers four 1 Gigabit Ethernet (GbE) ports. This versatility allows for easy integration into existing network infrastructure while ensuring ample bandwidth for data transfer. The device supports both IPv4 and IPv6 protocols, making it future-proof and suitable for evolving network demands.

One of the significant technologies employed by the SCE 2000 is Service Level Agreement (SLA) management. This feature ensures that service providers can meet their commitments to customers by monitoring performance metrics such as latency, jitter, and packet loss. The ability to generate reports based on SLA compliance allows for better customer engagement and transparency.

Additionally, the SCE 2000 facilitates dynamic resource allocation, enabling service providers to adapt network resources based on current demand. This elasticity is crucial in managing peak loads and ensuring a seamless user experience. Furthermore, the device’s support for Quality of Service (QoS) policies ensures that critical applications receive the necessary bandwidth and resources dedicated to maintaining operational efficiency.

The SCE 2000 also emphasizes security with features such as intrusion detection and prevention capabilities, helping protect the integrity of the network. This combination of performance monitoring, traffic management, and security makes the SCE 2000 an invaluable tool for service providers.

In conclusion, the Cisco Systems SCE 2000 4xGBE is a powerful network management solution that excels in providing real-time traffic management, SLA compliance, and security features. Its capabilities make it an essential component for service providers aiming to optimize their networks while delivering high-quality services to their customers.