Ethernet Routing Switch
NN48500-559
Abstract
Table of Contents
List of Figures
List of Tables
Document Updates
Symbols
Conventions
Text
Overview Ethernet Routing Switch 5500 QoS and Filtering
Classification
Untrusted Ports
Unrestricted Ports
ƒ Layer 2 Classifier Elements
Actions Supported
Statistics
QoS Flow Chart
Overall Classification Functionality
Filter Functionality
Classifier Block Functionality
Port Range Functionality
7, 15, 31, 63 255, 511, 1025 4095, 8191 32762, or Min =
Default Policy Drop Action
Policies
NN48500-559
5520-24T-PWRconfig#default qos agent buffer
5520-24T-PWRconfig#qos agent buffer large maximum regular
Queue Sets
Ethernet Routing Switch 5500 Egress CoS Queuing
Egress CoS Queuing
CoS
5520-24T-PWRconfig#show qos queue-set-assignment
5520-24T-PWRconfig#qos agent queue set
5520-24T-PWRconfig#qos agent reset-default
5520-24T-PWRconfig#default qos agent queue-set
Egress Queue Recommendations
Traffic Meter and Shaping
Bucket Size
Actual Bucket Size
Policing Traffic
Actual Bucket Size in Bytes Actual size in bytes Interface
Parameter Description
Example
Meter Bucket Size and Duration
Interface Shaper
Bucket Size Max burst rate Committed rate Duration MSec
5530-24TFDconfig#show qos if-shaper port
Default Nortel Class of Service
Default Nortel CoS Markings
Binary
Hex Decimal
QoS Access Lists ACL
ACL Configuration
IP-ACL Configuration
Config#qos ip-acl name 1..16 character string ?
2 L2-ACL Configuration
ACL-Assign Configuration
ACL Configuration Example
Config#qos l2-acl name 1..16 character string ?
5530H-24TFD#show qos acl-assign
Verification
5530H-24TFD#show qos ip-acl
5530H-24TFD#show qos policy
5500config#no qos acl-assign
5500config#no qos acl-assign 1 port 1/19
5500config#no qos ip-acl
Changing ACL
IP Security Features
Dhcp Snooping Configuration
Dynamic ARP Inspection Configuration
Dhcp Snooping
IP Source Guard Configuration
IP Source Guard
Bpdu Filtering Configuration
Bpdu Filtering
QoS Applications Number of Classifiers Used Feature
QoS Interface Applications
Configuration Example
ARP Spoofing
Dhcp Attacks
Dhcp Snooping
10.3 DoS
Bpdu Blocking
Configuration Steps Policy Configuration
Role Combination
ERS5500-48T#show qos if-assign
ERS5500-48T#show qos if-group
ERS5500-48Tconfig#qos ip-element 1-64000?
Classification
Adding IP and L2 Element
IP Element
Adding a Classifier
Adding a Classifier Block
Meters
Parameters and variables Description
Add a New Policy
Pre-defined Values
Configuration Examples
QoS Action
Configuration Example 1 Traffic Meter Using Policies
12.2.1 ERS5500 Configuration Using Policies
Configure the Interface Role Combination
Configure the IP elements
Configure the Classifier Block
Configure Meters
ERS5500 Create the classifier block
Configure the Policy
Verify Operations
ERS5500 Create the policy
Verify the Role Combination
Verify Classifier and Classifier Block Configuration
Name m1
ERS5500-24T#show qos classifier-block
Verify Policy Configuration Verify that the QoS Policy
12.3.1 ERS5500 Configuration
IP ACL, Dhcp Snooping, ARP Inspection, and Source Guard
ERS5500 Add IP address to Vlan 700 and enable Ospf
ERS5500 Enable ARP-Inspection for VLAN’s 110
ERS5500 Assign the IP-ACL’s to ports
Verify DHCP-Snooping
Verify ARP Inspection
VID
Verify ACL Configuration
Verify IP Source Guard
NN48500-559
NN48500-559
ERS5500-24T#show qos acl-assign
Configuration Example 3 Port Range Using ACL or Policy
TCP Port Range
Configure the Policies
Configuration Using Policies
ERS5500 Create IP elements for UDP port range
Configuration Using IP-ACL’s
ERS5500 Remark all other traffic to Bronze
12.5.1 ERS5500 Configuration Using Policies
Create Policy
ERS5500 Pass all other traffic with standard CoS
12.5.2 ERS5500 Configuration Using IP-ACL’s
ERS5500 Assign the L2-ACL’s to ports
Configuration Example 5 L2 and L3 Classification
12.6.1 ERS5500 Configuration Using Policies
Configure Classifier and Classifier Blocks
ERS5500 Add L2 elements for Vlan 110
12.7.1 ERS5500 Configuration
Dscp Mapping via Un-restricted Port Role
ACL Configuration
Policy Configuration
View the Queue Assignments
ID ID
Enable Shaping on Port
Configuration Example 7 Interface Shaping
Verify Shape Rate Configuration
Software Baseline
Reference Documentation
Contact us
