Cisco WS-X6416-GE-MT - Interface Module - Expansion Uživatelský manuál stáhnout pdf (Strana 35)

White Paper

Cisco Catalyst OS Cisco IOS Software

set vlan 10

set security acl ip cap_acl permit ip any

any capture

commit security acl cap_acl

set security acl map cap_acl 10

set security acl capture-ports 1/1

vlan 10

access-list 101 permit ip any any

vlan access-map cap_acl

match ip address 101

action forward capture

vlan filter sample vlan-list 10

int gigabitethernet 1/1

switchport capture

Port-Based Access Control Lists (PACLs)

Supported only on the Cisco Catalyst 6500 Series Supervisor Engine 720 and Cisco Catalyst 6500

Supervisor Engine 32, PACLs are access lists mapped to physical ports. PACLs have three modes

of operation configurable on a per-port basis: port-based, VLAN-based, and merge modes. In port-

based mode, the PACL overrides the existing VACL and Cisco IOS Software ACL. In VLAN-based

mode, the VACL and Cisco IOS Software ACLs override the PACL. In merge mode, the ingress

PACL, VACL, and Cisco IOS Software ACL are merged together (VLAN-based mode is the default

mode).

To configure PACLs, the mode must be specified. The example below sets a PACL on port 2/1 in

port-based mode and maps the ACL “pacl_acl” to port 2/1:

Cisco Catalyst OS Cisco IOS Software

set port security-acl 2/1 port-based

set security acl ip pacl_acl permit ip any any

commit security acl pacl_acl

set security acl map pacl_acl 2/1

Switch(config)#int gi2/1

Switch(config-if)#switchport

Switch(config-if)#access-group mode prefer port

Switch(config-if)#ip access-group pacl_acl in

Quality of Service (QoS)

QoS is the use of several different features which all work to differentiate and prioritize network

traffic. These features include the classification, marking, policing, congestion avoidance, and

scheduling of traffic. In the Cisco Catalyst 6500 Series, QoS functionality resides on the PFC (for

Layer 3 marking, policing, and some classification functions) and online cards (for congestion

avoidance, scheduling, and other classification functions). With the Cisco Catalyst OS, a

supervisor without a PFC can be used for Layer 2-only QoS classification and marking. With the

PFC and the MSFC installed, Cisco IOS Software and a hybrid OS support full Layer 2/3/4 QoS

capabilities.

This section is not intended to provide a general overview of QoS functionality. Rather, it discusses

configuration differences between the Cisco Catalyst OS and Cisco IOS Software for the following

scenarios:

●

Configuring interface QoS

●

Configuring QoS policies

By default, QoS is disabled on both operating systems. The first step to implement QoS

functionality on the Cisco Catalyst 6500 is to enable QoS globally:

Cisco Catalyst OS Cisco IOS Software

set qos enable Router(config)# mls qos

1 2 ... 30 31 32 33 34 35 36 37 38 39 40 ... 50 51

Komentáře k této Příručce

Žádné komentáře

Cisco WS-X6416-GE-MT - Interface Module - Expansion Uživatelský manuál Strana 35

Komentáře k této Příručce

Související produkty a manuály pro Sítě Cisco WS-X6416-GE-MT - Interface Module - Expansion