Print this pagePrint this page

Email this topicEmail this topic

View PDFView PDF

Download EPUBDownload EPUB

Example Configuration

The following shows an example S- K- and 7100-Series device Protocol-Based VLAN Classification configuration using the steps in Configuring Protocol-Based VLAN Classification. This example configures a policy that ensures that IP traffic received on the specified ingress ports will be mapped to VLAN 2, while all other types of traffic will be mapped to VLAN 3.

  1. Two VLANs are created: VLAN 2 and VLAN 3.
  2. Ports 1 through 5 on the Gigabit Ethernet IOM in slot 4 are configured as egress ports for the VLANs while ports 8 through 10 on the Gigabit Ethernet IOM in slot 5 are configured as ingress ports that will do the policy classification.
  3. Policy profile number 1 is created that enables PVID override and defines the default behavior (classify to VLAN 3) if none of the classification rules created for the profile are matched.
  4. Administrative rules are created that apply policy profile number 1 to all frames received on the ingress ports ge.5.8 through 10.
  5. Classification rules are created for policy profile number 1 that assign IP frames to VLAN 2. The rules identify IP frames by using the ether protocol parameter, which classifies on the Type field in the headers of Layer 2 Ethernet II frames, and the protocol data of 0x0800 (IP type), 0x0806 (ARP type), and 0x8035 (RARP type).
    System(rw)->set vlan create 2,3
System(rw)->set vlan egress 2 ge.4.1-2
System(rw)->set vlan egress 3 ge.4.3-5
System(rw)->set port ingress-filter ge.5.8-10 disable
System(rw)->set policy profile 1 name protocol_based_vlan pvid-status enable 
   pvid 3
System(rw)->set policy rule admin-profile port ge.5.8 port-string ge.5.8 
   admin-pid 1
System(rw)->set policy rule admin-profile port ge.5.9 port-string ge.5.9 
   admin-pid 1
System(rw)->set policy rule admin-profile port ge.5.10 port-string ge.5.10 
   admin-pid 1
System(rw)->set policy rule 1 ether 0x0800 mask 16 vlan 2
System(rw)->set policy rule 1 ether 0x0806 mask 16 vlan 2
System(rw)->set policy rule 1 ether 0x8035 mask 16 vlan 2
Published May 2016prev | next

Email this topicEmail this topic

Print this pagePrint this page