Instant Port Profiles

Instant Port Profiles (IPP) in ExtremeCloud IQ is an automated approach to configuring switch ports based on the connected devices. IPP streamlines the management of network-connected devices, such as access points (AP), security cameras, and VoIP devices by dynamically provisioning the appropriate port configuration automatically.

Some common use cases for IPP are:

IPP provides the capability to assign specific port profiles to client devices automatically, eliminating the need for manual port configuration by an administrator. When a user connects a device to a switch port, IPP allows the device to identify itself to the network system by its properties. Subsequently, IPP provisions the assigned port configuration, giving the device access to the network.

Create an IPP within the Switching Section of a Network Policy, assign IPP to ports within a switch template, or within the port configuration of a switch at device level configuration.

Some benefits of IPP are:
  • Reduced operational costs by automating the configuration of devices.
  • Improved security by ensuring that devices are placed in the correct VLANs.
  • Improved performance by configuring broadcast suppression for specific devices or device types.
Instant Port Profiles empower administrators to preconfigure switch ports with VLANs, storm control. These configurations are applied automatically when a connected device matches predefined conditions in a profile. Conditions are based on:
  • MAC Address (partial or exact matches)
  • LLDP Information (system type, MAC)

    IPP allows for custom definitions (device types) and match criteria, enabling automatic VLAN assignment and storm control parameters. IPP offers more granular control over the network configuration based on specific device types.

Device Types and Match Criteria

When a match occurs, action parameters specified in the profile are automatically configured by the system, such as managing devices that move between different switch ports and switches while requiring consistent VLAN and port configurations.
Important

Important

Tagged packets cannot be classified by IPP. For devices expected to send tagged data frames, use only LLDP (Link Layer Discovery Protocol) match configuration.

Wired Device Types

Each wired device type includes configuration that is dynamically applied to the port based on the match criteria. Dynamic configurations may include VLAN assignment and storm control parameters. VLAN configurations assign untagged VLANs based on the client's MAC address or assign tagged VLANs to the port.

Non-Forwarding VLAN

Instant Port Profiles also use a non-forwarding VLAN, defined by the customer. This VLAN is used to initially detect MAC addresses on a switch port, preventing traffic forwarding for untagged traffic until a device type match occurs.
Note

Note

The non-forwarding VLAN cannot be defined within a port type assigned to the switch; it is exclusively used for the Instant Port Profile feature.

Default Port Type

You can select a default port type for an Instant Port Profile. When there are port parameters that cannot be dynamically set by the device type configuration, the default port type settings provide configuration instead.

VLAN parameters on the default port type are applied. For example, if the default port type is a phone port and LLDP/CDP parameters are statically defined for the port, LLDP/CDP/MED is not enabled dynamically on the match actions.

Note

Note

Storm control settings are inherited when the non-match action is set to use the default port type, and a device doesn't match any defined device type.