Both the administrative profile and policy rules are associated with the policy role by specifying the admin-pid option, in the case of an administrative profile, or a profile-index value, in the case of the policy rule. Administrative profiles and policy rules are configured using the configure policy rule command.
The administrative profile assigns a traffic classification to a policy role by using the admin-profile option of the configure policy rule command.
Note
Standard policy supports the VLAN (Virtual LAN) tag traffic classification for administrative profiles. All other traffic classifications are enhanced policy in an administrative profile context.Policy rules are based on traffic classifications. Administrative Policy and Policy Rule Traffic Classifications provides the supported policy rule traffic classification command options and definitions. All other traffic classifications are supported by standard policy.
A detailed discussion of supported traffic classifications is available in the “Traffic Classification Rules” section of the Extreme Management Center Policy Manager online help.
Administrative Policy and Policy Rule Traffic Classifications
| Traffic Classification | Description | Attribute ID | Enhanced Rule |
|---|---|---|---|
| macsource | Classifies based on MAC source address. | 1 | |
| macdest | Classifies based on MAC destination address. | 2 | |
| ipsourcesocket | Classifies based on source IP address. | 12 | |
| ipdestsocket | Classifies based on destination IP address. | 13 | |
| ip6dest | Classifies based on destination IPv6 address. | 10 | |
| ipttl | Classifies based on TTL. | 20 | |
| ip frag | Classifies based on IP fragmentation value. | 14 | |
| udpsourceportip | Classifies based on UDP source port and optional post-fix IP address. | 15 | |
| udpdestportip | Classifies based on UDP destination port and optional post-fix IP address. | 16 | |
| tcpsourceportip | Classifies based on TCP source port and optional post-fix IP address. | 17 | |
| tcpdestportip | Classifies based on TCP destination port and optional post-fix IP address. | 18 | |
| iptos | Classifies based on Type of Service field in IP packet. | 21 | |
| ipproto | Classifies based on protocol field in IP packet. | 22 | |
| ether | Classifies based on type field in Ethernet II packet. | 25 | |
| port | Classifies based on port-string. | 31 |
A data value is associated with most traffic classifications to identify the specific network element for that classification. For data value and associated mask details, see the “Valid Values for Policy Classification Rules” table in the configure policy rule command discussion of the command reference guide for your platform.
Print
this page
Email this topic
Feedback
View PDF
Download EPUB