HP 6125G HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration
HP 6125G Manual
View all HP 6125G manuals
Add to My Manuals
Save this manual to your list of manuals |
HP 6125G manual content summary:
- HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 1
HP 6125 Blade Switch Series ACL and QoS Configuration Guide Part number: 5998-3159 Software version: Release 2103 Document version: 6W100-20120907 - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 2
, or use of this material. The only warranties for HP products and services are set forth in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional warranty. HP shall not be liable for technical or editorial errors or - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 3
ACLs 3 ACL configuration task list 3 Configuring a time range 4 Configuring a basic ACL 4 Configuring an IPv4 basic ACL 4 Configuring an IPv6 basic ACL 5 Configuring an advanced ACL 6 Configuring an IPv4 advanced ACL 6 Configuring an IPv6 advanced ACL 7 Configuring an Ethernet frame header - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 4
the QoS policy to an interface 22 Applying the QoS policy to online users 22 Applying the QoS policy to a VLAN 23 Applying the QoS policy globally 23 Displaying and maintaining QoS policies 23 Configuring priority mapping 25 Overview 25 Types of priorities 25 Priority mapping tables 25 - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 5
example 44 Configuring WFQ queuing 45 Configuration procedure 45 Configuration example 46 Configuring SP+WRR queuing 46 Configuration procedure 46 Configuration example 47 Configuring SP+WFQ queuing 47 Configuration procedure 47 Configuration example 48 Configuring congestion avoidance - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 6
requirements 68 Configuration procedure 69 Appendix A Default priority mapping tables 70 Uncolored priority mapping tables 70 Appendix B Packet precedences 71 IP precedence and DSCP values 71 802.1p priority 72 Support and other resources 74 Contacting HP 74 Subscription service 74 Related - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 7
Configuring traffic classification and identification. Applications on the switch An ACL is implemented in hardware or applied to software to process traffic. The user interface access control module denies packets that rename it or delete its name. For an Ethernet frame header ACL, the ACL number and - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 8
Ethernet frame header ACL Sequence of tie breakers 1. VPN instance 2. More 0s in the source IP address wildcard (more 0s means a narrower IP address range) 3. Rule configured destination IPv6 address 4. Narrower TCP/UDP service port number range 5. Rule configured earlier 1. More 1s in the source - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 9
the rule remark command in ACL and QoS Command Reference for your automatically numbers rules. For example, the default ACL rule numbering step is 5. If , if the numbering step is 5 (the default), and there are five ACL rules numbered 0, HP ACL implementation: • Filters all fragments by default - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 10
date2 ] | from time1 date1 [ to time2 date2 ] | to time2 date2 } By default, no time range exists. Repeat this command with the same time range name to create multiple statements for a time range. Configuring a basic ACL Configuring an IPv4 basic ACL IPv4 basic ACLs match packets based only on - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 11
. 8. Enable counting ACL rule matches performed in hardware-count enable hardware. Optional. Disabled by default. When the ACL is referenced by a QoS policy, this command does not take effect. Configuring an IPv6 basic ACL Step 1. Enter system view. 2. Create an IPv6 basic ACL view and - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 12
rule [ rule-id ] remark text By default, no rule range remarks are configured. hardware-count enable Optional. Disabled by default. When the ACL is referenced by a QoS policy, this command does not take effect. Configuring an advanced ACL Configuring an IPv4 advanced ACL IPv4 advanced ACLs match - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 13
comment text Optional. By default, no rule comments are configured. rule [ rule-id ] remark text Optional. By default, no rule range remarks are configured. hardware-count enable Optional. Disabled by default. This command is available only on the S3100V2-EI switches. When the ACL is referenced - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 14
. [ match-order { auto | config } ] You can use the acl ipv6 name acl6-name command to enter the view of a named IPv6 ACL. 3. Configure a description for the IPv6 description text advanced ACL. Optional. By default, an IPv6 advanced ACL has no ACL description. 4. Set the rule numbering step - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 15
ACL description. Optional. The default setting is 5. By default, an Ethernet frame header ACL does not contain any rule. The lsap keyword is not supported if the ACL is for QoS traffic classification. Optional. By default, no rule comments are configured. Optional. By default, no rule range remarks - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 16
at Layer 3. Applying an IPv4 or Ethernet frame header ACL for packet filtering Step Command 1. Enter system view. system-view 2. Ethernet frame packet-filter { acl-number | header ACL to the interface to name acl-name } { inbound filter packets. | outbound } Remarks N/A N/A By default - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 17
default, no IPv6 ACL is applied to the interface. Displaying and maintaining ACLs Task Command Remarks Display configuration user view Configuration example of using ACL for device management Network requirements As shown in Figure 1, configure ACLs so that: • Host A can telnet to the switch - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 18
ACL 2000 to the inbound traffic of all telnet user interfaces to limit the telnet login requests. [Switch] user-interface vty 0 7 [Switch-ui-vty0-7] acl 2000 inbound 2. Limit the access to the TFTP server: # Create IPv4 basic ACL 2001, and configure a rule for the ACL to permit only the packets - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 19
] ftp server enable # Use ACL 2001 to control FTP clients' access to the FTP server. [Switch] ftp server acl 2002 IPv4 packet filtering configuration example Network requirements As shown in Figure 2, apply an ACL to the inbound direction of interface GigabitEthernet 1/0/1 on Device A so that every - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 20
on Device A so that every day from 08:00 to 18:00 the interface allows only packets from Host A to pass through. Figure 3 Network diagram Configuration procedure # Create a time range from 08:00 to 18:00 every day. system-view [DeviceA] time-range study 8:0 to 18:0 daily # Create IPv6 ACL - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 21
users and to utilize network resources. The following section describes some typical QoS service models and widely used, mature QoS techniques. QoS service models Best-effort service delivery or control delay. The best-effort service model is the default model in the Internet and applies to most - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 22
line rate, congestion management, and congestion avoidance. They address problems that arise at different positions of a network. Figure 4 Placement to a class. Based on classes, you can provide differentiated services. • Traffic policing-Polices flows entering or leaving a device, and - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 23
approaches: • MQC approach • Non-MQC approach Some features support both approaches, but some support only one. MQC approach In modular QoS configuration (MQC) approach, you configure QoS service parameters by using QoS policies (see "Configuring a QoS policy"). Non-MQC approach In non-MQC approach - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 24
Configuring a QoS policy Overview A QoS policy is a set of class-behavior associations and the specific set of QoS actions to the class of traffic. Figure 5 shows how to configure a QoS policy. Figure 5 QoS policy configuration procedure Defining a class To define a class, specify its name and then - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 25
. 3. Configure match criteria. Command system-view traffic classifier tcl-name [ operator { and | or } ] if-match match-criteria Remarks N/A By default, the 2000 to 3999 for an IPv6 ACL, and 4000 to 4999 for an Ethernet frame header ACL. The acl-name argument is a case-insensitive string of - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 26
4095. The local QoS IDs supported on the HP 6125 switches are from 1 to 3999. source VLAN ID ranges from 1 to 4094. service-vlan-id { vlan-id-list | vlan configure QoS actions, such as priority marking and traffic redirecting, in traffic behavior view. To define a traffic behavior: Step Command - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 27
customer network VLAN ID or service provider network VLAN ID, see Layer 2-LAN Switching Configuration Guide. Configuration procedure To associate a class in a QoS policy applied to an interface, VLAN, or inactive user profile, or globally. If a class references an ACL for traffic classification - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 28
the QoS policy to online users: Step 1. Enter system view. Command system-view Remarks N/A 2. Enter user profile view. user-profile profile-name The configuration made in user profile view takes effect when the user profile is activated and the users of the user profile are online. For more - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 29
QoS policies Task Display traffic class configuration. Display traffic behavior configuration. Display user-defined QoS policy configuration. Display QoS policy configuration on the specified or all interfaces. Command Remarks display traffic classifier user-defined [ tcl-name ] [ | Available in - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 30
Display VLAN QoS policy configuration. display qos vlan-policy { name policy-name | vlan vlan-id } [ slot slot-number ] [ reset qos vlan-policy [ vlan vlan-id ] [ inbound | outbound ] Available in user view Clear the statistics for a QoS policy applied globally. reset qos policy global [ inbound - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 31
, depending on your configuration, the device assigns assign to a packet for subsequent packet processing. The switch provides the following priority mapping tables: • dot1p-dp- to only IP packets. The default priority mapping tables (see "Appendix A Default priority mapping tables") are available - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 32
fields carried in packets. The HP Blade 6125 Switch Series provides the following priority trust in Figure 6. Figure 6 Priority mapping procedure for an Ethernet packet Receive a packet on a port Which priority is configured, the switch performs priority marking before priority mapping. The switch - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 33
HP recommends planning QoS throughout the network before making your QoS configuration. Configuring a priority mapping table Step 1. Enter system view. 2. Enter priority mapping table view. 3. Configure the priority mapping table. Command dot1p N/A Use either command. By default, the device trusts - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 34
system-view interface interface-type interface-number qos priority priority-value Remarks N/A N/A The default port priority is 0. Displaying priority mappings Task Command Remarks Display priority mapping table configuration. display qos map-table [ dot1p-dp | dot1p-lp | dscp-dot1p | dscp-dp - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 35
department to 4. • The management department connects to GigabitEthernet 1/0/3 of Device, which sets the 802.1p priority of traffic from the management department to 5. Configure port priority, 802.1p-to-local mapping table, and priority marking to implement the plan as described in Table 3. Table - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 36
quit # Set the port priority of GigabitEthernet 1/0/3 to 5. [Device] interface gigabitethernet 1/0/3 [Device-GigabitEthernet1/0/3] qos priority 5 [Device-GigabitEthernet1/0/3] quit 2. Configure the 802.1p-to-local mapping table to map 802.1p priority values 3, 4, and 5 to local precedence values - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 37
marketing department, and R&D department to the Internet with 802.1p priorities 4, 5, and 3, respectively. Use the priority mapping table you have configured to map the 802.1p priorities to local precedence values 6, 4, and 2, respectively, for differentiated traffic treatment. # Create ACL 3000 to - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 38
and rate limit are QoS technologies that help assign network resources, such as assign bandwidth. They increase network performance and user satisfaction. For example, you can configure a flow to use only the resources committed to it in a certain time range. This avoids network congestion caused by - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 39
, packets are colored red. Traffic policing IMPORTANT: Traffic policing supports policing the inbound traffic and the outbound traffic. A typical application is widely used in policing traffic entering the networks of internet service providers (ISPs). It can classify the policed traffic and take - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 40
are released, traffic shaping takes out the cached packets and sends them out. Figure 11 GTS application Device A Device B Physical link Line rate Line rate supports rate-limiting the inbound traffic and the outbound traffic. 34 - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 41
. Otherwise, you will fail to apply the QoS policy successfully. Configuration procedure To configure traffic policing: Step 1. Enter system view. 2. Create a class and enter class view. 3. Configure match criteria. Command Remarks system-view N/A traffic classifier tcl-name [ operator { and - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 42
policy to online users • Applying the QoS policy to a VLAN • Applying the QoS policy globally N/A Choose one application destination as needed. Configuring GTS The Switch Series supports queue-based GTS, which shapes traffic of a specific queue. To configure GTS: Step Command Remarks 1. Enter - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 43
] Displaying and maintaining traffic policing, GTS, and line rate On the HP Blade 6125 Switch Series, you can configure traffic policing in MQC approach. For more information about the displaying and maintaining commands, see "Displaying and maintaining QoS policies." Task Display interface GTS - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 44
traffic behavior server [DeviceA-behavior-server] car cir 1024 red remark-dscp-pass 0 [DeviceA-behavior-server] quit # Create a behavior named host, and configure the CAR action for the behavior as follows: set the CIR to 256 kbps. [DeviceA] traffic behavior host [DeviceA-behavior-host] car cir 256 - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 45
[DeviceB] traffic classifier http [DeviceB-classifier-http] if-match acl 3001 [DeviceB-classifier-http] quit # Create a class named class, and configure the class to match all packets. [DeviceB] traffic classifier class [DeviceB-classifier-class] if-match any [DeviceB-classifier-class] quit # Create - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 46
system breakdown Congestion is unavoidable in switched networks and multi-user application environments. To improve the service performance of your network, you a port. Each queuing algorithm addresses a particular network traffic problem, and has a different impact on bandwidth resource assignment, - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 47
so on. You can assign mission-critical packets to the high priority queue to make sure that they are always served first, and assign common service packets to the low priority queues and transmitted when the high priority queues are empty. The disadvantage of SP queuing is that packets in the - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 48
or w0) to decide the proportion of resources assigned to the queue. The Switch Series supports byte-count weight (which determines the weight by the number of bytes scheduled WRR queuing is that when the queues are scheduled in turn, the service time for each queue is not fixed. If a queue is empty, - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 49
. The switch schedules packets Configuring SP queuing Configuration procedure To configure SP queuing: Step 1. Enter system view. Command system-view Remarks N/A 2. Enter interface view. interface interface-type interface-number N/A 3. Configure SP queuing. qos sp Optional. The default - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 50
WRR queuing Configuration procedure To configure WRR queuing: Step 1. Enter system view. 2. Enter interface view. 3. Enable byte-count or packet-based WRR queuing. Command system-view interface interface-type interface-number qos wrr [ byte-count | weight ] Remarks N/A N/A The default queuing - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 51
Configure the scheduling weight for a queue. 5. Configure the minimum guaranteed bandwidth for a WFQ queue. 6. Display WFQ queuing configuration. Command -expression ] Remarks N/A N/A The default queuing algorithm on an interface is SP queuing. Select a command according to the WFQ type (byte - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 52
Step Command 1. Enter system view. system-view 2. Enter interface view. interface interface-type interface-number 3. Enable byte-count or qos wrr [ byte-count | packet-based WRR queuing. weight ] 4. Configure SP queue scheduling. qos wrr queue-id group sp Remarks N/A N/A By default, all - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 53
Enable byte-count or packet-based WFQ queuing. 4. Configure SP queue scheduling. 5. Configure the scheduling weight for a queue. Command system-view interface interface-type interface-number Remarks N/A N/A qos wfq [ byte-count | weight ] By default, SP queuing is enabled. qos wfq queue-id group - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 54
the minimum guaranteed bandwidth for a queue. Command qos bandwidth queue queue-id min bandwidth-value Remarks Optional. 64 kbps for each queue by default. NOTE: To guarantee successful WFQ configuration, make sure that the scheduling weight type (byte-count or packet-based) is the same as - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 55
size is between the lower threshold and the upper threshold, the received packets are dropped at the user-configured drop probability. Introduction to WRED configuration On the HP Blade 6125 Switch Series, WRED is implemented with WRED tables. WRED tables are created globally in system view and then - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 56
the switch drops packets at the user-configured drop WRED table. Configuration procedure To configure and apply a queue-based WRED table: Step Command Remarks 1. Enter limit high-limit high-limit [ discard-probability discard-prob ] By default, low-limit is 100, high-limit is 1000, and discard - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 57
Displaying and maintaining WRED Task Display WRED configuration information on the interface or all interfaces. Display configuration information about a WRED table or all WRED tables. Command display qos wred interface [ interface-type interface-number ] [ | { begin | exclude | include } regular- - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 58
specific IP address according to network status. Configuration procedure To configure traffic filtering: Step Command Remarks 1. Enter system view. system-view interface • Applying the QoS policy to online users • Applying the QoS policy to a VLAN • Applying the QoS policy globally - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 59
the packets with source port being 21, and received on GigabitEthernet 1/0/1. Figure 18 Network diagram Host Device GE1/0/1 Configuration procedure # Create advanced ACL 3000, and configure a rule to match packets whose source port number is 21. system-view [DeviceA] acl number 3000 - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 60
priority mapping, see "Configuring priority mapping." Configuration procedure To configure priority marking: Step Command 1. Enter system view Optional. Optional. Optional. The local QoS ID is used for identifying services and has only local significance. By marking different classes of traffic - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 61
Display the priority marking configuration. Command qos policy policy-name user-defined [ behavior-name ] [ | { begin | exclude | include } regular-expression ] Remarks N/A N/A N/A Choose one application destination as needed. Optional. Available in any view The following table shows the support - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 62
] acl number 3000 [Device-acl-adv-3000] rule permit ip destination 192.168.0.1 0 [Device-acl-adv-3000] quit # Create advanced ACL 3001, and configure a rule to match packets with destination IP address 192.168.0.2. [Device] acl number 3001 [Device-acl-adv-3001] rule permit ip destination 192.168 - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 63
With QoS local ID marking, however, traffic limit applies to the two classes as a whole, allowing the switch to dynamically assign the bandwidth to the two classes depending on their traffic size. To configure local QoS ID marking to limit the total rate of the two classes, you need to mark packets - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 64
traffic classifier class_b [Sysname-classifier-class_b] if-match qos-local-id 100 [Sysname-classifier-class_b] quit # Create a behavior behavior_b, and configure the action of limiting traffic rate to 128 kbps for the behavior. [Sysname] traffic behavior behavior_b [Sysname-behavior-behavior_b] car - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 65
a port, VLAN, or all ports. • You can use the display traffic behavior user-defined command to view the traffic redirecting configuration. Configuration procedure To configure traffic redirecting: Step Command Remarks 1. Enter system view. system-view N/A 2. Create a class and enter class - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 66
Command Ethernet 1/3 of Device B belong to VLAN 201. • On Device A, the IP address of VLAN-interface 200 is 200.1.1.1/24, and that of VLAN-interface 201 is 201.1.1.1/24. • On Device B, the IP address of VLAN-interface 200 is 200.1.1.2/24, and that of VLAN-interface 201 is 201.1.1.2/24. Configure - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 67
[DeviceA-acl-basic-2000] rule permit source 2.1.1.1 0 [DeviceA-acl-basic-2000] quit # Create basic ACL 2001, and configure a rule to match packets with source IP address 2.1.1.2. [DeviceA] acl number 2001 [DeviceA-acl-basic-2001] rule permit source 2.1.1.2 0 [DeviceA-acl-basic-2001] quit # Create a - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 68
behavior configuration information. 6. Display the configuration and statistics for the specified aggregate CAR. Command Remarks system N/A traffic behavior behavior-name N/A car name car-name N/A display traffic behavior user-defined [ behavior-name ] [ | { begin | exclude | include } - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 69
CAR configuration Task Command Display statistics for aggregate CAR actions. display qos car name [ car-name ] [ | { begin | exclude | include } regular-expression ] Clear statistics for aggregate CAR actions. reset qos car name [ car-name ] Remarks Available in any view Available in user - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 70
of VLAN 100; create behavior 2, and reference the aggregate CAR in the behavior. [Sysname] traffic classifier 2 [Sysname-classifier-2] if-match service-vlan-id 100 [Sysname-classifier-2] quit [Sysname] traffic behavior 2 [Sysname-behavior-2] car name aggcar-1 [Sysname-behavior-2] quit # Create QoS - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 71
By analyzing the statistics, you can determine whether anomalies have occurred and what action to take. Configuration procedure To configure class-based accounting: Step Command Remarks 1. Enter system view. system-view N/A 2. Create a class and enter class view. traffic classifier tcl-name - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 72
to collect statistics for traffic sourced from 1.1.1.1/24 and received on GigabitEthernet 1/0/1. Figure 22 Network diagram Configuration procedure # Create basic ACL 2000, and configure a rule to match packets with source IP address 1.1.1.1. system-view [DeviceA] acl number 2000 [DeviceA - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 73
Operator: AND Rule(s) : If-match acl 2000 Behavior: behavior_1 Accounting Enable: 28529 (Packets) 67 - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 74
view. 2. Enable the burst function. Command system-view burst-mode enable Remarks N/A Disabled by default Burst configuration example Network requirements In the customer network shown in Figure 23, a server connects to the switch through a 1000 Mbps Ethernet interface. The server sends dense - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 75
Figure 23 Network diagram for burst configuration Configuration procedure # Enter system view. system-view # Enable the burst function. [Switch] burst-mode enable 69 - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 76
Input priority value 802.1p priority (dot1p) 0 1 2 3 4 5 6 7 dot1p-lp mapping Local precedence (lp) 2 0 1 3 4 5 6 7 dot1p-dp mapping Drop precedence (dp) 0 0 0 0 0 0 0 0 Table 6 Default dscp-dp and dscp-dot1p priority mapping tables Input priority value DSCP 0 to 7 8 to 15 16 to 23 24 to 31 32 - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 77
7. According to RFC 2474, the ToS field in the IPv4 header or the Traffic Classes field in the IPv6 header is redefined as the differentiated services (DS) field, where a DSCP value is represented by the first six bits (0 to 5) and is in the range 0 to 63. The remaining two bits (6 and - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 78
af23 af31 af32 af33 af41 af42 af43 cs1 cs2 cs3 cs4 cs5 cs6 cs7 be (default) 802.1p priority 802.1p priority lies in the Layer 2 header and applies analysis is not needed and QoS must be assured at Layer 2. Figure 25 An Ethernet frame with an 802.1Q tag header As shown in Figure 25, the four-byte - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 79
Figure 26 802.1Q tag header Table 9 Description on 802.1p priority 802.1p priority (decimal) 0 1 2 3 4 5 6 7 802.1p priority (binary) 000 001 010 011 100 101 110 111 Description best-effort background spare excellent-effort controlled-load video voice network-management 73 - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 80
HP A-Series Acronyms. Websites • HP.com http://www.hp.com • HP Networking http://www.hp.com/go/networking • HP manuals http://www.hp.com/support/manuals • HP download drivers and software http://www.hp.com/support/downloads • HP software depot http://www.software.hp.com • HP Education http://www.hp - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 81
Command conventions Convention Boldface Italic [ ] { x | y | ... } [ x | y | ... ] { x | y | ... } * [ x | y | ... ] * & # Description Bold text represents commands and menu items are in bold text. For example, the New User window appears; click OK. Multi-level menus are separated by angle - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 82
, or firewall. Represents a routing-capable device, such as a router or Layer 3 switch. Represents a generic switch, such as a Layer 2 or Layer 3 switch, or a router that supports Layer 2 forwarding and other Layer 2 features. Port numbering in examples The port numbers in this document are for - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 83
an advanced ACL,6 Configuring an Ethernet frame header ACL,9 Configuring GTS,36 Configuring SP queuing,43 Configuring SP+WFQ queuing,47 Configuring SP+WRR queuing,46 Configuring the line rate,36 Configuring traffic policing,35 Configuring WFQ queuing,45 Configuring WRED,50 Configuring WRR queuing,44 - HP 6125G | HP 6125G & 6125G/XG Blade Switches ACL and QoS Configuration - Page 84
,62 Overview,25 P Packet filtering with ACLs,10 Priority mapping table and priority marking configuration example,29 Priority trust mode configuration example,28 Q QoS service models,15 QoS techniques,16 R Redirect-to-next hop configuration example,60 Related information,74 T Traffic filtering
HP 6125 Blade Switch Series
ACL and QoS
Configuration Guide
Part number: 5998-3159
Software version: Release 2103
Document version: 6W100-20120907