Netgear GS728TXS GS728TXS/GS752TXS Software Administration Manual - Page 302
Differentiated Services (DiffServ), Source IP Mask, Rule ID, Action, Match Every, Apply
View all Netgear GS728TXS manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 302 highlights
GS752TXS and GS728TXS Smart Switches • Source IP Mask. 255.255.255.0 For additional information about IP ACL rules, see IP Rules on page 232. 3. Click Add. 4. From the IP Rules screen, create a second rule for IP ACL 1 with the following settings: • Rule ID. 2 • Action. Permit • Match Every. True 5. Click Add. 6. From the IP Binding Configuration screen, assign ACL ID 1 to the Ethernet ports 2, 3, and 4, and assign a sequence number of 1 (See IP Binding Configuration on page 241). By default, this IP ACL is bound on the inbound direction, so it examines traffic as it enters the switch. 7. Click Apply. 8. Use the IP Binding Table screen to view the interfaces and IP ACL binding information (See IP Binding Table on page 242). The IP ACL in this example matches all packets with the source IP address and subnet mask of the Finance department's network and deny it on the Ethernet interfaces 2, 3, and 4 of the switch. The second rule permits all non-Finance traffic on the ports. The second rule is required because there is an explicit deny all rule as the lowest priority rule. Differentiated Services (DiffServ) Standard IP-based networks are designed to provide best effort data delivery service. Best effort service implies that the network deliver the data in a timely fashion, although there is no guarantee that it will. During times of congestion, packets can be delayed, sent sporadically, or dropped. For typical Internet applications, such as e-mail and file transfer, a slight degradation in service is acceptable and in many cases unnoticeable. However, any degradation of service has undesirable effects on applications with strict timing requirements, such as voice or multimedia. Quality of Service (QoS) can provide consistent, predictable data delivery by distinguishing between packets that have strict timing requirements from those that are more tolerant of delay. Packets with strict timing requirements are given special treatment in a QoS-capable network. With this in mind, all elements of the network must be QoS-capable. If one node is unable to meet the necessary timing requirements, this creates a deficiency in the network path and the performance of the entire packet flow is compromised. 302