Filter
Top Products
Troubleshooting QoS Troubleshooting QoS
OmniSwitch Troubleshooting Guide September 2005 page 10-7
What happens when some traffic comes in for ip destination port 80? Since it does not satisfy condition
“oktftp”, it depends on the global disposition for router and bridged traffic (qos default routed
disposition and qos default bridged disposition). In our case, the global disposition is default; i.e. accept.
We will receive the result below to accept the traffic when no rules are matched.
-> show policy classify L3 destination ip port 80 /* just to test the rule */
Packet headers:
L2:
*Port : 0/0 (any) -> 0/0 (any)
*MAC : 000000:000000 -> 000000:000000
*VLAN : 0 -> 0
*802.1p : 0
L3/L4:
*IP : 0.0.0.0 -> 0.0.0.0
*TOS/DSCP: 0/0
Using pending l3 policies
Classify L3:
*No rule matched: (accept)
Example 3
This policy allows TFTP traffic (specified in the condition by IP protocol 17 and UDP port 69) from
subnet 192.168.10.0 to the outside but denies any other traffic to go out from this subnet.
-> show configuration snapshot qos
qos disable stats interval 30 log level 7 log console
policy condition noip source ip 192.168.10.0 mask 255.255.255.0
policy condition oktftp source ip 192.168.10.0 mask 255.255.255.0 ip protocol 17
destination ip port 69
policy action noip disposition deny
policy action oktftp
policy rule oktftp precedence 200 condition oktftp action oktftp
policy rule noip precedence 100 condition noip action noip
-> show policy rule
Policy From Prec Enab Inact Refl Log Save
oktftp cli 200 Yes No No No Yes
Cnd/Act: oktftp -> oktftp
noip cli 100 Yes No No No Yes
Cnd/Act: noip -> noip
The policy rules can be tested for TFTP traffic coming from subnet 192.168.10.0:
-> show policy classify L3 destination ip port 69 ip protocol 17 source ip
192.168.10.0
Packet headers:
L2:
*Port : 0/0 (any) -> 0/0 (any)
*MAC : 000000:000000 -> 000000:000000
*VLAN : 0 -> 0
*802.1p : 0
L3/L4: