Network-access dynamic-qos, Table 87: dynamic qos profiles – LevelOne GTL-2691 User Manual

C

HAPTER

29

| General Security Measures

Network Access (MAC Address Authentication)

– 930 –

network-access

dynamic-qos

Use this command to enable the dynamic QoS feature for an authenticated

port. Use the no form to restore the default.

S

YNTAX

[no] network-access dynamic-qos

D

EFAULT

S

ETTING

Disabled

C

OMMAND

M

ODE

Interface Configuration

C

OMMAND

U

SAGE

◆

The RADIUS server may optionally return dynamic QoS assignments to

be applied to a switch port for an authenticated user. The “Filter-ID”

attribute (attribute 11) can be configured on the RADIUS server to pass

the following QoS information:

◆

When the last user logs off of a port with a dynamic QoS assignment,

the switch restores the original QoS configuration for the port.

◆

When a user attempts to log into the network with a returned dynamic

QoS profile that is different from users already logged on to the same

port, the user is denied access.

◆

While a port has an assigned dynamic QoS profile, any manual QoS

configuration changes only take effect after all users have logged off of

the port.

N

OTE

:

Any configuration changes for dynamic QoS are not saved to the

switch configuration file.

Table 87: Dynamic QoS Profiles

Profile

Attribute Syntax

Example

DiffServ

service-policy-in=policy-map-name

service-policy-in=p1

Rate Limit

rate-limit-input=rate

rate-limit-input=100 (Kbps)

802.1p

switchport-priority-default=value

switchport-priority-default=2

IP ACL

ip-access-group-in=ip-acl-name

ip-access-group-in=ipv4acl

IPv6 ACL

ipv6-access-group-in=ipv6-acl-name ipv6-access-group-in=ipv6acl

MAC ACL

mac-access-group-in=mac-acl-name

mac-access-group-in=macAcl