beautypg.com

Brocade FastIron Ethernet Switch Security Configuration Guide User Manual

Page 136

background image

dscp-marking - Marks the DSCP value in the outgoing packet with the value you specify.
internal-priority-marking and 802.1p-priority-marking - Supported with the DSCP marking

option, these commands assign traffic that matches the ACL to a hardware forwarding queue
(internal-priority-marking ), and re-mark the packets that match the ACL with the 802.1p priority
(802.1p-priority-marking ).

dscp-matching - Matches on the packet DSCP value. This option does not change the packet

forwarding priority through the device or mark the packet.

• 802.1p-priority-matching - Inspects the 802.1p bit in the ACL that can be used with adaptive rate

limiting. For details, refer to "Inspecting the 802.1p bit in the ACL for adaptive rate limiting" section
in the FastIron Ethernet Switch Traffic Management Guide.

NOTE
These QoS options are only available if a specific ICMP type is specified for the icmp-type parameter
while configuring extended ACLS, and cannot be used with the any-icmp-type option. See

Extended

numbered ACL syntax

on page 112 and

Extended named ACL configuration

on page 118for the

syntax for configuring extended ACLs.

Configuration notes for QoS options on FCX and ICX devices

• These devices do not support marking and prioritization simultaneously with the same rule (and do

not support DSCP CoS mapping at all). To achieve this, you need to create two separate rules. In
other words, you can mark a rule with DSCP or 802.1p information, or you can prioritize a rule
based on DSCP or 802.1p information. You can enable only one of the following ACL options per
rule:

802.1p-priority-marking

dscp-marking

internal-priority-marking

For example, any one of the following commands is supported.

device(config)#access-list 101 permit ip any any dscp-marking 43

or

device(config)#access-list 101 permit ip any any 802.1p-priority-marking

or

device(config)#access-list 101 permit ip any any internal-priority-marking 6

The following command is supported on FCX, ICX 6610, ICX 6450 devices (24 and 48-port models),
mixed stack devices (ICX 6610 devices stacked with ICX 6450 devices), ICX 6650, and ICX 7750. It is
not supported on FastIron SX chassis based platforms.

device(config)#access-list 101 permit ip any any dscp-marking 43

802.1p-priority-marking 4 internal-priority-marking 6

Using an ACL to map the DSCP value (DSCP CoS mapping)

NOTE
The dscp-cos-mapping option is supported on FSX devices only. It is not supported on Stackable
devices. This feature is not applicable to outbound traffic.

Configuration notes for QoS options on FCX and ICX devices

136

FastIron Ethernet Switch Security Configuration Guide

53-1003088-03

See also other documents in the category Brocade Computer Accessories: