beautypg.com

Brocade FastIron Ethernet Switch Security Configuration Guide User Manual

Page 138

background image

provide DSCP-marking and DSCP-matching information in order to assign 802.1p priority values,
which required the deployment of a 64-line ACL to match all possible DSCP values. Users were also
required to configure an internal priority marking value. Now, users can easily specify 802.1p priority
marking values directly, and change internal priority marking from required to optional .

NOTE
This feature is not applicable to outbound traffic.

On the following devices, if the user does not set a specific internal marking priority, the default value
is the same as the 802.1-priority marking value:

• FCX and ICX devices
• FSX modules, with the exception of SX-48GCPP modules, released prior to hardware release

07.3.00, including:

SX-FI624C

SX-FI624HF

SX-FI62XG

SX-FI42XG

SX-FI424C

SX-FI424F

SX-FI8GMR6

SX-FI2XGMR4

On the following devices, if the user does not set a specific internal marking priority, then the internal
priority does not change:

• SX-48GCPP modules
• All FSX modules released in hardware release 07.3.00 and later releases, including:

SX-FI24GPP

SX-FI24HF

SX-FI2XG

SX-FI8XG

Priority values range from 0 to 7.

Two new ACL parameters support this feature, one required for priority marking and one optional for
internal priority marking. These parameters apply to IP, and TCP, and UDP.

For IP

device(config)#acc 104 per ip any any 802.1p-priority-marking 1

or the following command, which also assigns an optional internal-priority-marking value.

device(config)#acc 104 per ip any any 802.1p-priority-marking 1 internal-priority-

marking 5

Syntax: access-list num (100-199) permit ip any any 802.1p-priority-marking priority value 0-7 [
internal-priority-marking value 0-7 ]

For TCP

device(config)#acc 105 per tcp any any 802.1p-priority-marking 1

or the following command, which also assigns an optional internal-priority-marking value.

device(config)#acc 105 per tcp any any 802.1p-priority-marking 1 internal-priority-

marking 5

Rule-Based IP ACLs

138

FastIron Ethernet Switch Security Configuration Guide

53-1003088-03

See also other documents in the category Brocade Computer Accessories: