beautypg.com

Configuring acl cam sharing for ipv6 acls, Example using the priority force option – Brocade Multi-Service IronWare Security Configuration Guide (Supporting R05.6.00) User Manual

Page 230

background image

212

Multi-Service IronWare Security Configuration Guide

53-1003035-02

Filtering and priority manipulation based on 802.1p priority

4

This feature cannot co-exist with IP Multicast Routing or IP Multicast Traffic Reduction.

Configuring ACL CAM sharing for IPv6 ACLs

When enabled, ACL CAM sharing for IPv6 inbound ACLs is applied across all ports in a system. To
apply ACL CAM sharing for IPv6 ACLs globally on a Brocade device, use the following command.

Brocade(config)# ipv6 enable-acl-cam-sharing

Syntax: ipv6 enable-acl-cam-sharing

Filtering and priority manipulation based on 802.1p priority

Filtering and priority manipulation based on a packet’s 801.1p priority is supported in the Brocade
devices through the following QoS options:

priority-force – Assigns packets of outgoing traffic that match the ACL to a specific hardware
forwarding queue, even though the incoming packet may be assigned to another queue.
Specify one of the following QoS queues:

0 – qosp0

1 – qosp1

2 – qosp2

3 – qosp3

4 – qosp4

5 – qosp5

6 – qosp6

7 – qosp7

If a packet’s 802.1p value is forced to another value by its assignment to a lower value queue,
it will retain that value when it is sent out through the outbound port.

The default behavior on previous revisions of this feature was to send the packet out with the
higher of two possible values: the initial 802.1p value that the packet arrived with or the new
(higher) priority that the packet has been “forced” to.

priority-mapping – Matches on the packet’s 802.1p value. This option does not change the
packet’s forwarding priority through the device or mark the packet.

Example using the priority force option

In the following IPv6 ACL example, access list acl1 assigns tcp packets with the source address
specified and any destination address to the internal priority 7.

Brocade(config)# ipv6 access-list acl1

Brocade(config-ipv6-access-list acl1)# permit tcp 4000:1::/64 any priority-force

7

The priority-force parameter specifies one of the 8 internal priorities of the Brocade device.
Possible values are between 0 and 7.

See also other documents in the category Brocade Computer Accessories: