beautypg.com

Network-access dynamic-qos, Table 51 – Brocade 6910 Ethernet Access Switch Configuration Guide (Supporting R2.2.0.0) User Manual

Page 252

background image

196

Brocade 6910 Ethernet Access Switch Configuration Guide

53-1002651-02

10

Network Access (MAC Address Authentication)

Command Usage

The reauthentication time is a global setting and applies to all ports.

When the reauthentication time expires for a secure MAC address it is reauthenticated with
the RADIUS server. During the reauthentication process traffic through the port remains
unaffected.

Example

Console(config)#mac-authentication reauth-time 300

Console(config)#

network-access dynamic-qos

Use this command to enable the dynamic QoS feature for an authenticated port. Use the no form to
restore the default.

Syntax

[no] network-access dynamic-qos

Default Setting
Disabled

Command Mode
Interface Configuration

Command Usage

The RADIUS server may optionally return dynamic QoS assignments to be applied to a switch
port for an authenticated user. The “Filter-ID” attribute (attribute 11) can be configured on the
RADIUS server to pass the following QoS information:

When the last user logs off of a port with a dynamic QoS assignment, the switch restores the
original QoS configuration for the port.

When a user attempts to log into the network with a returned dynamic QoS profile that is
different from users already logged on to the same port, the user is denied access.

While a port has an assigned dynamic QoS profile, any manual QoS configuration changes only
take effect after all users have logged off of the port.

NOTE

Any configuration changes for dynamic QoS are not saved to the switch configuration file.

TABLE 51

Dynamic QoS Profiles

Profile

Attribute Syntax

Example

DiffServ

service-policy-in=policy-map-name

service-policy-in=p1

Rate Limit

rate-limit-input=rate

rate-limit-input=100 (Kbps)

802.1p

switchport-priority-default=value

switchport-priority-default=2

IP ACL

ip-access-group-in=ip-acl-name

ip-access-group-in=ipv4acl

IPv6 ACL

ipv6-access-group-in=ipv6-acl-name

ipv6-access-group-in=ipv6acl

MAC ACL

mac-access-group-in=mac-acl-name

mac-access-group-in=macAcl

See also other documents in the category Brocade Computer Accessories: