Configuring QoS Creating Policies
OmniSwitch AOS Release 8 Network Configuration Guide December 2017 page 26-44
Creating Policy Conditions
This section describes how to create policy conditions in general. Creating policy conditions for particular
types of network situations is described later in this chapter.
To create or modify a policy condition, use the policy condition command with the keyword for the type
of traffic you want to classify, for example, an IP address or group of IP addresses. In this example, a
condition (c3) is created for classifying traffic from source IP address 10.10.2.1:
-> policy condition c3 source ip 10.10.2.1
There are many options for configuring a condition, depending on how you want the switch to classify
traffic for this policy. An overview of the options is given here. Later sections of this chapter describe how
to use the options in particular network situations.
More than one condition parameter can be specified. Some condition parameters are mutually exclusive.
For supported combinations of condition parameters, see “Policy Conditions” on page 26-30.
The condition is not activated on the switch until you enter the qos apply command.
Note. Policy condition configuration is not active until the qos apply command is entered. See “Applying
the Configuration” on page 26-71.
Note. The group options in this command refer to groups of addresses, services, or ports that you configure
separately through policy group commands. Rather than create a separate condition for each address,
service, or port, use groups and attach the group to a single condition. See “Using Condition Groups in
Policies” on page 26-53 for more information about setting up groups.
policy condition keywords
source ip
source ipv6
destination ip
destination ipv6
source network group
destination network group
source ip-port
destination ip-port
source tcp-port
destination tcp-port
source udp-port
destination udp-port
established
tcpflags
service
service group
ip-protocol
icmptype
icmpcode
802.1p
inner 802.1p
tos
dscp
source mac
destination mac
source mac group
destination mac group
source vlan
source vlan group
inner source vlan
inner source vlan group
destination vlan (multicast only)
ethertype
source port
source port group
destination port
destination port group
ipv6
nh
flow-label
To Next Page
Loading...
Need help?
General
