Configuring Access Guardian Interaction With Other Features
OmniSwitch AOS Release 8 Network Configuration Guide December 2017 page 28-28
• If a QoS policy list is configured for a UNP profile, only the policy rules in the list are applied to traffic
from devices classified into the profile. Any default list policy rules are not applied in this case.
• If a QoS policy list is not specified for a user profile, then any policies from the default list are applied
to profile devices.
• If a policy rule is enabled, it is active for all policy lists to which it belongs. If one of the policy lists is
disabled, the rule is still active for all the other lists.
• If a policy rule is disabled, it is no longer active in any policy list to which it belongs, even if the list is
still enabled.
Service Assurance Agent
The Service Assurance Agent (SAA) profile is particularly useful for monitoring VM connectivity across
the data center. This profile type specifies jitter and latency threshold values and is assigned to UNP
VLAN profiles (service profiles not supported) to associate these performance monitoring thresholds with
a specific UNP.
The OmniVista network management tool will extract profile information from UNP on the switch and
will create SAA sessions based on the UNP profile SAA threshold values. These SAA sessions will
operate as regular sessions. When a threshold is reached, a trap is sent to OmniVista, and OmniVista will
make the necessary notifications and network modifications.
Service Manager
The OmniSwitch supports both a VLAN and a service domain for traffic classification. The VLAN
domain is identified by a VLAN ID. The service domain is identified by a Shortest Path Bridging (SPB)
service instance identifier (I-SID) or a Virtual eXtensible LAN (VXLAN) Network ID, both of which are
translated into a Service Manger service ID to represent a virtual forwarding instance (VFI).
• In the VLAN domain, each VLAN is accessed through a physical port. Each physical port can have
more than one VLAN attached. UNP VLAN classification associates a MAC address to a specific
VLAN on a physical UNP bridge port.
• In the service domain, each VFI is accessed through a virtual port, referred to as a Service Access Point
(SAP). UNP service classification associates a MAC address to a SAP.
Source Learning
Do not disable source learning on a port or VLAN when using UNP to classify devices connected to UNP-
enabled ports.
Universal Network Profile (UNP)
The UNP feature provides network administrators with the ability to define and apply network access
control to specific types of devices by grouping such devices according to specific matching profile
criteria. This allows network administrators to create virtual machine network profiles (vNPs) and user
network profiles from a unified framework of operation and administration.
UNP is not limited to creating profiles for only certain types of devices. However, the following
classification methods implemented through UNP functionality and profile criteria provide the ability to
tailor profiles for specific devices (physical or virtual):
To Next Page
Loading...
Need help?
General
