Allied Telesis x900-24 series - Manual
Allied Telesis x900-24 series – Manual, read for free online in PDF format. We hope this helps you resolve any issues you may have. If you have further questions, please contact us through the contact form.
Table of Contents:
- Page 2 – Introduction; What information will you find in this document?; This document contains the following:
- Page 3 – Creating dedicated hardware filters; Configuring packet classification; Generic Classifier
- Page 4 – Configuring Layer 4 source and destination port number masks; Outer VLAN parameters
- Page 5 – When nested VLANs are being used, the parameters; tpid; and; vlanpriority; cannot be; Creating hardware filters; For example, imagine you have the following set of filters:
- Page 6 – The logic of the operation of the hardware filters; Let us consider the effect of each the possible action keywords.; Action
- Page 7 – Combining hardware filters and QoS; If the hardware filter actions include; discard; , then this is not a problem, because the packet; forward; , and the packet would also be matched by a QoS; How many filters can you create?; . The filter rules table; You create a hardware filter.
- Page 8 – Extra rules used when combining QoS and hardware filters; have; to start at the top of the table—it can start at other; packets start at the top of the rule table and run to the last; all; rule; Port
- Page 9 – The following figure shows the copies of these rules.
- Page 10 – destination; Are there enough bytes for your set of filters?; the total number of
- Page 11 – Some protocols also use filters, so use some of the length; disable mldsnooping
- Page 12 – How to see the current filter resource usage on the switch; The; show switch; Command output
- Page 13 – Appendix A: How to use the layer 4 mask in classifiers
- Page 14 – Example; FF FC; Points to remember
- Page 15 – But remember that if we set the last 5 bits to 0, the mask will cover 2
- Page 16 – So our biggest block fits into the range 5; Port range
- Page 17 – The following table shows the port ranges for the largest blocks.
C613-16058-00 REV C
www.alliedtelesis.com
AlliedWare
TM
OS
How To |
Introduction
The AT-9900, x900-48, and x900-24 series switches support a powerful hardware based
packet-filtering facility.
These switches can filter on a range of Layer 2, Layer 3, and Layer 4 packet attributes, and
perform a variety of different actions on the packets that match the filters.
Because the filters are hardware-based, they put no load on the CPU of the switch, and have
no affect on the throughput of the switch. It is possible to configure over
1
000 different
filters, and still have complete wire speed throughput on the switch.
The following configuration methods are available:
1.
To filter traffic across all ports on the switch, create dedicated hardware filters.
2.
To filter traffic on a per-port basis, apply filtering actions to QoS flow groups or traffic
classes.
This Note only describes method
1
. Method 2 is described in
How To Configure Filtering Actions
on QoS Flow Groups and Traffic Classes
, available from
www.alliedtelesis.com/resources/
Configure Hardware Filters on AT-9900, x900-48,
and x900-24 Series Switches
"Loading the manual" means you need to wait until the file loads and becomes available for online reading. Some manuals are very large, and the time they take to appear depends on your internet speed.
Summary
Page 2 | AlliedWare™ OS How To Note: Hardware Filters Introduction What information will you find in this document? This document contains the following: Introduction ........................................................................................................................................
Page 3 | AlliedWare™ OS How To Note: Hardware Filters Creating dedicated hardware filters Creating dedicated hardware filters Before we get into the details of the filter creation, we need to look at the underlying packet classification process. Configuring packet classification Dedicated hardware f...
Page 4 | AlliedWare™ OS How To Note: Hardware Filters Creating dedicated hardware filters Configuring Layer 4 source and destination port number masks A common filtering requirement is the ability to filter on a range of TCP or UDP port numbers. For example, we often want to be able to allow through...
