qos default bridged / routed disposition accept / deny

[Rens]

Hello,

does anyone know what happend to the commands:

qos default bridged disposition {accept | deny | drop}
qos default routed disposition {accept | deny | drop}
qos default multicast disposition {accept | deny | drop}

According to the cli manual they have been removed in release 7 and higher. But in the Networking Configuration guide "qos default bridged disposition accept" is still mentioned. (page 24-64)

Is there an easy way to manipulate only routed traffic and let bridged traffic untouched?

Regards,

Rens

[silvio]

It is not recommended to deny default disposition (in my opinion). If you would like to disable any routing than use at all your ip interfaces the option "no forward".
ip interface IF-1 no forward

regards
Silvio

[Rens]

Hello Silvio,

Thanks for your reply.

In my case I have about 10 different VLAN's in which clients should be able to talk to each other but not to other clients in different vlan's.
Except for some servers, which do need to access some particular clients in the other vlan's.

If I hadn't had the servers the "no forward" would be fine. But unfortunately I need to do something with the routing and still limit the access between vlan's.

I guess I’ll start looking at the different way to build the ACL’s and maybe combine them with the VRF capabilities.

Regards,

Rens

[silvio]

Hi,
than you have to use policies to forbit traffic. You can aggregate some of your networks to a policy network group (for easier conditions).
There should be some examples in the forum - you can look in every OmniSwitch-forum (this is always the same).
regards
Silvio