qos in 6.4.4.402

Post Reply
ram

qos in 6.4.4.402

Post by ram »

Hi,

i want to restrict particular subnet i tried with this in acl in inbound but my result his entire subnet was not reacheable . can anyone tell me how to block a particular subnet using aclman in 6.4.4.402.


Regards,
Ram
Top
one6f

Re: qos in 6.4.4.402

Post by one6f »

Hi Ram,
I very rarely use the aclman. Were this maybe for you an easier solution?
Top
ram

Re: qos in 6.4.4.402

Post by ram »

i tried with qos but my result his entire subnet is blocking even though i was allowed using allow disposition allow for the subnet.Please tell me how to create qos in 6.4.4.402 for policy action
Top
one6f

Re: qos in 6.4.4.402

Post by one6f »

Example: QoS to block guest vlan traffic going into data
Top
ram

Re: qos in 6.4.4.402

Post by ram »

Hi one6f,

i need your help to create qos for traffic restriction because in my office we are having labs in that labs they are doing testing that time lot of traffic his created and it was hit till my l3 lab core switch because i have done default route pointing towards my lab core switch and i have done reverse route for that subnet pointing towards lab entry switch. so i need to allow only 192.168.10.0/29 and 195.249.2.202/29 subnet because these are routable subnet . they are not using these subnet to do testing i think because of default route it will hit till my l3 switch. so please tell me how to write qos for this condition.


Setup
wan router to Core (ospf area 0)
core to lab core(ospf area 0) in lab core im redistributing the local and static route to ospf.
lab core to lab entry ( Static route pointing towards lab entry switch and default route pointing towards lab core)
lab entry to lab testing switches ( default route pointing towards lab entry)

Please tell me how to create qos to restirct traffic in lab entry switch itself . becuse if one labs create traffic means it will affect remaining labs also
Regards,
Ram
Top
one6f

Re: qos in 6.4.4.402

Post by one6f »

ram wrote:Hi one6f,

i need your help to create qos for traffic restriction because in my office we are having labs in that labs they are doing testing that time lot of traffic his created and it was hit till my l3 lab core switch because i have done default route pointing towards my lab core switch and i have done reverse route for that subnet pointing towards lab entry switch. so i need to allow only 192.168.10.0/29 and 195.249.2.202/29 subnet because these are routable subnet . they are not using these subnet to do testing i think because of default route it will hit till my l3 switch. so please tell me how to write qos for this condition.


Setup
wan router to Core (ospf area 0)
core to lab core(ospf area 0) in lab core im redistributing the local and static route to ospf.
lab core to lab entry ( Static route pointing towards lab entry switch and default route pointing towards lab core)
lab entry to lab testing switches ( default route pointing towards lab entry)

Please tell me how to create qos to restirct traffic in lab entry switch itself . becuse if one labs create traffic means it will affect remaining labs also
Regards,
Ram
i am not sure whether i understood the question. if you want to get access to 6 ip addresses in 192.168.10.0/29 and 6 ip addresses in 195.249.2.202/29 you need to block all the other ip ranges as in tech tip above or you use "qos default routed disposition deny" and allow only these two ip ranges. you can use "log console" for troubleshooting on the console, ex:"qos default routed disposition deny log console". please note that in this case you need also to allow all other ip traffic such as ospf multicast packets and so on.

Another way you could also use an external firewall with restrictive settings.
Top
ram

Re: qos in 6.4.4.402

Post by ram »

Thanks one6f.

Regards,
Ram
Top
Post Reply

Return to “OmniSwitch 6850 / 6850E”