- Table of Contents
-
- H3C S3100 Series Ethernet Switches Command Manual (For Soliton)(V1.02)
- 00-1Cover
- 01-CLI Commands
- 02-Login Commands
- 03-Configuration File Management Commands
- 04-VLAN Commands
- 05-Management VLAN Commands
- 06-IP Address-IP Performance Commands
- 07-Voice VLAN Commands
- 08-GVRP Commands
- 09-Port Basic Configuration Commands
- 10-Link Aggregation Commands
- 11-Port Isolation Commands
- 12-Port Security-Port Binding Commands
- 13-DLDP Commands
- 14-MAC Address Table Management Commands
- 15-MSTP Commands
- 16-Multicast Commands
- 17-802.1x-System Guard Commands
- 18-AAA Commands
- 19-MAC Address Authentication Commands
- 20-ARP Commands
- 21-DHCP Commands
- 22-ACL Commands
- 23-QoS-QoS Profile Commands
- 24-Mirroring Commands
- 25-Stack-Cluster Commands
- 26-SNMP-RMON Commands
- 27-NTP Commands
- 28-SSH Commands
- 29-File System Management Commands
- 30-FTP-SFTP-TFTP Commands
- 31-Information Center Commands
- 32-System Maintenance and Debugging Commands
- 33-VLAN-VPN Commands
- 34-HWPing Commands
- 35-IPv6 Management Commands
- 36-DNS Commands
- 37-Smart Link-Monitor Link Commands
- 38-Appendix
- Related Documents
-
Title | Size | Download |
---|---|---|
23-QoS-QoS Profile Commands | 201.26 KB |
Table of Contents
1.1.3 display qos cos-local-precedence-map
1.1.4 display qos dscp-local-precedence-map
1.1.6 display qos-interface all
1.1.7 display qos-interface line-rate
1.1.8 display qos-interface mirrored-to
1.1.9 display qos-interface traffic-limit
1.1.10 display qos-interface traffic-priority
1.1.11 display qos-interface traffic-redirect
1.1.12 display qos-interface traffic-shape
1.1.13 display qos-interface traffic-statistic
1.1.16 display queue-scheduler
1.1.23 qos cos-local-precedence-map
1.1.24 qos dscp-local-precedence-map
1.1.27 reset traffic-limit vlan
1.1.28 reset traffic-statistic
1.1.29 reset traffic-statistic vlan
Chapter 2 QoS Profile Configuration Commands
2.1 QoS Profile Configuration Commands
Chapter 1 QoS Commands
1.1 QoS Commands
1.1.1 burst-mode enable
Syntax
burst-mode enable
undo burst-mode enable
View
System view
Parameter
None
Description
Use the burst-mode enable command to enable the burst function.
Use the undo burst-mode enable command to disable the burst function.
By default, the burst function is disabled.
Example
# Enable the burst function.
<Sysname> system-view
System View: return to User View with Ctrl+Z.
[Sysname] burst-mode enable
1.1.2 display priority-trust
Syntax
display priority-trust
View
Any view
Parameters
None
Description
Use the display priority-trust command to display the priority trust mode on the current switch.
Related command: priority-trust.
Examples
# Display the priority trust mode on the current switch.
<Sysname> display priority-trust
Priority trust mode: dscp
1.1.3 display qos cos-local-precedence-map
Syntax
display qos cos-local-precedence-map
View
Any view
Parameter
None
Description
Use the display qos cos-local-precedence-map command to display the CoS-precedence-to-local-precedence mapping table.
Related command: qos cos-local-precedence-map.
Example
# Display the CoS-precedence-to-local-precedence mapping table.
<Sysname> display qos cos-local-precedence-map
cos-local-precedence-map:
cos(802.1p) : 0 1 2 3 4 5 6 7 --------------------------------------------------------------------------
local precedence(queue) : 1 0 0 1 2 2 3 3
1.1.4 display qos dscp-local-precedence-map
Syntax
display qos dscp-local-precedence-map
View
Any view
Parameter
None
Description
Use the display qos dscp-local-precedence-map command to display the DSCP-precedence-to-local-precedence mapping table.
Related command: qos dscp-local-precedence-map.
Example
# Display the DSCP-precedence-to-local-precedence mapping table.
<Sysname> display qos dscp-local-precedence-map
dscp-local-precedence-map:
dscp : local-precedence(queue)
----------------------------------------------
0 : 0
1 : 0
2 : 0
3 : 0
4 : 0
5 : 0
6 : 0
7 : 0
8 : 0
9 : 0
10 : 0
11 : 0
12 : 0
13 : 0
14 : 0
15 : 0
16 : 1
17 : 1
18 : 1
19 : 1
20 : 1
21 : 1
22 : 1
23 : 1
24 : 1
25 : 1
26 : 1
27 : 1
28 : 1
29 : 1
30 : 1
31 : 1
32 : 2
33 : 2
34 : 2
35 : 2
36 : 2
37 : 2
38 : 2
39 : 2
40 : 2
41 : 2
42 : 2
43 : 2
44 : 2
45 : 2
46 : 2
47 : 2
48 : 3
49 : 3
50 : 3
51 : 3
52 : 3
53 : 3
54 : 3
55 : 3
56 : 3
57 : 3
58 : 3
59 : 3
60 : 3
61 : 3
62 : 3
63 : 3
1.1.5 display qos-global
Syntax
display qos-global { all | mirrored-to | traffic-limit | traffic-priority | traffic-redirect | traffic-statistic }
View
Any view
Parameter
all: Displays all the QoS-related configuration.
traffic-limit: Displays the global traffic policing configuration.
traffic-priority: Displays the global priority marking configuration.
traffic-redirect: Displays the global traffic redirecting configuration.
traffic-statistics: Displays the global traffic accounting configuration.
Description
Use the display qos-global command to display the QoS-related configuration performed for all the packets.
Example
# Display all the QoS configurations performed for all the packets on an S3100 series switch.
<Sysname> display qos-global all
global: traffic-limit inbound:
Matches: Acl 2000 rule 0 running
Target rate: 128 Kbps
Conform action: remark-cos excellent-effort
Exceed action: drop
meter-statistic running
62284 byte outprofile
82521 byte inprofile
Table 1-1 Description on the fields of the display qos-global command
Field |
Description |
Inbound |
Packet direction |
Matches |
ACL rules for traffic classifying |
Target rate |
Traffic policing target rate |
Conform action |
Action conducted to packet conforming to the traffic specification |
Exceed action |
Action conducted to packets exceeding the traffic specification |
meter-statistic running |
The function of collecting traffic policing statistics information is enabled (meter-statistic not running indicates that the function is not enabled) |
62284 byte outprofile |
Size of the packets exceeding the traffic specification (in bytes) |
82521 byte inprofile |
Size of the packets conforming to the traffic specification (in bytes) |
1.1.6 display qos-interface all
Syntax
display qos-interface { interface-type interface-number | unit-id } all
View
Any view
Parameter
interface-type interface-number: Specifies the type and number of a port, for which the QoS configuration information is to be displayed.
unit-id: Unit ID, which is fixed to 1. With this argument specified, the QoS-related configuration of all the ports on the device is displayed.
Description
Use the display qos-interface all command to display the QoS-related configuration of a port or all the ports on the device.
Example
# Display the QoS-related configuration of Ethernet 1/0/1.
<Sysname> display qos-interface Ethernet 1/0/1 all
Ethernet1/0/1: line-rate
Inbound: 1024 Kbps
Ethernet1/0/1:
Queue scheduling mode: weighted round robin
weight of queue 0: 12
weight of queue 1: 8
weight of queue 2: 4
weight of queue 3: 1
Table 1-2 Description on the fields of the display qos-interface all command
Field |
Description |
line-rate |
Port with rate limiting configured |
Inbound |
Inbound direction. That is, rate limiting is performed to the inbound packets |
1024 Kbps |
The target rate |
Queue scheduling mode |
Queue scheduling algorithm adopted |
weight of queue 0 |
Scheduling weight for queue 0 |
1.1.7 display qos-interface line-rate
Syntax
display qos-interface { interface-type interface-number | unit-id } line-rate
View
Any view
Parameter
interface-type interface-number: Specifies the type and number of a port, for which the line rate configuration information is to be displayed.
unit-id: Unit ID, which is fixed to 1. With this argument specified, the rate limiting configuration of all the ports on the device is displayed.
Description
Use the display qos-interface line-rate command to display the rate limiting configuration of a port or all the ports on the device.
Related command: line-rate.
Example
# Display the rate limiting configuration of Ethernet 1/0/1.
<Sysname> display qos-interface Ethernet 1/0/1 line-rate
Ethernet1/0/1: line-rate
Inbound: 128 Kbps
Refer to Table 1-2 for the description on the output fields.
1.1.8 display qos-interface mirrored-to
Syntax
display qos-interface { interface-type interface-number | unit-id } mirrored-to
View
Any view
Parameter
interface-type interface-number: Specifies the type and number of a port, for which the traffic mirroring configuration information is to be displayed.
unit-id: Unit ID, which is fixed to 1. With this argument specified, the traffic mirroring configuration of all the ports on the device is displayed.
Description
Use the display qos-interface mirrored-to command to display the traffic mirroring configuration of a port or all the ports on the device.
Related command: mirrored-to.
Example
# Display the traffic mirroring configuration of Ethernet 1/0/1 on an S3100 series switch.
<Sysname> display qos-interface Ethernet 1/0/1 mirrored-to
Ethernet1/0/1: mirrored-to
Inbound:
Matches: Acl 2000 rule 0 running
Mirrored to: monitor interface
Table 1-3 Description on the fields of the display qos-interface mirrored-to command
Field |
Description |
Ethernet1/0/1: |
Port with traffic mirroring configured |
Inbound |
Inbound direction. That is, traffic mirroring is performed to the inbound packets. |
Matches |
Match rule used for traffic classification |
Mirrored to |
l “monitor interface” indicates that the packets are duplicated to a port. l “cpu” indicates that the packets are duplicated to the CPU. |
1.1.9 display qos-interface traffic-limit
Syntax
display qos-interface { interface-type interface-number | unit-id } traffic-limit
View
Any view
Parameter
interface-type interface-number: Specifies the type and number of a port, for which the traffic policing configuration information is to be displayed.
unit-id: Unit ID, which is fixed to 1. With this argument specified, the traffic policing configuration of all the ports on the device is displayed.
Description
Use the display qos-interface traffic-limit command to display the traffic policing configuration of a port or all the ports on the device. This command also displays the traffic policing statistics.
Related command: traffic-limit.
Example
# Display the traffic policing configuration and the corresponding statistics on Ethernet 1/0/1.
<Sysname> display qos-interface Ethernet 1/0/1 traffic-limit
Ethernet1/0/1: traffic-limit
Inbound:
Matches: Acl 2001 rule 0 running
Target rate: 128 Kbps
Conform action: remark-cos video
Exceed action: drop
meter-statistic running
12 byte outprofile
24 byte inprofile
Refer to Table 1-1 for the description on the output fields.
1.1.10 display qos-interface traffic-priority
Syntax
display qos-interface { interface-type interface-number | unit-id } traffic-priority
View
Any view
Parameter
interface-type interface-number: Specifies the type and number of a port, for which the priority marking configuration information is to be displayed.
unit-id: Unit ID, which is fixed to 1. With this argument specified, the priority marking configuration of all the ports on the device is displayed.
Description
Use the display qos-interface traffic-priority command to display the priority marking configuration of a port or all the ports on the device.
Related command: traffic-priority.
Example
# Display the priority marking configuration of Ethernet 1/0/1.
<Sysname> display qos-interface Ethernet 1/0/1 traffic-priority
Ethernet1/0/1: traffic-priority
Inbound:
Matches: Acl 2000 rule 0 running
Priority action: cos controlled-load
Table 1-4 Description on the fields of the display qos-interface traffic-priority command
Field |
Description |
Ethernet1/0/1 |
Port with priority marking configured |
Inbound |
Packet direction |
Matches |
ACL rules for traffic classifying |
Priority action |
Priority marking action l cos indicates that the CoS precedence of packets is marked l dscp indicates that the DSCP precedence of packets is marked l local-precedence indicates that the Local precedence of packets is marked |
1.1.11 display qos-interface traffic-redirect
Syntax
display qos-interface { interface-type interface-number | unit-id } traffic-redirect
View
Any view
Parameter
interface-type interface-number: Specifies the type and number of a port, for which the traffic redirecting configuration information is to be displayed.
unit-id: Unit ID, which is fixed to 1. With this argument specified, the traffic redirecting configuration of all the ports on the device is displayed.
Description
Use the display qos-interface traffic-redirect command to display the traffic redirecting configuration of a port or all the ports on the device.
Related command: traffic-redirect.
Example
# Display the traffic redirecting configuration of Ethernet 1/0/1.
<Sysname> display qos-interface Ethernet 1/0/1 traffic-redirect
Ethernet1/0/1: traffic-redirect
Inbound:
Matches: Acl 2000 rule 0 running
Redirected to: interface Ethernet1/0/2
Table 1-5 Description on the fields of the display qos-interface traffic-redirect command
Field |
Description |
Ethernet1/0/1 |
Port with traffic redirecting configured |
Inbound |
Packet direction |
Matches |
ACL rules for traffic classification |
Redirected to |
l “interface” indicates that the packets are redirected to the port. l “cpu” indicates that the packets are redirected to the CPU. |
1.1.12 display qos-interface traffic-shape
Syntax
display qos-interface { interface-type interface-number | unit-id } traffic-shape
View
Any view
Parameter
interface-type interface-number: Specifies the type and number of a port, for which the traffic shaping configuration information is to be displayed.
unit-id: Unit ID, which is fixed to 1. With this argument specified, the traffic shaping configuration of all the ports is displayed.
Description
Use the display qos-interface traffic-shape command to display the traffic shaping configuration of a port or all the ports on the device.
Related command: traffic-shape.
Example
# Display the traffic shaping configuration of Ethernet 1/0/1.
<Sysname> display qos-interface Ethernet 1/0/1 traffic-shape
Ethernet1/0/1
QID: status max-rate(kbps) burst-size(byte)
----------------------------------------------------
0 : Enable 64 8
1 : Enable 64 8
2 : Enable 640 16
3 : Disable 0 0
Table 1-6 Description on the fields of the display qos-interface traffic-shape command
Field |
Description |
Ethernet1/0/1 |
Port with traffic shaping configured |
QID |
Queue ID |
status |
traffic shaping status of a queue |
max-rate(kbps) |
Maximum traffic rate of a queue |
burst-size(byte) |
Burst size of a queue |
1.1.13 display qos-interface traffic-statistic
Syntax
display qos-interface { interface-type interface-number | unit-id } traffic-statistic
View
Any view
Parameter
interface-type interface-number: Specifies the type and number of a port, for which the traffic accounting configuration information is to be displayed.
unit-id: Unit ID, which is fixed to 1. With this argument specified, the traffic accounting configuration of all the ports on the device is displayed.
Description
Use the display qos-interface traffic-statistic command to display the traffic accounting configuration of a port or all the ports on the device. This command also displays traffic statistics.
Related command: traffic-statistic.
Example
# Display the traffic accounting configuration information and traffic statistics on Ethernet 1/0/1.
<Sysname> display qos-interface Ethernet 1/0/1 traffic-statistic
Ethernet1/0/1: traffic-statistic
Inbound:
Matches: Acl 2000 rule 0 running
8251 packet
Table 1-7 Description on the fields of the display qos-interface traffic-statistic command
Field |
Description |
Ethernet1/0/1 |
Port with the traffic accounting function configured |
Inbound |
Packet direction |
Matches |
ACL rules for traffic classification |
8251 packet |
Statistics on matched packets |
1.1.14 display qos-port-group
Syntax
display qos-port-group [ group-id ] { all | mirrored-to | traffic-limit | traffic-priority | traffic-redirect | traffic-statistic }
View
Any view
Parameter
group-id: Port group ID, in the range 1 to 100. If this argument is not specified, the QoS information of all the port groups is displayed.
all: Displays all the QoS-related configurations of a port group.
traffic-limit: Displays the traffic policing configuration of a port group.
traffic-priority: Displays the priority marking configuration of a port group.
traffic-redirect: Displays the traffic redirecting configuration of a port group.
traffic-statistics: Displays the traffic accounting configuration of a port group.
Description
Use the display qos-port-group command to display specific QoS-related configuration of a port group.
Example
# Display all the QoS-related configurations of port group 1.
<Sysname> display qos-port-group 1 all
Port-group 1 traffic-limit
Inbound:
Matches: Acl 3001 rule 0 running
Target rate: 128 Kbps
Exceed action: drop
meter-statistic not running
Refer to Table 1-1 for the description on the output fields.
1.1.15 display qos-vlan
Syntax
display qos-vlan [ vlan-id ] { all | mirrored-to | traffic-limit | traffic-priority | traffic-redirect | traffic-statistic }
View
Any view
Parameter
vlan-id: VLAN ID, in the range 1 to 4094. If this argument is not specified, the QoS configuration performed for all the VLANs is displayed.
all: Displays all the QoS-related configurations performed for packets of a VLAN.
traffic-limit: Displays the traffic policing configuration performed for packets of a VLAN.
traffic-priority: Displays the priority marking configuration performed for packets of a VLAN.
traffic-redirect: Displays the traffic redirecting configuration performed for packets of a VLAN.
traffic-statistics: Displays the traffic accounting configuration performed for packets of a VLAN.
Description
Use the display qos-vlan command to display the QoS-related configuration performed for a VLAN.
Example
# Display all the QoS-related configuration performed for VLAN 1.
<Sysname> display qos-vlan 1 all
Vlan 1 traffic-limit
Inbound:
Matches: Acl 3001 rule 0 running
Target rate: 128 Kbps
Exceed action: drop
meter-statistic not running
Refer to Table 1-1 for the description on the output fields.
1.1.16 display queue-scheduler
Syntax
display queue-scheduler
View
Any view
Parameter
None
Description
Use the display queue-scheduler command to display the queue scheduling mode and corresponding configuration.
Related command: queue-scheduler.
Example
# Display the queue scheduling mode and corresponding configuration.
<Sysname> display queue-scheduler
Queue scheduling mode: weighted round robin
weight of queue 0: 1
weight of queue 1: 2
weight of queue 2: 3
weight of queue 3: 4
1.1.17 line-rate
Syntax
line-rate { inbound | outbound } target-rate
undo line-rate{ inbound | outbound }
View
Ethernet port view
Parameter
inbound: Limits the inbound packet rate.
outbound: Limits the outbound packet rate.
target-rate: Total target rate (in kbps). The range of this argument varies with port type as follows:
l Fast Ethernet port: 64 to 99,968;
l GigabitEthernet port: 64 to 1,000,000.
The granularity of port rate limit is 64 Kbps. Assume that the value you provide for the target-rate argument is in the range N*64 to (N+1)*64 (N is a natural number), it will be rounded off to (N+1)*64.
Description
Use the line-rate command to limit the rate of the inbound or outbound packets on a port.
Use the undo line-rate command to cancel the port rate limiting configuration.
By default, rate limiting is disabled on a port.
Related command: display qos-interface line-rate.
& Note:
With multicast storm suppression or traffic policing configured on a device, the line rate (LR) function is not applicable to any port of the device. Refer to the Port Basic Configuration module for the detailed information about multicast storm suppression.
Example
# Limit the outbound traffic rate to 128 kbps on Ethernet 1/0/1.
<Sysname> system-view
System View: return to User View with Ctrl+Z.
[Sysname] interface Ethernet 1/0/1
[Sysname-Ethernet1/0/1] line-rate outbound 128
# Display the line rate configuration on Ethernet 1/0/1.
[Sysname-Ethernet1/0/1] display qos-interface Ethernet 1/0/1 line-rate
Ethernet1/0/1: line-rate
Outbound: 128 Kbps
1.1.18 mirrored-to
Syntax
mirrored-to inbound acl-rule { cpu | monitor-interface }
undo mirrored-to inbound acl-rule
View
System view, Port group, Ethernet port view
Parameter
inbound: Duplicates inbound packets.
acl-rule: ACL rules to be applied. This argument can be the combination of multiple ACLs. For more information about this argument, refer to Table 1-8 and Table 1-9. Note that the ACL rules referenced must be those defined with the permit keyword specified.
Table 1-8 Ways of applying combined ACL rules
ACL combination |
Form of the acl-rule argument |
Apply a basic or advanced Layer 3 ACL |
ip-group acl-number |
Apply a rule in an Layer 3 ACL |
ip-group acl-number rule rule-id |
Apply all the rules in a Layer 2 ACL |
link-group acl-number |
Apply a rule in a Layer 2 ACL |
link-group acl-number rule rule-id |
Apply all the rules in an IPv6 ACL |
user-group acl-number |
Apply a rule in an IPv6 ACL |
user-group acl-number rule rule-id |
Apply a rule in an Layer 3 ACL and a rule in a Layer 2 ACL |
ip-group acl-number rule rule-id link-group acl-number rule rule-id |
Table 1-9 Description on the parameters used in Table 1-8
Parameter |
Description |
ip-group acl-number |
Specifies the number of a basic or advanced ACL, in the range 2000 to 3999. |
link-group acl-number |
Specifies the number of a Layer 2 ACL, in the range 4000 to 4999. |
user-group acl-number |
IPv6 ACL number, in the range 5000 to 5999. |
rule-id |
ACL rule number, in the range 0 to 65534. If this argument is not provided, all the rules in the ACL are specified. |
cpu: Duplicates the packets to the CPU.
monitor-interface: Duplicates the packets to the destination mirroring port.
Description
Use the mirrored-to command to reference ACLs globally or to a port group or a port for identifying traffics and perform traffic mirroring for packets that match.
Use the undo mirrored-to command to remove traffic mirroring configuration globally or for a port group or a port.
Note that, the same ACL cannot be simultaneously referenced in both traffic mirroring configuration and traffic redirecting configuration globally, in port group view, or in port view.
Related command: display qos-interface mirrored-to.
Example
# Mirror packets that match ACL 2000 on port Ethernet 1/0/1 to Ethernet 1/0/4 through traffic mirroring.
<Sysname> system-view
System View: return to User View with Ctrl+Z.
[Sysname] acl number 2000
[Sysname-acl-basic-2000] rule permit source 1.1.1.1 0
[Sysname-acl-basic-2000] quit
[Sysname] interface Ethernet 1/0/4
[Sysname-Ethernet1/0/4] monitor-port
[Sysname-Ethernet1/0/4] quit
[Sysname] interface Ethernet 1/0/1
[Sysname-Ethernet1/0/1] mirrored-to inbound ip-group 2000 monitor-interface
# Display the traffic mirroring configuration of Ethernet 1/0/1.
[Sysname-Ethernet1/0/1] display qos-interface Ethernet 1/0/1 mirrored-to
Ethernet1/0/1: mirrored-to
Inbound:
Matches: Acl 2000 rule 1 running
Mirrored to: monitor interface
1.1.19 mirrored-to vlan
Syntax
mirrored-to vlan vlan-id inbound acl-rule { cpu | monitor-interface }
undo mirrored-to inbound acl-rule
View
System view
Parameter
vlan-id: VLAN ID, in the range of 1 to 4,094.
inbound: Mirrors the inbound packets.
acl-rule: ACL rules to be applied. This argument can be the combination of multiple ACLs. For more information about this argument, refer to Table 1-8 and Table 1-9. Note that the ACL rules referenced must be those defined with the permit keyword specified.
cpu: Duplicates the packets to the CPU.
monitor-interface: Duplicates the packets to the destination mirroring port.
Description
Use the mirrored-to vlan command to reference ACLs to a VLAN for identifying traffics and perform traffic mirroring for packets that match.
Use the undo mirrored-to vlan command to remove traffic mirroring configuration for a VLAN.
Note that, the same ACL cannot be simultaneously referenced in both traffic mirroring configuration and traffic redirecting configuration for a VLAN.
& Note:
The traffic mirroring function configured on a VLAN is only applicable to packets tagged with 802.1Q header.
Related command: display qos-vlan, monitor-port.
Example
# Mirror packets that match ACL 2000 on VLAN 1 to Ethernet 1/0/2 through traffic mirroring.
<Sysname> system-view
System View: return to User View with Ctrl+Z.
[Sysname] acl number 2000
[Sysname-acl-basic-2000] rule permit source 1.1.1.1 0
[Sysname-acl-basic-2000] quit
[Sysname] interface Ethernet1/0/2
[Sysname-Ethernet1/0/2] monitor-port
[Sysname-Ethernet1/0/2] quit
[Sysname] mirrored-to vlan 1 inbound ip-group 2000 monitor-interface
# Display the traffic mirroring configuration of VLAN 1.
<Sysname> display qos-vlan 1 mirrored-to
Vlan 1 mirrored-to
Inbound:
Matches: Acl 2000 rule 1 running
Mirrored to: monitor interface
1.1.20 priority
Syntax
priority priority-level
undo priority
View
Ethernet port view
Parameter
priority-level: Port priority, ranging from 0 to 7.
Description
Use the priority command to configure the priority of an Ethernet port.
Use the undo priority command to restore the default port priority.
By default, the priority of an Ethernet port is 0.
Example
# Set the priority of Ethernet 1/0/1 to 6.
<Sysname> system-view
System View: return to User View with Ctrl+Z.
[Sysname] interface Ethernet 1/0/1
[Sysname-Ethernet1/0/1] priority 6
1.1.21 priority trust
Syntax
priority trust
undo priority
View
System view
Parameter
None
Description
Use the priority trust command to configure the switch to trust the 802.1p priority of a packet.
Use the undo priority command to restore the default settings.
By default, port priority is trusted.
In port priority trusted mode, when receiving an 802.1q tagged packet, the switch replaces the 802.1p priority of the packet with the port priority, searches for the local precedence corresponding to the port priority of the receiving port in the 802.1p-to-local precedence mapping table, and assigns the local precedence to the packet.
You can use the priority trust command to configure the switch to trust the 802.1p precedence of the received packets. In this case, the priority of the receiving port is not used as the 802.1p precedence.
Example
# Configure the switch to trust the 802.1p precedence of the received packets.
<Sysname> system-view
System View: return to User View with Ctrl+Z.
[Sysname] priority trust
# Display the configuration result.
[Sysname] display this
#
sysname Sysname
#
priority trust
1.1.22 priority-trust
Syntax
priority-trust { cos | dscp }
undo priority-trust
View
System view
Parameter
cos: Configures the switch to trust the CoS precedence (802.1p precedence) of the received packets.
dscp: Configures the switch to trust the DSCP precedence of the received packets.
Description
Use the priority-trust command to specify the trusted packet priority type.
Use the undo priority-trust command to restore the default.
By default, a switch trusts the 802.1p priority of the received packets.
A port of an S3100 series switch can accommodate four output queues. The output queue to which a received packet is to be added to is determined by its local precedence:
l DSCP precedence: Ranges from 0 to 63. By default, packets with DSCP values from 0 to 15 are put into queue 0, those from 16 to 31 in queue 1, from 32 to 47 in queue 2, and from 48 to 63 in queue 3.
l CoS priority: Ranges from 0 to 7. By default, packets with CoS priority level 1 or 2 are put into queue 0, those with 0 or 3 in queue 1, with 4 or 5 in queue 2, and with 6 or 7 in queue 3.
You can choose a queuing policy that best meets your needs.
Note that: on the S3100 series, before configuring a switch to trust the DSCP precedence of the received packets with the priority-trust dscp command, configure the priority trust command on the switch first.
Related command: display priority-trust.
Example
# Configure the switch to trust the DSCP precedence of the received packets.
<Sysname> system-view
System View: return to User View with Ctrl+Z.
[Sysname] priority-trust dscp
# Display the configuration result.
[Sysname] display priority-trust
Priority trust mode: dscp
1.1.23 qos cos-local-precedence-map
Syntax
qos cos-local-precedence-map cos0-map-local-prec cos1-map-local-prec cos2-map-local-prec cos3-map-local-prec cos4-map-local-prec cos5-map-local-prec cos6-map-local-prec cos7-map-local-prec
undo qos cos-local-precedence-map
View
System view
Parameter
cos0-map-local-prec: Local precedence to which CoS 0 is to be mapped, in the range 0 to 3.
cos1-map-local-prec: Local precedence to which CoS 1 is to be mapped, in the range 0 to 3.
cos2-map-local-prec: Local precedence to which CoS 2 is to be mapped, in the range 0 to 3.
cos3-map-local-prec: Local precedence to which CoS 3 is to be mapped, in the range 0 to 3.
cos4-map-local-prec: Local precedence to which CoS 4 is to be mapped, in the range 0 to 3.
cos5-map-local-prec: Local precedence to which CoS 5 is to be mapped, in the range 0 to 3.
cos6-map-local-prec: Local precedence to which CoS 6 is to be mapped, in the range 0 to 3.
cos7-map-local-prec: Local precedence to which CoS 7 is to be mapped, in the range 0 to 3.
Description
Use the qos cos-local-precedence-map command to modify the CoS-precedence-to-local-precedence mapping table.
Use the undo qos cos-local-precedence-map command to restore the default CoS-precedence-to-local-precedence mapping table.
The default CoS-precedence-to-local-precedence mapping tables as shown in Table 1-10.
Table 1-10 The default CoS-precedence-to-local-precedence mapping table
CoS value |
Local precedence |
0 |
1 |
1 |
0 |
2 |
0 |
3 |
1 |
4 |
2 |
5 |
2 |
6 |
3 |
7 |
3 |
Related command: display qos cos-local-precedence-map.
Example
# Configure the CoS-precedence-to-local-precedence mapping relationship as follows: 0 to 0, 1 to 0, 2 to 1, 3 to 1, 4 to 2, 5 to 2, 6 to 3, and 7 to 3.
<Sysname> system-view
System View: return to User View with Ctrl+Z.
[Sysname] qos cos-local-precedence-map 0 0 1 1 2 2 3 3
# Display the configuration result.
[Sysname] display qos cos-local-precedence-map
cos-local-precedence-map:
cos(802.1p) : 0 1 2 3 4 5 6 7
----------------------------------------------------------------
local precedence(queue) : 0 0 1 1 2 2 3 3
1.1.24 qos dscp-local-precedence-map
Syntax
qos dscp-local-precedence-map dscp-list : local-precedence
undo qos dscp-local-precedence-map [dscp-list ]
View
System view
Parameter
dscp-list: List of DSCP values. It can include only one DSCP value or many DSCP values. DSCP values are separated by space. dscp-list is connected with local-precedence by the “:” after it to indicate the mapping relationship between them. The range of dscp-list is from 0 to 63.
local-precedence: Local precedence. This argument is in the range of 0 to 3.
Description
Use the qos dscp-local-precedence-map command to modify the DSCP-precedence-to-local-precedence mapping table.
Use the undo qos dscp-local-precedence-map command to restore the default DSCP-precedence-to-local-precedence mapping table.
The default DSCP-precedence-to-local-precedence mapping tables as shown in Table 1-11.
Table 1-11 The default DSCP-precedence-to-local-precedence mapping table
DSCP |
Local precedence |
0 to 15 |
0 |
16 to 31 |
1 |
32 to 47 |
2 |
48 to 63 |
3 |
Related command: display qos dscp-local-precedence-map.
Example
# Modify the DSCP-precedence-to-local-precedence mapping table according to Table 1-12.
Table 1-12 A DSCP-precedence-to-local-precedence mapping table
DSCP |
Local precedence |
0 to 15 |
1 |
16 to 31 |
1 |
32 to 47 |
2 |
48 to 63 |
3 |
The configuration procedure is as follows:
<Sysname> system-view
System View: return to User View with Ctrl+Z.
[Sysname] qos dscp-local-precedence-map 0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 : 1
# Display the configuration result.
[Sysname] display qos dscp-local-precedence-map
dscp-local-precedence-map:
dscp : local-precedence(queue)
----------------------------------------------
0 : 2
1 : 2
2 : 2
3 : 2
4 : 2
5 : 2
6 : 2
7 : 2
8 : 2
9 : 2
10 : 2
11 : 2
12 : 2
13 : 2
14 : 2
15 : 2
16 : 1
17 : 1
18 : 1
19 : 1
20 : 1
21 : 1
22 : 1
23 : 1
24 : 1
25 : 1
26 : 1
27 : 1
28 : 1
29 : 1
30 : 1
31 : 1
32 : 2
33 : 2
34 : 2
35 : 2
36 : 2
37 : 2
38 : 2
39 : 2
40 : 2
41 : 2
42 : 2
43 : 2
44 : 2
45 : 2
46 : 2
47 : 2
48 : 3
49 : 3
50 : 3
51 : 3
52 : 3
53 : 3
54 : 3
55 : 3
56 : 3
57 : 3
58 : 3
59 : 3
60 : 3
61 : 3
62 : 3
63 : 3
1.1.25 queue-scheduler
Syntax
queue-scheduler { strict-priority | hq-wrr queue0-weight queue1-weight queue2-weight | wrr queue0-weight queue1-weight queue2-weight queue3-weight }
undo queue-scheduler
View
System view
Parameter
strict-priority: Adopts the strict priority (SP) algorithm for queue scheduling.
hq-wrr queue0-weight queue1-weight queue2-weight: Adopts the HQ-WRR queue scheduling algorithm. The queue0-weight argument, the queue1-weight argument, and the queue2-weight argument are the weight assigned to queue 0, queue 1, and queue 2. The weight assigned to a queue is in the range of 1 to 15.
wrr: Adopts the weighted round robin (WRR) algorithm for queue scheduling.
queue0-weight queue1-weight queue2-weight queue3-weight: Weights to be assigned to queue 0 through queue 3. The value ranges from 1 to 15.
Description
Use the queue-scheduler command to configure a queue scheduling algorithm and the related parameters for specific queues.
Use the undo queue-scheduler command to restore the default.
By default, the WRR queue scheduling algorithm is adopted, and the weight assigned to queue 0, queue 1, queue 2, and queue 3 is 1, 2, 3, and 4.
The port of an S3100 series switch can accommodate four output queues. You can configure the queue scheduling algorithm as needed:
l With the WRR algorithm, Each queue is assigned with a weight value (w0, w1, w2 and w3 corresponding to the four queues), which indicates the proportions of source allocated to each queue. For example, weight values for queues 0 to 3 are set as 1, 2, 4 and 8 (corresponding to w0, w1, w2 and w3) respectively. In this case, when data traffic of the four output queues on the port exceeds the port processing capability, the switch will perform weight round robin on the queues, based on the allocated proportion of 1:2:4:8. That is to say, among every 15 packets sent by the switch, 1 packet is put into queue 0, 2 into queue 1, 4 into queue 2 and 8 into queue 3.
l With the HQ-WRR algorithm, queue 3 is allocated with the highest priority. When data traffic of the four output queues on the port exceeds the port processing capability, packets in queue 3 will be sent first, and then WRR algorithm is used on the rest three queues.
Related command: display queue-scheduler.
Example
# Adopt the WRR queue scheduling algorithm, with the weight for queue 0, queue 1, queue 2, and queue 3 as 12, 8, 4, and 1.
<Sysname> system-view
System View: return to User View with Ctrl+Z.
[Sysname] queue-scheduler wrr 12 8 4 1
# Display the configuration result.
[Sysname] display queue-scheduler
Queue scheduling mode: weighted round robin
weight of queue 0: 12
weight of queue 1: 8
weight of queue 2: 4
weight of queue 3: 1
1.1.26 reset traffic-limit
Syntax
reset traffic-limit inbound acl-rule
View
System view, Ethernet port view, Port group view
Parameter
inbound: Specifies to clear the statistics on the inbound packets.
acl-rule: ACL rules to be applied. This argument can be the combination of multiple ACLs. For more information about this argument, refer to Table 1-8 and Table 1-9.
Description
Use the reset traffic-limit command to clear the traffic policing statistics on all the packets matching specific ACL rules, or packets that match specific ACL rules and are of a port group or pass a port.
Related command: traffic-limit.
Example
# Clear the traffic policing statistics on packets matching ACL 2000 and passing Ethernet 1/0/1.
<Sysname> system-view
System View: return to User View with Ctrl+Z.
[Sysname] interface Ethernet1/0/1
[Sysname-Ethernet1/0/1] reset traffic-limit inbound ip-group 2000
1.1.27 reset traffic-limit vlan
Syntax
reset traffic-limit vlan vlan-id inbound acl-rule
View
System view
Parameter
vlan-id: VLAN ID, in the range 1 to 4094.
inbound: Specifies to clear the statistics on the inbound packets.
acl-rule: ACL rules to be applied. This argument can be the combination of multiple ACLs. For more information about this argument, refer to Table 1-8 and Table 1-9.
Description
Use the reset traffic-limit vlan command to clear the statistics on packets of a VLAN.
Related command: traffic-limit vlan.
Example
# Clear the statistics on packets that match ACL 2000 and are of VLAN 1.
<Sysname> system-view
System View: return to User View with Ctrl+Z.
[Sysname] reset traffic-limit vlan 1 inbound ip-group 2000
1.1.28 reset traffic-statistic
Syntax
reset traffic-statistic inbound acl-rule
View
System view, Ethernet port view, Port group view
Parameter
inbound: Specifies to clear the statistics on the inbound packets.
acl-rule: ACL rules to be applied. This argument can be the combination of multiple ACLs. For more information about this argument, refer to Table 1-8 and Table 1-9.
Description
Use the reset traffic-statistics command to clear the statistics on all the packets matching specific ACL rules, or the packets that match specific ACL rules and are of a port group or pass a port.
Related command: traffic-statistic.
Example
# Clear the statistics on packets matching ACL 2000 and passing Ethernet 1/0/1.
<Sysname> system-view
System View: return to User View with Ctrl+Z.
[Sysname] interface Ethernet1/0/1
[Sysname-Ethernet1/0/1] reset traffic-statistic inbound ip-group 2000
1.1.29 reset traffic-statistic vlan
Syntax
reset traffic-statistic vlan vlan-id inbound acl-rule
View
System view
Parameter
vlan-id: VLAN ID, in the range 1 to 4094.
inbound: Specifies to clear the statistics on the inbound packets.
acl-rule: ACL rules to be applied. This argument can be the combination of multiple ACLs. For more information about this argument, refer to Table 1-8 and Table 1-9.
Description
Use the reset traffic-statistics vlan command to clear the statistics on packets that are of a VLAN and match specific ACL rules.
Related command: traffic-statistic vlan.
Example
# Clear the statistics on packets that match ACL 2000 and are of VLAN 1.
<Sysname> system-view
System View: return to User View with Ctrl+Z.
[Sysname] reset traffic-statistic vlan 1 inbound ip-group 2000
1.1.30 traffic-limit
Syntax
traffic-limit inbound acl-rule target-rate [ burst-bucket burst-bucket-size ] [ conform con-action ] [ exceed exceed-action ] [ meter-statistic ]
undo traffic-limit inbound acl-rule [ meter-statistic ]
View
System view, Ethernet port view, Port group view
Parameter
inbound: Performs traffic policing on the inbound packets.
acl-rule: ACL rules to be applied. This argument can be the combination of multiple ACLs. For more information about this argument, refer to Table 1-8 and Table 1-9. Note that the ACL rules referenced must be those defined with the permit keyword specified.
target-rate: Target traffic rate of traffic policing ( in kbps). This argument is in the range of 64 to 1000000 in system view and port group view. In Ethernet port view, the range of this argument varies by port type as follows:
l Fast Ethernet port: 64 to 99,968;
l GigabitEthernet port: 64 to 1,000,000.
The granularity of port rate limit is 64 Kbps. Assume that the value you provide for the target-rate argument is in the range N*64 to (N+1)*64 (N is a natural number), it will be rounded off to (N+1)*64.
burst-bucket burst-bucket-size: Specifies the maximum burst traffic size (in kilobytes) allowed. The burst-bucket-size argument must a multiple of 8 and ranges from 8 to 1016.
conform con-action: Sets the actions of the switch on the packets except forwarding when the packet traffic is within the specified traffic. The con-action argument can be:
l remark-dscp dscp-value: Sets the DSCP precedence for the packets. The dscp-value argument is in the range of 0 to 63. You can also enter a keyword listed in Table 1-13 for this argument.
l remark-cos cos-value : Sets the 802.1p precedence for the packets. The cos-value argument is in the range of 0 to 7. You can also enter a keyword listed in Table 1-14 for this argument.
Table 1-13 DSCP precedence keywords and the corresponding decimal/binary values
Keyword |
DSCP value (decimal) |
DSCP value (binary) |
af11 |
10 |
001010 |
af12 |
12 |
001100 |
af13 |
14 |
001110 |
af21 |
18 |
010010 |
af22 |
20 |
010100 |
af23 |
22 |
010110 |
af31 |
26 |
011010 |
af32 |
28 |
011100 |
af33 |
30 |
011110 |
af41 |
34 |
100010 |
af42 |
36 |
100100 |
af43 |
38 |
100110 |
be (the default) |
0 |
000000 |
cs1 |
8 |
001000 |
cs2 |
16 |
010000 |
cs3 |
24 |
011000 |
cs4 |
32 |
100000 |
cs5 |
40 |
101000 |
cs6 |
48 |
110000 |
cs7 |
56 |
111000 |
ef |
46 |
101110 |
Table 1-14 802.1p precedence keywords and the corresponding decimal/binary values
Keyword |
802.1p precedence (decimal) |
802.1p precedence (binary) |
best-effort |
0 |
000 |
background |
1 |
001 |
Spare |
2 |
010 |
excellent-effort |
3 |
011 |
controlled-load |
4 |
100 |
Video |
5 |
101 |
Voice |
6 |
110 |
Network-management |
7 |
111 |
exceed exceed-action: Sets the actions on the part of the packets exceeding the specified traffic when the packet traffic exceeds the specified traffic. The actions include:
l drop: Drops the packets.
l forward: Forwards the packets.
l remark-dscp dscp-value: Resets the DSCP precedence of the packets and forwards them at the same time. The DSCP value is in the range of 0 to 63. You can also enter a keyword listed in Table 1-13 for this argument.
meter-statistic: Performs the statistics function on traffic policing. It can meter the bytes of the packets within the limited rate and the bytes of the packets beyond the limited rate. Note that, for the same ACL rule, the meter statistic keyword in this command and the traffic accounting function are mutually exclusive in system view, Ethernet port view, or port group view.
Description
Use the traffic-limit command to perform traffic policing for all the packets matching specific ACL rules, or for packets that match specific ACL rules and are of a port group or pass a port.
Use the undo traffic-limit command to cancel the configuration.
By default, traffic policing is disabled globally, on all port groups, and all ports.
& Note:
l With broadcast suppression, multicast suppression, or line rate for the inbound direction enabled on a device, you cannot configure traffic policing on the device. For detailed information about broadcast suppression and multicast suppression, refer to Basic Port Configuration in this manual.
Related command: display qos-interface traffic-limit, reset traffic-limit.
Example
# Perform traffic policing for packets matching ACL 4000 on Ethernet 1/0/1. Limit the rate within 128 kbps and drop the packets exceeding the traffic limit.
<Sysname> system-view
System View: return to User View with Ctrl+Z.
[Sysname] acl number 4000
[Sysname-acl-ethernetframe-4000] rule permit source 200
[Sysname-acl-ethernetframe-4000] quit
[Sysname] interface Ethernet 1/0/1
[Sysname-Ethernet1/0/1] traffic-limit inbound link-group 4000 128 exceed drop
1.1.31 traffic-limit vlan
Syntax
traffic-limit vlan vlan-id inbound acl-rule target-rate [ burst-bucket burst-bucket-size ] [ conform con-action ] [ exceed exceed-action ] [ meter-statistic ]
undo traffic-limit vlan vlan-id inbound acl-rule [ meter-statistic ]
View
System view
Parameter
vlan-id: VLAN ID, in the range 1 to 4094.
inbound: Performs traffic policing on the inbound packets.
acl-rule: ACL rules to be applied. This argument can be the combination of multiple ACLs. For more information about this argument, refer to Table 1-8 and Table 1-9. Note that the ACL rules referenced must be those defined with the permit keyword specified.
target-rate: Target traffic rate of traffic policing (in kbps). This argument is in the range 64 to 1000000.
The granularity of port rate limit is 64 Kbps. Assume that the value you provide for the target-rate argument is in the range N*64 to (N+1)*64 (N is a natural number), it will be rounded off to (N+1)*64.
burst-bucket burst-bucket-size: Specifies the maximum burst traffic size (in kilobytes) allowed. The burst-bucket-size argument must a multiple of 8 and ranges from 8 to 1016.
conform con-action: Sets the actions of the switch on the packets except forwarding when the packet traffic is within the specified traffic. The actions are as follows:
l remark-dscp dscp-value: Sets the DSCP precedence of the packets to the specified value. The dscp-value argument is in the range of 0 to 63. You can also enter a keyword listed in Table 1-13 for this argument.
l remark-cos cos-value : Sets the 802.1p precedence of the packets to the specified value. The cos-value argument is in the range of 0 to 7. You can also enter a keyword listed in Table 1-14 for this argument.
exceed exceed-action: Sets the actions on the part of the packets exceeding the specified traffic when the packet traffic exceeds the specified traffic. The actions include:
l drop: Drops the packets.
l forward: Forwards the packets.
l remark-dscp dscp-value: Resets the DSCP precedence of the packets and forwards them at the same time. The dscp-value argument is in the range of 0 to 63. You can also enter a keyword listed in Table 1-13 for this argument.
meter-statistic: Performs the statistics function on traffic policing. It can meter the bytes of the packets within the limited rate and the bytes of the packets beyond the limited rate. Note that, for the same ACL rule, the meter statistic keyword in this command and the traffic accounting function are mutually exclusive in a VLAN.
Description
Use the traffic-limit vlan command to use ACL rules in traffic identifying and traffic policing for the packet matching with the ACL rules and to set traffic policing parameters and different actions for packets within the traffic limit and packets beyond the traffic limit on a VLAN.
Use the undo traffic-limit vlan command to disable traffic policing on a VLAN.
By default, traffic policing is disabled on a VLAN.
& Note:
l Traffic policing configured on a VLAN is only applicable to packets tagged with 802.1Q header.
l With broadcast suppression, multicast suppression, or line rate for the inbound direction enabled on a device, you cannot configure traffic policing on the device. For detailed information about broadcast suppression and multicast suppression, refer to Basic Port Configuration in this manual.
Related commands: display qos-vlan, reset traffic-limit vlan.
Example
# Perform traffic policing for packets matching ACL 4000 on VLAN 1. Limit the rate within 128 kbps and drop the packets exceeding the traffic limit on VLAN 1.
<Sysname> system-view
System View: return to User View with Ctrl+Z.
[Sysname] traffic-limit vlan 1 inbound link-group 4000 128 exceed drop
1.1.32 traffic-priority
Syntax
traffic-priority inbound acl-rule { dscp dscp-value | cos cos-value | local-precedence pre-value }*
undo traffic-priority inbound acl-rule
View
System view, Ethernet port view, Port group view
Parameter
inbound: Marks the priority for inbound packets.
acl-rule: ACL rules to be applied. This argument can be the combination of multiple ACLs. For more information about this argument, refer to Table 1-8 and Table 1-9. Note that the ACL rules referenced must be those defined with the permit keyword specified.
dscp dscp-value: Sets the DSCP precedence, in the range 0 to 63. You can also enter a keyword listed in Table 1-13 for the dscp-value argument.
cos cos-value: Sets the 802.1p precedence, in the range 0 to 7. You can also enter a keyword listed in Table 1-14 for the cos-value argument.
local-precedence pre-value: Sets the local precedence. The pre-value argument ranges from 0 to 3.
Description
Use the traffic-priority command to use ACL rules in traffic identifying and specify a new priority for all the packets matching the specific ACL rules, or packets that match specific ACL rules and are of a port group, or pass a port.
Use the undo traffic-priority to disable the priority marking function for all the packets matching specific the ACL rules, or packets that match specific ACL rules and are of a port group, or pass a port.
By default, priority marking is disabled globally, on all port groups, and all ports.
Related command: display qos-interface traffic-priority.
Example
# Set the 802.1p precedence to 1 for packets matching ACL 4000 and passing Ethernet 1/0/1.
<Sysname> system-view
System View: return to User View with Ctrl+Z.
[Sysname] acl number 4000
[Sysname-acl-ethernetframe-4000] rule permit cos 5
[Sysname-acl-ethernetframe-4000] quit
[Sysname] interface Ethernet1/0/1
[Sysname-Ethernet1/0/1] traffic-priority inbound link-group 4000 cos 1
1.1.33 traffic-priority vlan
Syntax
traffic-priority vlan vlan-id inbound acl-rule { dscp dscp-value | cos cos-value | local-precedence pre-value }*
undo traffic-priority vlan vlan-id inbound acl-rule
View
System view
Parameter
vlan-id: VLAN ID, in the range 1 to 4094.
inbound: Performs priority marking for the inbound packets.
acl-rule: ACL rules to be applied. This argument can be the combination of multiple ACLs. For more information about this argument, refer to Table 1-8 and Table 1-9. Note that the ACL rules referenced must be those defined with the permit keyword specified.
dscp dscp-value: Sets the DSCP precedence, in the range of 0 to 63. You can also enter a keyword listed in Table 1-13 for the dscp-value argument.
cos cos-value: Sets the 802.1p precedence, in the range of 0 to 7. You can also enter a keyword listed in Table 1-14 for the cos-value argument.
local-precedence pre-value: Sets the local precedence. The pre-value argument ranges from 0 to 3.
Description
Use the traffic-priority vlan command to mark the priority for packets that match specific ACL rules and are of a VLAN.
Use the undo traffic-priority vlan to disable the priority marking for packets that match specific ACL rules and are of a VLAN.
By default, priority marking is disabled on a VLAN.
Related command: display qos-vlan.
& Note:
The priority marking function configured on a VLAN is only applicable to packets tagged with 802.1Q header.
Example
# Set the 802.1p precedence to 1 for packets that match ACL 4000 and are of VLAN 1.
<Sysname> system-view
System View: return to User View with Ctrl+Z.
[Sysname] acl number 4000
[Sysname-acl-ethernetframe-4000] rule permit cos 3 dest 000f-e200-1234 ffff-ffff-ffff
[Sysname] traffic-priority vlan 1 inbound link-group 4000 cos 1
1.1.34 traffic-redirect
Syntax
traffic-redirect inbound acl-rule { cpu | interface interface-type interface-number }
undo traffic-redirect inbound acl-rule
View
System view, Ethernet port view, port group view
Parameter
inbound: Redirects inbound packets.
acl-rule: ACL rules to be applied. This argument can be the combination of multiple ACLs. For more information about this argument, refer to Table 1-8 and Table 1-9. Note that the ACL rules referenced must be those defined with the permit keyword specified.
cpu: Redirects the packets to the CPU.
interface interface-type interface-number: Redirects the packets to the specified Ethernet port. interface-type indicates the type of the interface and interface-number indicates the interface number.
Description
Use the traffic-redirect command to redirect all the packets that match specific ACL rules, or the packets that match specific ACL rules and are of a port group or pass a port.
Use the undo traffic-redirect command to disable traffic redirecting for all the packets that match specific ACL rules, or the packets that match specific ACL rules and are of a port group or pass a port.
You can redirect packets to a port or the CPU.
Note that, the same ACL cannot be simultaneously referenced in both traffic mirroring configuration and traffic redirecting configuration globally, in port group view, or in port view.
By default, traffic redirecting is disabled globally, on all port groups, and all ports.
& Note:
l Packets redirected to the CPU are not forwarded.
l If the traffic is redirected to a Combo port in down state, the system automatically redirects the traffic to the port corresponding to the Combo port in up state. Refer to Port Basic Configuration module of this manual for information about Combo ports.
Related command: display qos-interface traffic-redirect.
Example
# Redirect the packets that match ACL 2000 and pass Ethernet 1/0/1 to Ethernet 1/0/7.
<Sysname> system-view
System View: return to User View with Ctrl+Z.
[Sysname] acl number 2000
[Sysname-acl-basic-2000] rule permit source 1.1.1.0 0.0.0.255
[Sysname-acl-basic-2000] quit
[Sysname] interface Ethernet1/0/1
[Sysname-Ethernet1/0/1] traffic-redirect inbound ip-group 2000 interface Ethernet1/0/7
1.1.35 traffic-redirect vlan
Syntax
traffic-redirect vlan vlan-id inbound acl-rule { cpu | interface interface-type interface-number }
undo traffic-redirect vlan vlan-id inbound acl-rule
View
System view
Parameter
vlan-id: VLAN ID, in the range 1 to 4094.
inbound: Redirects inbound packets.
acl-rule: ACL rules to be applied. This argument can be the combination of multiple ACLs. For more information about this argument, refer to Table 1-8 and Table 1-9. Note that the ACL rules referenced must be those defined with the permit keyword specified.
cpu: Redirects the packets to the CPU.
interface interface-type interface-number: Redirects the packets to the specified Ethernet port. interface-type indicates the type of the interface and interface-number indicates the interface number.
Description
Use the traffic-redirect vlan command to redirect packets that match specific ACL rules and are of a specific VLAN to a specified port.
Use the undo traffic-redirect vlan command to cancel the configuration.
You can redirect packets to a port or the CPU.
By default, traffic redirecting is disabled on a VLAN.
Note that, the same ACL cannot be simultaneously referenced in both traffic mirroring configuration and traffic redirecting configuration for a VLAN.
& Note:
l The traffic redirecting function configured on a VLAN is only applicable to packets tagged with 802.1Q header.
l Packets redirected to the CPU are not forwarded.
l If the traffic is redirected to a Combo port in down state, the system automatically redirects the traffic to the port corresponding to the Combo port in up state. Refer to Port Basic Configuration module of this manual for information about Combo ports.
Related command: display qos-vlan.
Example
# Redirect the packets that match ACL 2000 rules and are of VLAN 1 to Ethernet 1/0/7.
<Sysname> system-view
System View: return to User View with Ctrl+Z.
[Sysname] acl number 2000
[Sysname-acl-basic-2000] rule permit source 1.1.1.0 0.0.0.255
[Sysname-acl-basic-2000] quit
[Sysname] traffic-redirect vlan 1 inbound ip-group 2000 interface Ethernet1/0/7
1.1.36 traffic-shape
Syntax
traffic-shape queue queue-id max-rate burst-size
undo traffic-shape queue queue-id
View
Ethernet port view
Parameter
queue queue-id: Specifies the ID of a queue, in the range of 0 to 3.
max-rate: Maximum traffic rate on a port, in kbps. It’s in the range of 64 to 100000(for 100Mbps Ethernet ports)or 64 to 1000000(for 1000 Mbps Ethernet ports).Note that this argument must be a multiple of 64.
burst-size: Burst size (in KB), in the range 8 to 1016. This argument must be a multiple of 8.
Description
Use the traffic-shape command to enable traffic shaping and send the packets out at an even rate. Use the undo traffic-shape command to disable traffic shaping.
By default, traffic shaping is disabled.
Related command: display qos-interface traffic-shape.
Example
# Configure traffic shaping on Ethernet 1/0/1, with the maximum rate being 640 kbps and the burst size being 16 KB.
<Sysname> system-view
System View: return to User View with Ctrl+Z.
[Sysname] interface Ethernet 1/0/1
[Sysname-Ethernet1/0/1] traffic-shape 640 16
1.1.37 traffic-statistic
Syntax
traffic-statistic inbound acl-rule
undo traffic-statistic inbound acl-rule
View
System view, Ethernet port view, Port group view
Parameter
inbound: Generates statistics on inbound packets.
acl-rule: ACL rules to be applied. This argument can be the combination of multiple ACLs. For more information about this argument, refer to Table 1-8 and Table 1-9. Note that the ACL rules referenced must be those defined with the permit keyword specified.
Description
Use the traffic-statistic command to generate statistics on all the packets matching specific ACL rules, or on packets that match specific ACL rules and are of a port group, or pass a port.
Use the undo traffic-statistic command to disable generating statistics on all the packets matching specific ACL rules, or on packets that match specific ACL rules and are of a port group, or pass a port.
Note that, for the same ACL rule, the traffic accounting function and the meter statistic keyword of the traffic-limit command are mutually exclusive in system view, Ethernet port view, or port group view.
Related command: display qos-interface traffic-statistic, reset traffic-statistic.
Example
# Generate statistics on the packets that match ACL 2000 and pass Ethernet 1/0/1.
<Sysname> system-view
System View: return to User View with Ctrl+Z.
[Sysname] acl number 2000
[Sysname-acl-basic-2000] rule permit source 1.1.1.0 0.0.0.255
[Sysname-acl-basic-2000] quit
[Sysname] interface Ethernet 1/0/1
[Sysname-Ethernet1/0/1] traffic-statistic inbound ip-group 2000
1.1.38 traffic-statistic vlan
Syntax
traffic-statistic vlan vlan-id inbound acl-rule
undo traffic-statistic vlan vlan-id inbound acl-rule
View
System view
Parameter
vlan-id: VLAN ID, in the range 1 to 4094.
inbound: Generates statistics on inbound packets.
acl-rule: ACL rules to be applied. This argument can be the combination of multiple ACLs. For more information about this argument, refer to Table 1-8 and Table 1-9. Note that the ACL rules referenced must be those defined with the permit keyword specified.
Description
Use the traffic-statistic vlan command to generate statistics on packets that match specific ACL rules and are of a specific VLAN.
Use the undo traffic-statistic vlan command to cancel the configuration.
Note that, for the same ACL rule, the traffic accounting function and the meter statistic keyword of the traffic-limit command are mutually exclusive in a VLAN.
& Note:
The traffic accounting function configured on a VLAN is only applicable to packets tagged with 802.1Q header.
Related command: display qos-vlan, reset traffic-statistic vlan.
Example
# Generate statistics on packets that match ACL 2000 and are of VLAN 1.
<Sysname> system-view
System View: return to User View with Ctrl+Z.
[Sysname] acl number 2000
[Sysname-acl-basic-2000] rule permit source 1.1.1.0 0.0.0.255
[Sysname-acl-basic-2000] quit
[Sysname] traffic-statistic vlan 1 inbound ip-group 2000
Chapter 2 QoS Profile Configuration Commands
2.1 QoS Profile Configuration Commands
2.1.1 apply qos-profile
Syntax
I. In system view
apply qos-profile profile-name interface interface-list
undo apply qos-profile profile-name interface interface-list
II. In Ethernet port view
apply qos-profile profile-name
undo apply qos-profile profile-name
View
System view, Ethernet port view
Parameter
profile-name: QoS profile name, a case-insensitive string of 1 to 32 characters and starting with English letters [a-z, A-Z].
interface-list: List of Ethernet ports. You can specify multiple Ethernet ports by providing this argument in the form of interface-type interface-number [ to interface-type interface-number ].
Description
Use the apply qos-profile command to apply a QoS profile to a port or multiple ports.
Use the undo apply qos-profile command to remove a QoS profile from a port or multiple ports.
In Ethernet port view, you can apply a QoS profile to the current port; in system view, you can apply a QoS profile to multiple ports.
Example
# Apply the QoS profile named a123 to Ethernet 1/0/1.
<Sysname> system-view
System View: return to User View with Ctrl+Z.
[Sysname] interface Ethernet1/0/1
[Sysname-Ethernet1/0/1] apply qos-profile a123
# Apply the QoS profile named a123 to Ethernet 1/0/1 through Ethernet 1/0/4.
<Sysname> system-view
System View: return to User View with Ctrl+Z.
[Sysname] apply qos-profile a123 interface Ethernet 1/0/1 to Ethernet 1/0/4
2.1.2 display qos-profile
Syntax
display qos-profile { all | name profile-name | interface interface-type interface-number | user user-name }
View
Any view
Parameter
all: Specifies all the QoS profiles.
name profile-name: Specifies a QoS profile by its name, for which information is to be displayed. The profile-name argument is a case-insensitive string of 1 to 32 characters and must begin with an English letter (a to z, and A to Z).
interface interface-type interface-number: Specifies the type and number of a port to display the QoS profile applied on the port.
user user-name: Specifies the name of an 802.1x authentication user. The user-name argument is a string of 1 to 184 characters and in the form of aa@cc, with aa for user name and cc for domain name.
Description
Use the display qos-profile command to display the configuration of a QoS profile or all the QoS profiles.
Example
# Display the configuration of the QoS profile named test.
<Sysname> display qos-profile name test
qos-profile: test, 3 actions
packet-filter inbound ip-group 2000 rule 0
traffic-limit inbound ip-group 3000 rule 0 64
traffic-priority inbound ip-group 4000 rule 0 cos controlled-load
# Display the configuration of the QoS profile applied to the 802.1x user abc@net.
<Sysname> display qos-profile user abc@net
User abc@net applied qos-profile: test, 3 actions
packet-filter inbound ip-group 2000 rule 0
traffic-limit inbound ip-group 3000 rule 0 64
traffic-priority inbound ip-group 4000 rule 0 cos controlled-load
# Display the configuration of the QoS profile applied to Ethernet 1/0/1, assuming that the QoS profile has been applied to Ethernet 1/0/1 manually.
<Sysname> display qos-profile interface Ethernet 1/0/1
User's qos-profile applied mode: user-based
Default applied qos-profile: test, 3 actions
packet-filter inbound ip-group 2000 rule 0
traffic-limit inbound ip-group 3000 rule 0 64
traffic-priority inbound ip-group 4000 rule 0 cos controlled-load
<Sysname> display qos-profile interface Ethernet 1/0/2
User's qos-profile applied mode: port-based
User abc@net applied qos-profile: test, 3 actions
packet-filter inbound ip-group 2000 rule 0
traffic-limit inbound ip-group 3000 rule 0 64
traffic-priority inbound ip-group 4000 rule 0 cos controlled-load
Table 2-1 Description on the fields of the display qos-profile command
Field |
Description |
qos-profile: test, 3 actions |
Name of the QoS profile and the number of actions configured in the QoS profile. |
packet-filter inbound ip-group 2000 rule 0 |
Filter the inbound packets matching rule 0 of ACL 2000. |
traffic-limit inbound ip-group 3000 rule 0 64 |
Limit the rate of the inbound packets matching rule 0 of ACL 3000 to 64 kbps. |
traffic-priority inbound ip-group 4000 rule 0 cos controlled-load |
Set the 802.1p precedence of the inbound packets matching rule 0 of ACL 4000 to controlled-load (that is, 802.1p precedence 0). |
User abc@net applied qos-profile: test, 3 actions |
The QoS profile applied to 802.1x user abc@net is named test and contains three actions. |
User's qos-profile applied mode |
The QoS profile is dynamically applied and the application mode could be: l User-based, or l Port-based For detailed information about the two application modes, refer to the corresponding operation manual. |
Default applied qos-profile: test, 3 actions |
“Default” indicates that the QoS profile named test is applied to Ethernet 1/0/1 manually. The QoS profile contains three actions. |
User abc@net applied qos-profile: test, 3 actions |
The QoS profile test is applied to Ethernet 1/0/2, the access port for 802.1x user abc@net. The QoS profile contains three actions. |
2.1.3 packet-filter
Syntax
packet-filter inbound acl-rule
undo packet-filter inbound acl-rule
View
QoS profile view
Parameter
inbound: Filters the inbound packets.
acl-rule: ACL rules to be applied. This argument can be the combination of multiple ACLs. For more information about this argument, refer to Table 1-8 and Table 1-9.
Description
Use the packet-filter command to add the packet filtering action to a QoS profile.
Use the undo packet-filter command to remove the packet filtering action from a QoS profile.
The packet filtering action of a QoS profile currently applied to a port cannot be removed.
Refer to the ACL module for the detailed information about packet filtering.
Example
# Add the packet filtering action to the QoS profile named a123 to filter the inbound packets matching ACL 4000.
<Sysname> system-view
System View: return to User View with Ctrl+Z.
[Sysname] qos-profile a123
[Sysname-qos-profile-a123] packet-filter inbound link-group 4000
2.1.4 qos-profile
Syntax
qos-profile profile-name
undo qos-profile profile-name
View
System view
Parameter
profile-name: QoS profile name, a case-insensitive string of 1 to 32 characters and starting with English letters [a-z, A-Z]. Note that a QoS profile name cannot be all, interface, user, undo, or name.
Description
Use the qos-profile command to create a QoS profile and enter QoS profile view. If the QoS profile already exists, this command leads you to the corresponding QoS profile view.
Use the undo qos-profile command to remove a QoS profile.
A QoS profile currently applied to a port cannot be removed or modified. To remove or modify a QoS profile already applied to a port, you must remove the QoS profile from the port first.
l If the QoS profile is applied to the port manually, use the undo apply qos-profile command to remove the QoS profile from the port.
l If the QoS profile is applied to the port dynamically, log off the user connected to the port to remove the QoS profile from the port.
Example
# Create a QoS profile named a123.
<Sysname> system-view
System View: return to User View with Ctrl+Z.
[Sysname] qos-profile a123
[Sysname-qos-profile-a123]
2.1.5 qos-profile port-based
Syntax
qos-profile port-based
undo qos-profile port-based
View
Ethernet port view
Parameter
None
Description
Use the qos-profile port-based command to configure the QoS profile application mode on a port to be port-based.
Use the undo qos-profile port-based command to restore the default.
By default, the application mode of a QoS profile is user-based.
Note that:
l If the 802.1x authentication is MAC-based, you need to configure the QoS profile application mode to be user-based.
l If the 802.1x authentication is port-based, you need to configure the QoS profile application mode to be port-based.
Example
# Configure the QoS profile application mode on Ethernet 1/0/1 to be port-based.
<Sysname> system-view
System View: return to User View with Ctrl+Z.
[Sysname] interface Ethernet 1/0/1
[Sysname-Ethernet1/0/1] qos-profile port-based
2.1.6 traffic-limit
Syntax
traffic-limit inbound acl-rule target-rate [ burst-bucket burst-bucket-size ] [ conform con-action ] [ exceed exceed-action ] [ meter-statistic ]
undo traffic-limit inbound acl-rule [ meter-statistic ]
View
QoS profile view
Parameter
inbound: Performs traffic policing on the inbound packets.
acl-rule: ACL rules to be applied for traffic classification. This argument can be the combination of multiple ACLs. For more information about this argument, refer to Table 1-8 and Table 1-9. Note that the ACL rules referenced must be those defined with the permit keyword specified.
target-rate: Target traffic rate of traffic policing. This argument is in the range 64 to 1000000.
The granularity of port rate limit is 64 Kbps. Assume that the value you provide for the target-rate argument is in the range N*64 to (N+1)*64 (N is a natural number), it will be rounded off to (N+1)*64.
burst-bucket burst-bucket-size: Specifies the maximum burst traffic size (in kilobytes) allowed. The burst-bucket-size argument must a multiple of 8 and ranges from 8 to 1016.
conform con-action: Sets the actions of the switch on the packets except forwarding when the packet traffic is within the specified traffic. The con-action argument can be:
l remark-dscp dscp-value: Sets the DSCP precedence for the packets. The dscp-value argument is in the range 0 to 63. You can also enter a keyword listed in Table 1-13 for this argument.
l remark-cos cos-value : Sets the 802.1p precedence of the packets. The cos-value argument is in the range 0 to 7. You can also enter a keyword listed in Table 1-14 for this argument.
exceed exceed-action: Sets the actions on the part of the packets exceeding the specified traffic when the packet traffic exceeds the specified traffic. The actions include:
l drop: Drops the packets.
l forward: Forwards the packets.
l remark-dscp dscp-value: Resets the DSCP precedence for the packets and forwards them at the same time. The dscp-value argument is in the range 0 to 63. You can also enter a keyword listed in Table 1-13 for this argument.
meter-statistic: Performs the statistics function on traffic policing. It can meter the bytes of the packets within the limited rate and the bytes of the packets beyond the limited rate.
Description
Use the traffic-limit command to add the traffic policing action to a QoS profile.
Use the undo traffic-limit command to remove the traffic policing action from a QoS profile.
The traffic policing action of a QoS profile currently applied to a port cannot be removed.
Example
# Add a traffic policing action to the QoS profile named a123 to limit the rate of the inbound packets matching ACL 2000 to 128 kbps and drop the packets exceeding 128 kbps.
<Sysname> system-view
System View: return to User View with Ctrl+Z.
[Sysname] qos-profile a123
[Sysname-qos-profile-a123] traffic-limit inbound ip-group 2000 128 exceed drop
2.1.7 traffic-priority
Syntax
traffic-priority inbound acl-rule { dscp dscp-value | cos cos-value | local-precedence pre-value }*
undo traffic-priority inbound acl-rule
View
QoS profile view
Parameter
inbound: Performs priority marking on the inbound packets.
acl-rule: ACL rules to be applied for traffic classification. This argument can be the combination of multiple ACLs. For more information about this argument, refer to Table 1-8 and Table 1-9. Note that the ACL rules referenced must be those defined with the permit keyword specified.
dscp dscp-value: Sets the DSCP precedence. The dscp-value argument is in the range 0 to 63. You can also enter a keyword listed in Table 1-13 for this argument.
cos cos-value: Sets the 802.1p precedence. The cos-value argument is in the range 0 to 7. You can also enter a keyword listed in Table 1-14 for this argument.
local-precedence pre-value: Sets the local precedence. The pre-value argument ranges from 0 to 3.
Description
Use the traffic-priority command to add a priority marking action to a QoS profile.
Use the undo traffic-priority command to remove a priority marking action from a QoS profile.
The priority marking action of a QoS profile currently applied to a port cannot be removed.
Example
# Add a priority marking action to the QoS profile named a123 to set the 802.1p precedence of the inbound packets matching ACL 4000 to 1.
<Sysname> system-view
System View: return to User View with Ctrl+Z.
[Sysname] qos-profile a123
[Sysname-qos-profile-a123] traffic-priority inbound link-group 4000 cos 1