- Table of Contents
- Related Documents
-
Title | Size | Download |
---|---|---|
08-User profile commands | 56.68 KB |
User profile commands
display user-profile
Use display user-profile to display configuration and online user information for user profiles.
Syntax
display user-profile [ session-group ] [ name profile-name ] [ slot slot-number ]
Views
Any view
Predefined user roles
network-admin
network-operator
Parameters
session-group: Specifies a session group profile.
name profile-name: Specifies a user profile by its name, a case-sensitive string of 1 to 31 characters. Valid characters include English letters, digits, underscores (_), minus signs (–), and dots (.). The name can start with an English letter or digit, and cannot contain only digits. The name must be unique globally. If you do not specify this option, the command displays configuration and online user information for all user profiles.
slot slot-number: Specifies a card by its slot number. If you do not specify this option, the command displays user profile configuration and online user information on all cards.
Examples
# Display configuration and online user information for user profile aaa.
<Sysname> display user-profile name aaa
User-Profile: aaa
Direction: Inbound
Committed Access Rate:
CIR 32 (kbps), CBS 2048 (Bytes), EBS 0 (Bytes), PIR 888 (kbps)
Policy: p1
Packet-filter ipv6 2222
Direction: Outbound
Committed Access Rate:
CIR 32 (kbps), CBS 2048 (Bytes), EBS 0 (Bytes), PIR 888 (kbps)
Policy: p2
Packet-filter 2222
Connection-limit amount: 1000
Connection-limit rate: 100
Authentication-free rule:
acl 3000
acl name flow1
acl ipv6 3000
acl ipv6 name flow2
User user_1:
Authentication type: 802.1X
Network attributes:
Interface : GigabitEthernet0/0/1
MAC address : 0000-1111-2222
Failed action list:
Direction: Inbound
Committed Access Rate:
CIR 32 (kbps), CBS 2048 (Bytes), EBS 0 (Bytes), PIR 888 (kbps)
Policy: p1
Connection-limit rate: 100
User user_2:
Authentication type: Portal
Network attributes:
Interface : GigabitEthernet0/0/3
IP address : 172.16.187.16
VPN : N/A
Service VLAN : 100
# Display configuration and online user information for all session group profiles.
<Sysname> display user-profile session-group
Session-Group-Profile: aaa
Direction: Outbound
Committed Access Rate:
CIR 32 (kbps), CBS 2048 (Bytes), EBS 0 (Bytes), PIR 888 (kbps)
QMProfile: a
User user_1:
Authentication type: 802.1X
Network attributes:
Interface : GigabitEthernet0/0/1
MAC address : 0000-1111-2222
Failed action list:
Direction Outbound
Committed Access Rate:
CIR 32 (kbps), CBS 2048 (Bytes), EBS 0 (Bytes), PIR 888 (kbps)
QMProfile: a
User user_2:
Authentication type: Portal
Network attributes:
Interface : GigabitEthernet0/0/3
IP address : 172.16.187.16
VPN : N/A
Service VLAN : 100
Session-Group-Profile: bbb
Direction: Outbound
Committed Access Rate:
CIR 512 (kbps), CBS 1024 (Bytes), EBS 0 (Bytes), PIR 888 (kbps)
QMProfile: a
User user_4:
Authentication type: Portal
Network attributes:
Interface : GigabitEthernet0/0/2
IP address : 172.16.187.166
VPN : N/A
Service VLAN : 100
Field |
Description |
User-Profile |
User profile name. |
Inbound |
Policy applied to incoming traffic. |
Outbound |
Policy applied to outgoing traffic. |
Session-Group-Profile |
Session group profile name. |
CIR |
Committed information rate, in kbps. |
CBS |
Committed burst size, in bytes. |
EBS |
Excess burst size, in bytes. |
PIR |
Peak information rate, in kbps. |
Connection-limit amount |
Maximum number of user connections set by the connection limits. |
Connection-limit rate |
Maximum connection establishment rate set by the connection limits. |
Authentication-free rule |
User profile free rule. |
Policy |
Policy name. |
Packet-filter |
Packet filter that uses an IPv4 ACL. |
Packet-filter ipv6 |
Packet filter that uses an IPv6 ACL. |
QMProfile |
Queue scheduling profile. |
User user_1 |
Username of a user account with which a user profile or session group profile is associated. |
Authentication type |
· 802.1X—802.1X authentication. · Portal—Portal authentication. · PPP—PPP authentication. · MACA—MAC authentication. · WLAS. |
Network attributes |
Online user information. |
Failed action list |
Actions that failed to be applied to the user. |
qos session-group identify
Use qos session-group identify to identify a session group on an interface.
Use undo qos session-group identify to restore the default.
Syntax
qos session-group identify { customer-vlan | service-vlan | customer-service-vlan | subscriber-id }
undo qos session-group identify
Default
No session group is identified on the interface.
Views
Interface view
Predefined user roles
network-admin
Parameters
customer-vlan: Identifies a session group by CVLAN. A CVLAN is used by a customer on the private network.
service-vlan: Identifies a session group by SVLAN. An SVLAN is used by a service provider to transmit VLAN tagged traffic for customers.
customer-service-vlan: Identifies a session group by CVLAN and SVLAN.
subscriber-id: Identifies a session group by subscriber ID.
Usage guidelines
To configure a session group profile, you must first use the command.
Examples
# Configure GigabitEthernet 0/0/1 to identify a session group by an SVLAN.
<Sysname> system-view
[Sysname] interface gigabitethernet 0/0/1
[Sysname-GigabitEthernet0/0/1] qos session-group identify service-vlan
user-profile
Use user-profile to create a user profile and enter its view, or enter the view of an existing user profile.
Use undo user-profile to delete a user profile.
Syntax
user-profile profile-name [ type session-group ]
undo user-profile profile-name
Default
No user profiles exist.
Views
System view
Predefined user roles
network-admin
Parameters
profile-name: Specifies a user profile by its name, a case-sensitive string of 1 to 31 characters. Valid characters include English letters, digits, underscores (_), minus signs (–), and dots (.). The name can start with an English letter or digit, and cannot contain only digits. The name must be unique globally.
type session-group: Specifies a session group profile.
Examples
# Create user profile a123 and enter the view of a123.
<Sysname> system-view
[Sysname] user-profile a123
# Create session group profile a123 and enter the view of a123.
<Sysname> system-view
[Sysname] user-profile a123 type session-group
[Sysname-session-group-profile-a123]