Contents

Configuring user profiles· 1

About user profiles· 1

Prerequisites for user profile· 1

Configuring a user profile· 1

Configuring QoS· 1

Display and maintenance commands for user profiles· 2

Configuring user profiles

About user profiles

A user profile defines a set of parameters, such as a QoS policy, for a user or a class of users. A user profile can be reused when a user connected to the network on a different interface.

You can apply a user profile in one of the following methods:

·     Control profile for traffic of an online user—After a user passes authentication, the authentication server will apply the name of the user profile bound to the user account to a device. Then, the device will rate-limit traffic of the online user according to the configuration in the user profile. In this case, the user profile is a traffic control profile for an online user.

·     Control profile for all traffic on an interface—The network administrator can directly apply a user profile to an interface at the CLI, and the user profile processes all traffic on the interface r according to the configuration in the user profile. In this case, the user profile is a control profile for all traffic on an interface.

The user profile application allows flexible traffic policing on a per-user basis. Each time a user passes authentication, the server sends the device the name of the user profile specified for the user. The device applies the parameters in the user profile to the user.

User profiles are typically used for resource allocation per user. For example, the interface-based traffic policing limits the total amount of bandwidth available to a group of users. However, user-profile-based traffic policing can limit the amount of bandwidth available to a single user.

Prerequisites for user profile

As a control profile for traffic of online users, a user profile works with authentication methods. You must configure authentication for a user profile. For information about supported authentication methods, see the configuration guides for the related authentication modules.

As a control profile for all traffic on an interface, a user profile is not related to online user authentication, and does not need to be work with authentication methods.

Configuring a user profile

Configuring QoS

About this task

After the user passes identity authentication, the authentication server will deliver the user profile name bound to the user account to the device. You can manage the traffic of online users by configuring QoS policies, traffic policing, rate limiting, priority queuing (PQ), and traffic shaping in user profile view. QoS policies in the user profile view take effect only after the user successfully comes online. After the user goes offline, the device automatically cancels the configuration, no manual adjustment is required.

Restrictions and guidelines

A QoS policy can be applied to multiple user profiles. Only one QoS policy can be applied to a direction. To change the QoS policy applied to a direction, you must first remove the existing QoS policy and reapply a new QoS policy.

A CBQ action can be applied to only the inbound direction of a user profile.

For information about QoS policies, traffic policing, rate limiting, priority queuing, and GTS, see QoS configuration in ACL and QoS Configuration Guide.

Procedure

1.     Enter system view.

system-view

2.     Create a user profile and enter user profile view.

user-profile profile-name

3.     Configure the user profile. Choose the options to configure as needed:

¡     Apply an existing QoS policy to the user profile.

qos apply policy policy-name { inbound | outbound }

By default, no QoS policy is applied to a user profile.

¡     Configure a CAR policy for the user profile.

qos car { inbound | outbound } any cir committed-information-rate [ cbs committed-burst-size [ ebs excess-burst-size ] ]

qos car { inbound | outbound } any cir committed-information-rate [ cbs committed-burst-size ] pir peak-information-rate [ ebs excess-burst-size ]

By default, no CAR policy is configured for a user profile.

¡     Configure GTS for the user profile.

qos gts cir committed-information-rate [ cbs committed-burst-size [ ebs excess-burst-size ] ]

qos gts cir committed-information-rate [ cbs committed-burst-size ] pir peak-information-rate [ ebs excess-burst-size ]

By default, GTS is not configured for a user profile.

Support for this command depends on the device model. For more information, see QoS commands in ACL and QoS Command Reference.

¡     Configure rate limiting.

qos lr outbound { cir commited-information-rate [ cbs commited-burst-size [ ebs excess-burst-size ] ] | peer-advertise-bandwidth }

By default, rate limiting is not configured for a user profile.

Support for this command depends on the device model. For more information, see QoS commands in ACL and QoS Command Reference.

¡     Configure priority queuing.

qos pq pql pql-index

By default, priority queuing is not configured for a user profile.

For information about QoS policies, CAR policies, GTS, rate limiting, and priority queuing, see ACL and QoS Configuration Guide.

Display and maintenance commands for user profiles

Execute display commands in any view.