Policy configuration cli commands – Avaya C360 User Manual

Policy Configuration

Issue 1 July 2006

181

●

The packet protocol

●

Matching the packet's source or destination IP address to the configured priority policy.

●

Whether the packet source or destination TCP/UDP port number falls within a pre-defined
range.

In addition, the 802.1p priority of a packet can be modified according to the DSCP value in the
IP header based on the DSCP-802.1p mapping configured by the user.

The C360 supports Access Control policy. Access Control rules define how the C360 should
handle routed packets. There are three possible ways to handle such packets:

●

Forward the packet (Permit operation)

●

Discard the packet (Deny operation)

●

Discard the packet and notify the management station (Deny and Notify)

The C360 can enforce Access Control policy on each routed packet, according to the following
criteria:

●

Matching the packet's source or destination IP address to the configured Access Control
policy.

●

Determine if the packet protocol and source or destination TCP/UDP port number falls
within a pre-defined range.

●

Using the ACK bit of the TCP header.

The C360 uses policy lists containing both Access Control rules and QoS rules. The policy lists
are ordered by rule indexing.

Tip:

Tip:

Use the Command Line Interface and the Avaya central policy management
application under Avaya Integrated Management to set up the C360 access
control rules

Policy Configuration CLI Commands

In order to...

Use the following command...

Set the default action for a given
Policy List.

ip access-default-action

Create an access-list rule in a
specific Access List.

ip access-list

1 of 3