Manualsbrain.com
  1. 매뉴얼
  2. 브랜드
  3. Cisco
  4. Cisco IPS 4360 Sensor
  5. 백서

Cisco Cisco IPS 4360 Sensor 백서

다운로드
페이지 79
23
Firewall
August 2012 Series
23
For this procedure, if you are using a Single ISP design, you will skip the 
Dual ISP section. If you are using a Dual ISP design, you will complete both 
sets of steps.
Single ISP design
The outside switch in this deployment is a pair of 2960S switches in a 
stacked configuration. The configuration below is complete for the features 
required for the outside switch. This configuration is taken from the Cisco 
SBA—Borderless Networks LAN Deployment Guide
Step 1:  
Set the stack master switch.
switch 
[switch number]
 priority 15
Step 2:  
Run the 
stack-mac persistent timer 0
 command to ensure that the 
original master MAC address remains the stack MAC address after a failure. 
stack-mac persistent timer 0
Step 3:  
To make consistent deployment of QoS easier, we define a macro 
that you will use in later steps to apply the specific QoS configuration. 
Because AutoQoS might not be configured on this device, run the following 
commands to manually configure the global QoS settings:
mls qos map policed-dscp  0 10 18 to 8
mls qos map cos-dscp 0 8 16 24 32 46 48 56
mls qos srr-queue input bandwidth 70 30
mls qos srr-queue input threshold 1 80 90
mls qos srr-queue input priority-queue 2 bandwidth 30
mls qos srr-queue input cos-map queue 1 threshold 2 3
mls qos srr-queue input cos-map queue 1 threshold 3 6 7
mls qos srr-queue input cos-map queue 2 threshold 1 4
mls qos srr-queue input dscp-map queue 1 threshold 2 24
mls qos srr-queue input dscp-map queue 1 threshold 3 48 49 50 
51 52 53 54 55
mls qos srr-queue input dscp-map queue 1 threshold 3 56 57 58 
59 60 61 62 63
mls qos srr-queue input dscp-map queue 2 threshold 3 32 33 40 
41 42 43 44 45
mls qos srr-queue input dscp-map queue 2 threshold 3 46 47
mls qos srr-queue output cos-map queue 1 threshold 3 4 5
mls qos srr-queue output cos-map queue 2 threshold 1 2
mls qos srr-queue output cos-map queue 2 threshold 2 3
mls qos srr-queue output cos-map queue 2 threshold 3 6 7
mls qos srr-queue output cos-map queue 3 threshold 3 0
mls qos srr-queue output cos-map queue 4 threshold 3 1
mls qos srr-queue output dscp-map queue 1 threshold 3 32 33 40 
41 42 43 44 45
mls qos srr-queue output dscp-map queue 1 threshold 3 46 47
mls qos srr-queue output dscp-map queue 2 threshold 1 16 17 18 
19 20 21 22 23
mls qos srr-queue output dscp-map queue 2 threshold 1 26 27 28 
29 30 31 34 35
mls qos srr-queue output dscp-map queue 2 threshold 1 36 37 38 
39
mls qos srr-queue output dscp-map queue 2 threshold 2 24
mls qos srr-queue output dscp-map queue 2 threshold 3 48 49 50 
51 52 53 54 55
mls qos srr-queue output dscp-map queue 2 threshold 3 56 57 58 
59 60 61 62 63
mls qos srr-queue output dscp-map queue 3 threshold 3 0 1 2 3 
4 5 6 7
mls qos srr-queue output dscp-map queue 4 threshold 1 8 9 11 
13 15
mls qos srr-queue output dscp-map queue 4 threshold 2 10 12 14
mls qos queue-set output 1 threshold 1 100 100 50 200
mls qos queue-set output 1 threshold 2 125 125 100 400
mls qos queue-set output 1 threshold 3 100 100 100 3200
mls qos queue-set output 1 threshold 4 60 150 50 200
mls qos queue-set output 1 buffers 15 25 40 20
mls qos
!
macro name EgressQoS
 mls qos trust dscp
 queue-set 1
 srr-queue bandwidth share 1 30 35 5
 priority-queue out
@
!