Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

TechLibrary
Navigation
Table of Contents
Guide That Contains This Content
[+] Expand All
[-] Collapse All

    Configuring JunosE Parent-Group References (SRC CLI)

    For JunosE policies, you can apply filter conditions to the input (ingress) and output (egress) side of the router interface. Typically, you use filter conditions with hierarchical rate-limit actions.

    Use the following configuration statements to configure match conditions for a JunosE filter:

    policies group name list name rule name traffic-condition name traffic-match-condition { parent-group parent-groupexternal-parent-group-reference external-parent-group-reference source-class source-class; destination-class destination-class; traffic-class traffic-class; color color; user-packet-class user-packet-class; destination-local-interface destination-local-interface; }
    policies group name list name rule name traffic-condition name traffic-match-condition external-parent-group-reference {external-parent-group-name external-parent-group-name;hierarchical-policy-parameter hierarchical-policy-parameter;}
    policies group name list name rule name traffic-condition name traffic-match-condition external-parent-group-reference hierarchical-policy-parameter {numeric-aggregation-node numeric-aggregation-node;level-aggregation-node level-aggregation-node;level-aggregation-node-id level-aggregation-node-id;}

    To add JunosE filter conditions to a classify-traffic condition:

    1. From configuration mode, create a classify-traffic condition. For example, to create a traffic-condition called tcpg within policy rule pr:
      [edit]user@host# edit policies group junose list ipv4 rule pr traffic--condition tcpg traffic-match-condition
    2. (Optional) Configure the condition to match one match condition.
      [edit policies group junose list ipv4 rule pr traffic-condition tcpg traffic-match-condition]user@host# set parent-group parent-group
    3. (Optional) Configure the condition to match one or more parent groups in a hierarchical rate-limit action.
      [edit policies group junose list ipv4 rule pr traffic-condition tcpg traffic-match-condition]user@host# set parent-group parent-group
    4. (Optional) Configure the condition to match an external parent group. For example, to add a reference called epg1-ref:
      [edit policies group junose list ipv4 rule pr traffic-condition tcpg traffic-match-condition]user@host# set external-parent-group-reference epg1-ref
      • Specify the name of the external parent group you want to reference. For example, to reference the external parent group epg1:
        [edit policies group junose list ipv4 rule pr traffic-condition tcpg traffic-match-condition external-parent-group-reference epg1-ref]user@host# set external-parent-group-name epg1
      • Specify the name of the hierarchical policy parameter you want to reference. For example, to reference the hierarchical policy parameter hpp1:
        [edit policies group junose list ipv4 rule pr traffic-condition tcpg traffic-match-condition external-parent-group-reference epg1-ref]user@host# set hierarchical-policy-parameter hpp1
      • Specify the attributes of the hierarchical policy parameter you are referencing.
        [edit policies group junose list ipv4 rule pr traffic-condition tcpg traffic-match-condition external-parent-group-reference epg1-ref hierarchical-policy-parameter hpp1]user@host# set numeric-aggregation-node numeric-aggregation-node user@host# set level-aggregation-node level-aggregation-node user@host# set level-aggregation-node-id level-aggregation-node-id

        For information about configuring the attributes of the hierarchical policy parameter, see Configuring Hierarchical Policy Parameters for External Parent Groups (SRC CLI).

    5. (Optional) Configure the condition to match packets based on the source route class.
      [edit policies group junose list ipv4 rule pr traffic-condition tcpg traffic-match-condition]user@host# set source-class source-class
    6. (Optional) Configure the condition to match packets based on the destination route class.
      [edit policies group junose list ipv4 rule pr traffic-condition tcpg traffic-match-condition]user@host# set destination-class destination-class
    7. (Optional) Configure the condition to match packets based on the traffic class.
      [edit policies group junose list ipv4 rule pr traffic-condition tcpg traffic-match-condition]user@host# set traffic-class traffic-class
    8. (Optional) Configure the condition to match packets based on the packet color.
      [edit policies group junose list ipv4 rule pr traffic-condition tcpg traffic-match-condition]user@host# set color color
    9. (Optional) Configure the condition to match packets based on the user packet class action number.
      [edit policies group junose list ipv4 rule pr traffic-condition tcpg traffic-match-condition]user@host# set user-packet-class user-packet-class
    10. (Optional) Configure the condition to match packets based on packets destined for a local interface.
      [edit policies group junose list ipv4 rule pr traffic-condition tcpg traffic-match-condition]user@host# set destination-local-interface destination-local-interface
    11. (Optional) Verify the secondary input policy configuration. 
      [edit policies group junose list ipv4 rule pr traffic-condition tcpg traffic-match-condition]
user@host# show 
     
    Related Documentation
     
    Published: 2014-06-06
    
						
    


    


    



    



    
    
    
        
        
    
    

    

    


    

    

    
    
    
        Previous Page
        Next Page