No relevant resource is found in the selected language.
MENU
Support Documentation
AR500, AR510, AR531, AR550, AR1500, and AR2500 V200R010 CLI-based Configuration Guide - QoS

This document describes the configurations of QoS functions, including MQC, priority mapping, traffic policing, traffic shaping, SAC, packet filtering, redirection, traffic statistics, ACL-based simplified traffic policy, and HQoS.

Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
Example for Preventing Instant Messaging Software

Example for Preventing Instant Messaging Software

Networking Requirements

As shown in Figure 11-4, a school lab connects to the Internet through the Router as the gateway. Students are not allowed to use instant messaging software such as QQ and MSN in the lab.

Figure 11-4  Networking for preventing instant messaging software

Configuration Roadmap

The configuration roadmap is as follows:

  1. Enable deep security defense and load a signature file.

  2. Configure a traffic classifier and define a matching rule based on the Instant_Messaging protocol group. The Instant_Messaging protocol group defines commonly usedInstant_Messaging software.

  3. Configure a traffic behavior to denyInstant_Messaging packets.

  4. Configure a traffic policy and bind the traffic classifier and traffic behavior to the traffic policy.

  5. Apply the traffic policy to the inbound direction of the WAN interface and enable the SA statistics function on the interface for the SAC configurations to take effect.

Procedure

  1. Enable deep security defense and load a signature file. 

    <Huawei> system-view
[Huawei] sysname Router
[Router] engine enable

  2. Configure a traffic classifier and define a matching rule based on the Instant_Messaging protocol group. 

    [Router] traffic classifier im
[Router-classifier-im] if-match category Instant_Messaging
[Router-classifier-im] quit

  3. Configure a traffic behavior to filter Instant_Messaging packets. 

    [Router] traffic behavior im
[Router-behavior-im] deny
[Router-behavior-im] quit

  4. Configure a traffic policy and bind the traffic classifier and traffic behavior to the traffic policy. 

    [Router] traffic policy im
[Router-trafficpolicy-im] classifier im behavior im
[Router-trafficpolicy-im] quit

  5. Apply the traffic policy to the inbound direction of WAN-side Layer 3 interface GE2/0/0 and enable the SA statistics function on the interface for the SAC configurations to take effect. 

    [Router] interface gigabitethernet 2/0/0
[Router-GigabitEthernet2/0/0] traffic-policy im inbound
[Router-GigabitEthernet2/0/0] sa application-statistic enable
[Router-GigabitEthernet2/0/0] quit

  6. Run the display current-configuration command to check the configuration.

Configuration Files

  • Configuration file of the Router

    #
 sysname Router
#
 engine enable
#
traffic classifier im operator or
 if-match category Instant_Messaging
#
traffic behavior im
 deny
#
traffic policy im
 classifier im behavior im
#
interface GigabitEthernet2/0/0
 traffic-policy im inbound
 sa application-statistic enable
#
return
Translation
简体中文
Download
Updated: 2020-08-06

Document ID: EDOC1100034222

Views: 57883

Downloads: 54

Average rating:
This Document Applies to these Products

Related Version

Related Documents

Share
Previous Next
Enterprise APP

Copyright © 2021 Huawei Technologies Co., Ltd. All rights reserved.

You are going to visit :