SupportDocumentationRoutersAccess RoutersAR600&6100&6200&6300Configuration & CommissioningConfiguration Guide

NetEngine AR V300R019 CLI-based Configuration Guide - Interface Management

Configuring a Virtual Interface

Configuring a Virtual Interface

Context

Different value-added services, such as traffic acceleration, application identification, and firewall filtering, need to be implemented for service application traffic with different sources on the live network. The X86 kernel-based uCPE provides traffic acceleration, application identification, and firewall filtering capabilities by deploying VMs inside devices to implement VNF, which can reduce device maintenance costs.

Configure MQC in the inbound direction of a physical inbound interface and a virtual interface and configure a traffic behavior that defines the action of adding a VLAN tag. After packets successfully match the forwarding entries, a VLAN tag is added to the packets to implement Layer 2 packet forwarding. Or configure a traffic classifier to filter packets based on the 5-tuple (source address, destination address, protocol type, source port, destination port). Configure the data transparent transmission function on a specified virtual interface. In this case, data packets received by the current interface are directly forwarded from the transparent transmission interface, implementing Layer 2 service chain orchestration.

Only the AR651-X8, AR651W-X4, and AR1610-X6 support this function.

Procedure

  1. Run system-view

    The system view is displayed.

  2. Configure a traffic behavior or traffic classifier.

    • Configure a traffic behavior

      1. Run traffic behavior behavior-name

        A traffic behavior is created and the traffic behavior view is displayed, or the existing traffic behavior view is displayed.

      2. Run add-tag vlan-id vlan-id

        A VLAN tag is added to the packet.

    • Configure a traffic classifier

      1. Run traffic classifier classifier-name [ operator { and | or } ]

        A traffic classifier is created and the traffic classifier view is displayed.

      2. Run if-match acl { acl-number | acl-name }

        A matching rule based on an Access Control List (ACL) in a traffic classifier is created.

        By default, a matching rule based on an ACL is not configured in a traffic classifier.

        Packet filtering rules based on the 5-tuple (source address, destination address, protocol type, source port, destination port) is supported.

  3. Run quit

    Exit from the traffic behavior or traffic classifier view.

  4. Run interface interface-type interface-number

    The virtual interface view is displayed.

    In the display interface brief command output, an interface with its number marked with (v) is a virtual interface.

  5. Run passthrough to interface interface-type interface-number

    The data transparent transmission function is configured on the virtual interface.

    By default, the data transparent transmission function is not configured on a virtual interface.

  6. Run service-chain enable

    The Layer 2 service chain function is enabled, so that packets received by the current interface enter the service chain-related forwarding process.

    By default, the Layer 2 service chain function is disabled.

Translation
Favorite
Download
Update Date:2023-05-18
Document ID:EDOC1100112349
Views:483399
Downloads:1142
Average rating:0.0Points

Related Documents

Digital Signature File

digtal sigature tool