Manualshelf

CLI Reference Guide-R04

ManualsBrandsEdgecore Networks ManualsFixed Broadband AccessENHANCED TEMPERATURE L2+ GIGABIT ETHERNET ACCESS / AGGREGATION SWITCH WITH 4 X 10G UPLINKS
371372373374375376377378379380
Table Of Contents
Chapter 9
| General Security Measures
Port-based Traffic Segmentation
– 379 –
A downlink port can only communicate with an uplink port in the same session.
Therefore, if an uplink port is not configured for a session, the assigned
downlink ports will not be able to communicate with any other ports.
If a downlink port is not configured for the session, the assigned uplink ports
will operate as normal ports.
Example
This example enables traffic segmentation, and then sets port 10 as the uplink and
ports 5-8 as downlinks.
Console(config)#traffic-segmentation
Console(config)#traffic-segmentation uplink ethernet 1/10
downlink ethernet 1/5-8
Console(config)#
traffic-segmentation
uplink-to-uplink
This command specifies whether or not traffic can be forwarded between uplink
ports assigned to different client sessions. Use the no form to restore the default.
Syntax
traffic-segmentation uplink-to-uplink {blocking | forwarding}
no traffic-segmentation uplink-to-uplink
blocking – Blocks traffic between uplink ports assigned to different
sessions.
forwarding – Forwards traffic between uplink ports assigned to different
sessions.
Default Setting
Blocking
Command Mode
Global Configuration
Example
This example enables forwarding of traffic between uplink ports assigned to
different client sessions.
Console(config)#traffic-segmentation uplink-to-uplink forwarding
Console(config)#