H3C S5500 core switch policy routes scheduling traffic to different routing devices

Scene Description: a Huawei AR series router (R1), a H3C MSR series router,

A H3C S5500 core switch.

AR router access WAN1 and WAN2 two lines, H3C router access WAN3 line wireless network dedicated.

Intranet use 172.16.X.X/24; WiFi usage 172.16.100.0/23

The approximate topology is as follows:

650) this.width=650; "title=" Temp.png "alt=" wkiol1r8qaltlz3saadtn_wu9g8848.jpg "src=" http://s3.51cto.com/wyfs02/ M02/54/37/wkiol1r8qaltlz3saadtn_wu9g8848.jpg "/>

Requirements:

1. After the WiFi traffic to the core, the policy route is dispatched to the Router2 exit, and the WiFi can be connected with the internal wired network.

2. WiFi download single IP speed limit 3Mbps

3. WiFi Dedicated line outlet congestion, in the core dispatching traffic to Router2 WAN2 exit

Specific Implementation :

1. Core Policy Routing:

#acl部分 ACL number, Rule 0 permit IP source 172.16.100.0 0.0.1.255 destination 172.16.0.0 0.0.255.255 ACL number 3001  Rule 0 Permit IP source 172.16.100.0 0.0.1.255 #Traffic分流 traffic classifier wifi01 operator and If-match ACL 3000traffic Classifier wifi02 operator and if-match ACL 3001traffic behavior wifi01 filter permittraffic behavior wifi02 redirect NEX  T-hop 172.16.253.2 fail-action forward# define QoS policies QoS policy WiFi classifier wifi01 behavior wifi01 classifier wifi02 behavior wifi02# Apply QoS policy QoS vlan-policy WiFi VLAN Inbound

2. WiFi Speed limit

Login Router2:

QoS Carl 1 destination-ip-address subnet 172.16.100.0 per-address#wan3 Access interface gigabitethernet0/0 QoS car Inbound Carl 1 Cir-CBS 25000 EBS 0 Green pass Red

3. Master Route Traffic Scheduling

#核心修改策略路由acl  number 3000rule 0 permit ip source 172.16.100.0 0.0.1.255  destination 172.16.0.0 0.0.255.255  #acl中将Wifi网段适当调小, control acl number 3002  by mask description wifi-temp01 rule 0 permit ip source 172.16.100.0 0.0.0.255   traffic classifier wifi01 operator and if-match acl 3000traffic  classifier wifi-temp operator and if-match acl 3002  traffic  behavior wifi01 filter permittraffic behavior wifi-temp redirect  next-hop 172.16.253.2 fail-action forward  #新的Qos策略qos  policy wifi-temp  classifier wifi01 behavior wifi01 classifier wifi-temp behavior wifi-temp# Apply the new QoS policy qos vlan-policy wifi-temp vlan 100 inbound# modify the core policy route, The WiFi traffic specified in the ACL can be specified to Router1,  but Router1 defaultThe egress route is WAN1, and we need to direct traffic to the egress wan2#acl definition acl number 2055   rule 0 permit  source 172.16.100.0 0.0.1.255# defining flow classes and behavior traffic classifier 1 operator or  if-match acl 2055traffic behavior 1 redirect ip-nexthop x.x.x.x (WAN2 exit Next hop Address ) #定义流策略traffic  policy 1 classifier 1 behavior 1# Application Flow Policy # Enter the router intranet port interface  Gigabitethernet 0/0/2traffic-policy 1 inbound

This allows for arbitrary traffic scheduling based on the congestion of each outlet.

This article is from the "Stenning Technology blog" blog, make sure to keep this source http://magic3.blog.51cto.com/1146917/1585182

H3C S5500 core switch policy routes scheduling traffic to different routing devices