Specifications

ManualsBrandsEnterasys ManualsComputer equipmentRoamAbout RBT-8100

321

322

323

324

325

326

327

328

329

330

Enabling Prioritization for Legacy Voice over IP

RoamAbout Mobility System Software Configuration Guide 15-27

Configuring a VLAN and AAA for Voice Clients

MSSrequiresallclientstobeauthenticatedbyRADIUSorthelocaldatabase,andtobeauthorized

foraspecificVLAN.MSSplacestheuserintheauthorizedVLAN.

– ConfigureaVLANforvoiceclients. 

–DisableIGMPsnoopingintheVLAN.(DisablingthisfeatureisrequiredforSVP.)

– Configurealast

‐resort‐ssiduser,andsettheuser’sVLANattributetothenameofthe 

VLANyoucreateforthevoiceclients.

– Configureanauthenticationandauthorizationrulethatmatchesonthelast‐resort

usernameandonthevoiceSSID.

Example

ToconfigureaVLANandalast‐resortuserforthevoiceSSID:

RBT-8100# set vlan 2 name v1 port 3

RBT-8100# set igmp disable vlan v1

RBT-8100# set authentication last-resort ssid phones local

RBT-8100# set user last-resort-phones attr vlan-name v1

ThesetvlanandsetigmpcommandscreateVLANv1andaddtheuplinkporttoit,thendisable

IGMPsnoopingintheVLAN.

Thesetauthenticationcommandinthisexampleusesthelocaldatabasetoauthenticateallusers

whoassociate withtheSSIDphones.Thesetusercommandconfigures

theuserlast‐resort‐phonesin

thelocaldatabaseandassignstheusertoVLANv1.WhenauserassociateswiththeSSID,MSS

appendstheSSIDnametothelast‐resortusername,andsearchesforthelast‐resort‐ssidname.

Configuring an ACL to Prioritize Voice Traffic

MSSdoesnotprovidepriorityforwardingforSVPtrafficbydefault.Toenableprioritizationfor

SVPtraffic,youmustconfigureanACLandmapittotheoutbounddirectionoftheVLANto

whichthevoiceclientsareassigned.TheACLmustcontainanACEthatmatchesonIPprotocol

119

andmarkstheIPToSbitsinmatchingpacketswithCoSvalue7.WhenanAPreceivesapacket

withCoSvalue7,theAPplacesthepacketinthevoicequeueforpriorityforwarding.

IftheVLANwillbesharedbyotherclients,youalsoneedtoaddan

ACEthatpermitsthetraffic

thatisnotusingIPprotocol119.Otherwise,theRoamAboutSwitchdropsthistraffic.EveryACL

hasanimplicitACEattheendthatdeniesalltrafficthatdoesnotmatchanyoftheotherACEsin

theACL.

AfteryouconfiguretheACEandmap

ittotheVLAN,youmustcommittheVLANtothe

configuration.TheACLdoesnottakeeffectuntilyoumapitandcommitit.

Notes: You can use the same VLAN for other clients. However, it is a best practice to use the VLAN

primarily, if not exclusively, for voice traffic.