Specifications

ManualsBrandsHP ManualsComputer equipment3350 - Cisco NAC Appliance

281

282

283

284

285

286

287

288

289

290

8-13

Cisco NAC Appliance - Clean Access Manager Configuration Guide

OL-28003-01

Chapter 8 User Management: Traffic Control, Bandwidth, Schedule

Control Bandwidth Usage

2. Select either Allow or Block from the Action dropdown menu.

3. Specify the type of Layer 2 Ethernet traffic to either allow or block in the Protocol dropdown menu.

Note Except for allowing all Layer 2 traffic, only the “IBM Systems Network Architecture (SNA)”

protocol is available in Cisco NAC Appliance. Additional preset options may become available

with future releases through the Cisco NAC Appliance update service on the Clean Access

Manager.

4. Click Enable.

5. Click Add.

After you “Add” a traffic control policy, the CAM automatically populates the Description column for

the entry with the description of the option you specified in the Protocol dropdown menu.

Control Bandwidth Usage

Cisco NAC Appliance lets you control how much network bandwidth is available to users by role. You

can independently configure bandwidth management using global forms in the CAM as needed for

system user roles, or only on certain Clean Access Servers using local forms. However, the option must

first be enabled on the CAS for this feature to work. You can also specify bandwidth constraints for each

user within a role or for the entire role.

For example, for a CAM managing two CASs, you can specify all the roles and configure bandwidth

management on some of the roles as needed (e.g. guest role, quarantine role, Temporary role, etc.). If

bandwidth is only important in the network segment where CAS1 is deployed and not on the network

segment where CAS2 is deployed, you can then turn on bandwidth management on CAS1 but not CAS2.

With bursting, you can allow for brief deviations from a bandwidth constraint. This accommodates users

who need bandwidth resources intermittently (for example, when downloading and reading pages),

while users attempting to stream content or transfer large files are subject to the bandwidth constraint.

By default, roles have a bandwidth policy that is unlimited (specified as -1 for both upstream and

downstream traffic).

To configure bandwidth settings for a role:

1. First, enable bandwidth management on the CAS by going to Device Management > CCA Servers

> Manage [CAS_IP] > Filter > Roles > Bandwidth.

2. Select Enable Bandwidth Management and click Update.

Note See the Cisco NAC Appliance - Clean Access Server Configuration Guide, Release 4.9(x) for

details on local bandwidth management.

3. From User Management > User Roles > Bandwidth, click the Edit icon next to the role for which

you want to set bandwidth limitations. The Bandwidth form appears as follows: