AAA Definition
1. Authentication Who are you? 2. Authorization What can you do? 3. Accounting What did you do and how long did you do it?
Modes Character mode (line mode or interactive login) Packet mode (interface mode or link protocol session)
AAA Command Element login, exec, connection, enable, command ppp, network
AAA Protocols
Router(config)# tacacs-server host <ip of server> [single-connection] Router(config)# tacacs-server key <key>
hyderabad(config)#aaa authentication login default tacacs+ local hyderabad(config)#aaa authentication ppp default tacacs+ hyderabad(config-if)#ppp authentication chap
Queuing Overview
Queuing Overview
Priority Queuing
Priority Queuing
Provides absolute control over throughput Utilizes four queues with fixed lengths
High, medium, normal, and low FIFO is used within the queues
Priority Queuing
High (20) Full use of bandwidth until queue is empty Will not be used as a solution in high congestion areas Medium (40) After high queue is empty, medium is flushed in a similar fashion
Priority Queuing
Normal (60)
Emptied after a second check of the high queue
Low (80)
Emptied after a third check of the high queue, followed by medium and normal
Priority Configuration
Priority Configuration
May assign individual protocols to certain queues Use standard or extended lists to define traffic types for each queue
Use the priority-list command Read in order, similar to access lists
Priority Configuration
Steps Define specific access lists (if needed) Create the priority list Apply the list to the interface Verify the queuing process (show queueing priority)
CBWFQ provides for up to 64 classes; CBWFQ allows for coarser granularity. Multiple IP flows can belong to a single class.
Configuring CBWFQStep 1
Configuring CBWFQStep 3