How to Create or Modify a Rule


Traffic Classification rules enable you to assign a class of service and/or access control (VLAN membership) to network traffic, depending on the traffic's classification type. Classification types are based on layers 2, 3, and 4 of the OSI model, and traffic is classified according to specific layer 2/3/4 information contained in each frame. For more information, see Traffic Classification Rules.

A rule has two main parts: Traffic Description and Actions. The Traffic Description identifies the type of traffic to which the rule pertains. Actions specify whether that traffic is assigned class of service, access control, or both.

In order to create a rule, you must first create a service with which to associate it.

Instructions on:

Creating a Rule

When you create a rule using the Rule tab, you first create and name the rule using the Create Rule menu option, then define its characteristics in the right panel. You can also use the right panel to modify an exiting rule's characteristics.

  1. In the Policy tab left panel, select the Roles/Services > Service Repository tab.
  2. Expand either the Local or Global Services folder, depending on whether the rule is going to be used locally or by all users.
  3. Expand either the Service Groups or Services folder and select the service for which you want to create a rule.
  4. Right-click the service and select Create Rule.
  5. In the Create Rule window, enter a name for the rule and select the rule type. Select OK. The rule is created in the left-panel tree.
  6. Select the rule to and use the associated right-panel Rule tab to define the rule. Refer to the Rule tab Help topic for information on configuring the rule.
  7. Enforce to write the new information to the devices.
Disabling/Enabling a Rule

In the Policy tab, you can disable and enable individual or multiple rules. You can also disable and enable all the rules associated with a service, or all the rules for all the services in a service group. The rule icon in the left panel displays a red X if the rule is disabled.

Disabling a rule is an alternative to deleting and recreating it. If you disable a rule, it is temporarily unavailable for use by the service with which it is associated. However, the rule can be copied to another service and enabled for that service.

Disabling/Enabling an Individual Rule
You can enable or disable a rule on the Rule tab or by right-clicking on the rule in the Service Repository tab and selecting Disable Rule(s) or Enable Rule(s).

  1. In the Policy tab left panel, select the Roles/Services > Service Repository tab.
  2. Expand either the Local or Global Services folder, depending on whether the rule is going to be used locally or by all users.
  3. Expand either the Service Groups or Services folder and select the service for which you want to create a rule.
  4. Select the rule you want to disable or enable.
    The Rule tab opens in the right panel.
  5. Select Enable or Disable in the Rule Status field. Disabling the rule turns on the red X on the rule icon in the left panel, and re-enabling it turns it off.
  6. Enforce to write the new information to the devices.

Disabling/Enabling the Rules for a Service or Service Group
If a service is associated with more than one service group, disabling or enabling the rules for the service in one service group will disable/enable the rules for the service in the other service groups of which the service is a part.

  1. In the Policy tab left panel, select the Roles/Services > Service Repository tab.
  2. Expand either the Local or Global Services folder, depending on whether the rule is used locally or by all users.
  3. Right-click the service or service group containing the rules you want to disable or enable and select Disable Rule(s) or Enable Rule(s).
  4. Select Yes to confirm the change.
  5. Enforce to write the new information to the devices.
Deleting a Rule

Deleting a rule removes the rule from a service. If the service is also part of a service group, the rule is deleted there as well, so be sure the rule is not needed before you delete it.

  1. In the Policy tab left panel, select the Roles/Services > Service Repository tab.
  2. Expand either the Local or Global Services folder, depending on whether you are deleting a rule used locally or by all users.
  3. Right-click the rule you want to delete, and select Delete.
  4. Select Yes to confirm, then OK to clear the confirmation message. The rule is deleted wherever it exists.
  5. Enforce to write the new information to the devices.

For information on related help topics:

Top