Classification and Marking
Reviewing Our "if" Condition
("identifying something")
- When classifying interesting traffic, we match on the following:
- VLAN
- Source IP
- Destination IP
- Source port
- Destination port
- RTP Port Range
Traffic Marking (Layer 2)
- By default our marking is 0.
- 8 different classes!
/CAP/Network+/Visual%20Aids/Pasted%20image%2020250331125639.png)
- Successive markings are "below" 0
- Mission critical: Spanning Tree, OSPF, other important protocols
802.1Q Header
/CAP/Network+/Visual%20Aids/Pasted%20image%2020250331125811.png)
/CAP/Network+/Visual%20Aids/Pasted%20image%2020250331125827.png)
- Priority bits can be added to get a traffic marking number
Layer 3 Traffic Marking
- occurs in the Type of Service field
- 64 values
- 13 Primary
- 0 is the default
/CAP/Network+/Visual%20Aids/Pasted%20image%2020250331125959.png)
Building Traffic Classification Rules
- Access Control List
- Classification
- Marking
- Expedited Forwarding
- Policing