This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Automatic iSCSI Provisioning

Automatic iSCSI Provisioning

EtherNation_Use
Contributor II

‎01-07-2014 09:49 PM

Create Date: Jun 13 2012 2:49PM

Hello,

I try to configure Automatic iSCSI Provisioning on X670 v1512b12-patch1-4. but I get some problems.

I did it like the document ANiSCSISAN_1789.pdf and I use the integrated iscsi.pol script.

The following error message occurs:



# configure access-list iscsi ports 15-27 ingress

Error: Policy iscsi has syntax errors

Line 20 : Rule iscsi_countdst has not been previously defined.



Where is the problem?



Thanks.

(from Michael_Vreden)
0 Kudos
1 REPLY 1

EtherNation_Use
Contributor II

‎01-07-2014 09:49 PM

Create Date: Jun 14 2012 3:50PM

Try this one:

code:
#iscsi.pol


code:
#dynamic iscsi policy for identifying iscsi traffic, prioritize, protect, and log.
code:
entry iscsi_countedge {
code:
  if {
code:
    protocol tcp;
code:
    destination-port 3260;
code:
  }
code:
  then {
code:
    permit;
code:
    count iscsi_countdst;
code:
  }
code:
}
code:
code:
entry iscsi_configureedge {
code:
  if match all {
code:
    count iscsi_countdst >= 100; period 1; hysteresis 50;
code:
  }
code:
  then {
code:
    qosprofile iscsi_countedge qp5;
code:
    permit iscsi_configureedge;
code:
    cli "enable jumbo-frame ports $port";
code:
    cli "create log entry iscsi_detected_onPort_$port"
code:
  }
code:
  else {
code:
    qosprofile iscsi_countedge qp1;
code:
    permit iscsi_configureedge;
code:
    cli "clear access-list counters";
code:
  }
code:
}
code:
code:
entry iscsi_countup {
code:
  if {
code:
    protocol tcp;
code:
    source-port 3260;
code:
  } then {
code:
    permit;
code:
    count iscsi_countsrc;
code:
  }
code:
}
code:
entry iscsi_configureup {
code:
  if match all {
code:
    count iscsi_countsrc >= 100; period 1; hysteresis 50;
code:
  } then {
code:
    qosprofile iscsi_countup qp5;
code:
    permit iscsi_configureup;
code:
#   cli "enable jumbo-frame ports $port";
code:
    cli "create log entry iscsi_detected_onPort_$port";
code:
  } else {
code:
    qosprofile iscsi_countup qp1;
code:
    permit iscsi_configureup;
code:
    cli "clear access-list counters";
code:
  }
code:
}
(from john_padilla)
0 Kudos
GTM-P2G8KFN