The RADIUS server can dynamically deliver the HW-Data-Filter attribute that contains traffic classifier-behavior pair information to a RADIUS client.
The RADIUS server delivers the HW-Data-Filter attribute (82) carrying the traffic classifier-behavior pair. The traffic classifier attribute carries the classifier name, behavior name, and rule information, and the traffic behavior attribute carries the behavior name and behavior information. ACL information is dynamically delivered after the traffic classifier-behavior is delivered. The HW-Data-Filter attribute is disabled by default. You can enable the HW-Data-Filter attribute only using a command.
The system view is displayed.
The AAA view is displayed.
The router is enabled to dynamically create user groups using user group information delivered by a RADIUS server.
The interval at which the NetEngine 8000 F checks whether online users or dynamic ACLs are using the dynamic user group delivered by the RADIUS server is configured.
The NetEngine 8000 F checks one dynamic user group at each interval. If a user group is not used, the NetEngine 8000 F deletes the user group.
The NetEngine 8000 F is configured to dynamically create, modify, or delete ACLs upon receipt of the traffic classifier and behavior information carried in the HW-Data-Filter attribute that is delivered by a RADIUS server.
The alarm threshold for the usage of traffic classifier-behavior pairs delivered by the RADIUS server is set.
The idle traffic classifier-behavior pairs are reclaimed.
Return to the system view.
The RADIUS server group view is displayed.
The NetEngine 8000 F ignores the RADIUS packets with the attribute that fails the parse and check.
This command takes effect only on the HW-Data-Filter attribute.
The configuration is committed.