From: Venkataramanaiah.R (vramanaiah@gmail.com)
Date: Mon Nov 28 2005 - 07:35:03 GMT-3
Hello Folks,
I have a question with NBAR. I am trying this stuff where I
am classifiying some traffic using NBAR on R3 below and then I have
some ACL on R1 (i.,e on the way to internet) which has a permit for
the dscp values marked by the policer below..
However, i do not see the ACL counters incrementing for the
specific dscp permit statement on R1. i see only the last permit any
statemnet incrementing.. So my assumption is that R3 is not actually
marking the packets correctly although it shows in the policy map o/p
that packets are marked. Did anyone face this problem?
fyi.. ACL on R1 is like this.. Correct me if i making some mistake
here on the ACL
R1#
Extended IP access list 119
10 deny ip any any dscp af13
20 permit ip any any dscp af21
30 permit ip any any (2681 matches)
--------------------------------------------------------
2WG9R3#sh policy-map
Policy Map uni
Class unicd
set dscp af21
Class cisco
drop
2WG9R3#sh class
2WG9R3#sh class-map
Class Map match-any class-default (id 0)
Match any
Class Map match-all unicd (id 1)
Match protocol http host "www.cisco.com"
Match protocol http url "univercd*"
Class Map match-all cisco (id 2)
Match protocol http host "www.cisco.com"
2WG9R3#sh poli
2WG9R3#sh policy-map int
2WG9R3#sh policy-map interface fa
2WG9R3#sh policy-map interface fastEthernet 0/1
FastEthernet0/1
Service-policy output: uni
Class-map: unicd (match-all)
15 packets, 7977 bytes
5 minute offered rate 0 bps, drop rate 0 bps
Match: protocol http host "www.cisco.com"
Match: protocol http url "univercd*"
QoS Set
dscp af21
Packets marked 15
Class-map: cisco (match-all)
15 packets, 6104 bytes
5 minute offered rate 0 bps, drop rate 0 bps
Match: protocol http host "www.cisco.com"
drop
Class-map: class-default (match-any)
285 packets, 50311 bytes
5 minute offered rate 0 bps, drop rate 0 bps
Match: any
2WG9R3#
This archive was generated by hypermail 2.1.4 : Thu Dec 01 2005 - 09:12:08 GMT-3