From: Schulz, Dave (DSchulz@dpsciences.com)
Date: Fri Mar 24 2006 - 17:04:17 GMT-3
Ted -
I would assume that using the http mime command under NBAR should catch
this, even if it was sent within HTTP. Let throw this out and let me
know if anyone thinks that something like this would work.....
!
class-map match-all HTTP
match protocol http mime "image/*"
match protocol http mime "video/*"
match protocol gnutella <- match this app
match protocol http mime "application/gnutella" <- match this app in
http
!
Dave Schulz
Email: dschulz@dpsciences.com
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
Ted McDermott
Sent: Friday, March 24, 2006 2:17 PM
To: ccielab@groupstudy.com
Subject: NBAR Capabilities Question
Question on how to effectively apply filtering to
Internet services: On an enterprise network on the
Internet edge router, can NBAR really differentiate
between file sharing, music, etc. or are many sites
now encapsulating these services within HTTP,
effectively rendering NBAR ineffective?
This archive was generated by hypermail 2.1.4 : Sat Apr 01 2006 - 10:07:40 GMT-3