From: Tim (ccie2be@nyc.rr.com)
Date: Fri Mar 31 2006 - 17:47:58 GMT-3
Dave,
I agree with everything Chris says.
But, I have 2 thoughts to add:
1. There was an extremely detailed discussion on this exact topic between
myself and Scott Morris some time ago - I don't remember exactly when but it
was before I passed the lab which was last August.
2. the absolute best way to really this (and a whole lot of other stuff) is
to test this out yourself. You'll need a couple PC's, one on each side of
the router. Set up 1 PC as a web server (don't ask me how, I haven't
learned that yet) and then access your web server with the other PC when you
have different config's on your router.
And, for extra credit, you can download Ethereal for free and do packet
captures. Now, you'll really see exactly what's going on.
If you're wondering how much doing this helped me, the answer, unfortunately
is, not at all. I didn't do what I'm suggesting you do. And, I regret it.
At the time, I did a mental cost/benefit analysis and concluded that the
cost and time it would take me to get up to speed with these tools weren't
worth the benefit I would gain. In hindsight, I think that was a mistake.
And, if I had followed the suggestions I'm telling you now, I think I would
have passed the lab in less attempts and sooner.
HTH, Tim
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
Chris Lewis
Sent: Friday, March 31, 2006 2:51 PM
To: Schulz, Dave
Cc: quetta_1@lycos.com; mikebaily480@yahoo.com; ccielab@groupstudy.com
Subject: Re: NBAR with URLs and MIME
For a lab exam, it all comes down to wording, if it gives a file extension,
use URL, if it asks about anything embedded or of a specific type within a
file, use MIME. In the real world you should know what you want to match o.
Chris
On 3/31/06, Schulz, Dave <DSchulz@dpsciences.com> wrote:
>
> Wouldn't that be only if the file is defined in the URL, right? How
> would we then know if the question is referencing a MIME?
>
> Dave Schulz
> *** Sent from my Blackberry ***
>
>
> -----Original Message-----
> From: Chris Lewis <chrlewiscsco@gmail.com>
> To: Schulz, Dave <DSchulz@dpsciences.com>
> CC: Quetta Walla <quetta_1@lycos.com>; Mike Baily
<mikebaily480@yahoo.com>;
> ccielab@groupstudy.com <ccielab@groupstudy.com>
> Sent: Fri Mar 31 09:04:58 2006
> Subject: Re: NBAR with URLs and MIME
>
> If a specific file is defined, you classify on that file and therefore use
> match protocol http URL.
>
> Chris
>
>
> On 3/30/06, Schulz, Dave <DSchulz@dpsciences.com> wrote:
>
> Yes, this is always an elusive subject in the understanding...when
> the questions can ask many different things. For example, limit the
> download of a specific file to a certain amount of bandwidth. Is this a
> file type or a MIME. So, when does a file type apply, or, a MIME?
>
> Dave
>
> ________________________________
>
> From: nobody@groupstudy.com on behalf of Chris Lewis
> Sent: Thu 3/30/2006 12:39 PM
> To: Quetta Walla
> Cc: Mike Baily; ccielab@groupstudy.com
> Subject: Re: NBAR with URLs and MIME
>
>
>
> Quetta,
>
> This has been discused a few times on this list in the past. The
> bottom line
> is that gif or jpeg can be either a mime type or a file extension.
> If the
> classification includes a period, it infers a file extension is
> being
> referenced, if a file type is referred to, it means a MIME type.
>
> Hope this is clear.
>
> Chris
>
>
> On 3/30/06, Quetta Walla < quetta_1@lycos.com> wrote:
> >
> > Hey,
> > Here is a site:
> >
>
>
http://www.cisco.com/univercd/cc/td/doc/product/software/ios121/121newft/121
t
<
>
http://www.cisco.com/univercd/cc/td/doc/product/software/ios121/121newft/121
t
> >
>
> /121t5/dtnbar.htm#xtocid259533
> >
> > Router(config)# class-map match-any web_images
> > Router(config-cmap)# match protocol http url "*.gif"
> > Router(config-cmap)# match protocol http url "*.jpg|*.jpeg"
> >
> > As you can see Cisco uses match pro http url for gif, gpg, and
> jpeg.
> > I though jpeg and gif should come under mime type as they are
> mentioned on
> > the iana site is mime types. And jpg is correctly match pro http
> url.
> >
> > Could some one please shed some light on why is Cisco not
> writing them as
> > mime types. Or is it already on their errata page? :)
> >
> >
> > > ----- Original Message -----
> > > From: "Mike Baily" < mikebaily480@yahoo.com>
> > > To: ccielab@groupstudy.com
> > > Subject: NBAR with URLs and MIME
> > > Date: Thu, 30 Mar 2006 08:31:01 -0800 (PST)
> > >
> > >
> > > Does anyone have a good link to a page on how to configure
> NBAR
> > > with URLs and MIME? Or better yet, does anyone know where to
> find
> > > it on cisco.com/univercd <http://cisco.com/univercd> ? I
> searched for about 45 minutes and
> > > couldn't find anything good. Thanks
> > >
> > >
> > > ---------------------------------
> > > Talk is cheap. Use Yahoo! Messenger to make PC-to-Phone calls.
> > > Great rates starting at 1"/min.
> > >
> > >
> _______________________________________________________________________
> > > Subscription information may be found at:
> > > http://www.groupstudy.com/list/CCIELab.html <
> http://www.groupstudy.com/list/CCIELab.html>
>
> >
> > >
> >
> >
> > --
> > _______________________________________________
> >
> > Search for businesses by name, location, or phone number.
> -Lycos Yellow
> > Pages
> >
> >
> >
>
>
http://r.lycos.com/r/yp_emailfooter/http://yellowpages.lycos.com/default.asp
> ?
> SRC=lycos10
> >
> >
> _______________________________________________________________________
> > Subscription information may be found at:
> > http://www.groupstudy.com/list/CCIELab.html <
> http://www.groupstudy.com/list/CCIELab.html>
>
>
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html <
> http://www.groupstudy.com/list/CCIELab.html>
This archive was generated by hypermail 2.1.4 : Sat Apr 01 2006 - 10:07:40 GMT-3