RE: QOS question

From: BitGossip (bit.gossip@chello.nl)
Date: Wed May 30 2007 - 06:52:43 ART

• Next message: Muhammad Nasim: "Re: OT : Regarding Voice workbooks"
• Previous message: Ramya S: "RE: OT : Regarding Voice workbooks"
• Maybe in reply to: Shamin: "QOS question"
• Next in thread: To Be CCIE: "Re: QOS question"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

WorkerBee,
My comments are:
- we are trying to match response packets from the server, response packets
contains mime not URL
- the URL should not contain the host part "When specifying a URL for
classification, include only the portion of the URL following
www.hostname.domain in the match statement. For example, in the URL
www.anydomain.com/latest/whatsnew.html, include only /latest/whatsnew.html"
http://www.cisco.com/univercd/cc/td/doc/product/software/ios124/124cr/hqos_r
/qos_m1h.htm#wp1128712
- I would apply it out s0/0

Having said that, this is my proposal, let me know your opinion:

class-map match-all HTTP
 match protocol http host "www.cisco.com"
 match protocol http url "directory*"
class-map match-all JPG
 match protocol http mime "*jpeg"
!
!
policy-map JPG
 class JPG
   drop
policy-map HTTP
 class HTTP
   police 1000000
  service-policy JPG

-----Original Message-----
From: WorkerBee [mailto:ciscobee@gmail.com]
Sent: 29 May 2007 23:40
To: Bit Gossip
Subject: Re: QOS question

Hi Bit,

I think is will work..

ip access-group extended WEB_SERVERS
 .....

class-map match-any PIX
 match protocol http url "*.jgp"
 match protocol http url "*.jpeg"
 match protocol http url "*.gif"

class-map match-all WEB_TRAFFIC
 match access-group name WEB_SERVERS
 match protocol http url "http://www.abc.def/directory/*"

policy-map DENY_PIX
 class PIX
  drop

policy-map POLICE_WEB_TRAFFIC
 class WEB_TRAFFIC
 police cir xxxxxxx
   conform-action transmit
   exceed-action drop
 service-policy DENY_PIX

interface FastEthernet0/0
 service-policy input POLICE_WEB_TRAFFIC

On 5/30/07, Bit Gossip <bit.gossip@chello.nl> wrote:
> Are you sure that the class-map within a policy-map are evaluated in the
> order in which they appear?
>
> Bit.
>
> ----- Original Message -----
> From: "Kim" <support@isolvesystems.com>
> To: "Shamin" <ccie.xpert@gmail.com>
> Cc: "Tarun Pahuja" <pahujat@gmail.com>; "Cisco certification"
> <ccielab@groupstudy.com>
> Sent: Monday, May 28, 2007 1:27 AM
> Subject: Re: QOS question
>
>
> > Two class-maps and one policy-map should be good enough. First use the
> > NBAR
> > in the first class-map to drop the JPG files first. Secondly, policy
all
> > the rest of the traffic to 1mb.
> >
> > Regards,
> > Kim
> >
> >
> >
> > On 5/27/07, Shamin <ccie.xpert@gmail.com> wrote:
> >>
> >> Hi,
> >>
> >> Yes , I do know it is to be solved using NBAR and policing.
> >> But cant get the logic, as from the same website,non-JPG files
> >> are policed and JPG files are dropped. Should it be something like,
> >> match the traffic from the Webserver to the Client network in a Child
> >> class.
> >> There will be two parent classes in the outbound policy map.
> >> But I am confused over the logic that should be in the Parent class.
> >> If someone can shed some light on the logic.
> >>
> >> regards
> >> shamin
> >>
> >>
> >>
> >> On 5/27/07, Tarun Pahuja <pahujat@gmail.com> wrote:
> >> >
> >> > Shamin,
> >> > You might want to look into Nbar and Policing.
> >> >
> >> > Thanks,
> >> > Tarun Pahuja
> >> > CCIE#7707(R&S,Security,SP,Voice,Storage),CCSI
> >> >
> >> >
> >> > On 5/27/07, Shamin <ccie.xpert@gmail.com> wrote:
> >> >
> >> > > Hi ,
> >> > >
> >> > > Best of luck on your preprations.
> >> > >
> >> > > I have a question in QOS.The requirement is as follows
> >> > >
> >> > > FR
> >> > > (E0/0) R1 (s0/0) <---------------------------> (S0/0) R2 (E0/0)
> >> > >
> >> > > There is a webserver on the E0/0 interface of R1 which hosts a
> >> > > website
> >> > > www.cisco.com/directory/ .
> >> > >
> >> > > Configure R1's s0/0 interface, so that traffic to the client's on
> >> > > R2's
> >> > > E0/0
> >> > > network follows
> >> > > the following rule.
> >> > >
> >> > > 1)Traffic from this website to the clients are limited to 1MB.
> >> > > 2)If the traffic from this website to the clients, contains any Jpg
> >> > > or
> >> > > Jpeg
> >> > > files , the traffic should be dropped.
> >> > >
> >> > > I think this should follow a parent and child policy.But could not
> >> > > get
> >> > > my
> >> > > logic correct.
> >> > >
> >> > > regards
> >> > > shamin
> >> > >
> >> > >
> >> _______________________________________________________________________
> >> > > Subscription information may be found at:
> >> > > http://www.groupstudy.com/list/CCIELab.html
> >>
> >> _______________________________________________________________________
> >> Subscription information may be found at:
> >> http://www.groupstudy.com/list/CCIELab.html
> >>
> >
> >
> >
> > --
> > http://www.isolvesystems.com
> >
> > _______________________________________________________________________
> > Subscription information may be found at:
> > http://www.groupstudy.com/list/CCIELab.html
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html

• Next message: Muhammad Nasim: "Re: OT : Regarding Voice workbooks"
• Previous message: Ramya S: "RE: OT : Regarding Voice workbooks"
• Maybe in reply to: Shamin: "QOS question"
• Next in thread: To Be CCIE: "Re: QOS question"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Fri Jun 01 2007 - 06:55:22 ART