RE: QOS question - 2

From: Filyurin, Yan (yan.filyurin@eds.com)
Date: Tue Jun 12 2007 - 17:04:54 ART

• Next message: JB: "Re: Mkdir"
• Previous message: Alexei Monastyrnyi: "Re: Passed RS yesterday"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Not that I have an answer and I have seen this thread many times and the
more I read more about the more confusing it seems.

So far based on various threads it seems that you can use nbar to match
http requests based on the host and url field, and match http responses
on the host (which you can do with ACL too) and MIME type. I am still
not clear how you can match it on URL because it would not be in http
header. I haven't tested it on routers, but I found this URL:

http://web-sniffer.net

So I used it on bunch of web sites on the Internet and every time I
would get a response (and I tried the web sites of the most popular CCIE
training vendors) there was always a Content-Type, but never a URL. So
in theory NBAR could not figure out the URL field from the response.

Yet I have heard many say that you can match on the URL in HTTP
responses.

Why can't Cisco just document it!? :) They did, but never
distinguishing requests and responses.

Yan

-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
Shamin
Sent: Tuesday, June 12, 2007 11:51 AM
To: Bit Gossip
Cc: WorkerBee; Cisco certification
Subject: Re: QOS question - 2

HI ,

Well I am a bit confused on this still.
The traffic returning from the webserver,do they contain the URL
in them so that, we can do a

match protocol http host www.cisco.com

on the returning traffic from the webserver.

Anyone?

regards
shamin

On 5/29/07, Bit Gossip <bit.gossip@chello.nl> wrote:
>
> Hi Shamin,
> this is also how I would do it. But there is one thing that I don't
> understand:
> we are trying to match replies from the server to the client and those
> replies don't contain URLs, do they?
> Thanks,
> Bit
>
> ----- Original Message -----
> From: "Shamin" <ccie.xpert@gmail.com>
> To: "WorkerBee" <ciscobee@gmail.com>
> Cc: "Cisco certification" <ccielab@groupstudy.com>
> Sent: Monday, May 28, 2007 9:07 PM
> Subject: Re: QOS question
>
>
> > Hi,
> >
> > Will the configuration be something like this.
> >
> > class-map CHILD
> > match protocol http url "*.jpg|*.jpeg"
> >
> > policy-map CHILD
> > class CHILD
> > drop
> >
> > class-map match-all PARENT
> > match access-group FLOW
> > match protocol http host "www.cisco.com"
> > match protocol http url "*directory*"
> >
> > policy-map PARENT
> > class PARENT
> > service-policy CHILD
> > police 1000000
> >
> > int s0/0
> > service-policy output PARENT
> >
> >
> > Please correct me.
> >
> > Regards
> > Shamin
> >
> >

• Next message: JB: "Re: Mkdir"
• Previous message: Alexei Monastyrnyi: "Re: Passed RS yesterday"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Sun Jul 01 2007 - 17:24:48 ART