troubleshooting match protocol http url

From: M S (michaelgstout@hotmail.com)
Date: Wed Jul 04 2007 - 21:19:25 ART

• Next message: Antonio Soares: "RE: troubleshooting match protocol http url"
• Previous message: johngibson1541@yahoo.com: "MST-PVST boundary is better than MST-MST boundary for load"
• Next in thread: Antonio Soares: "RE: troubleshooting match protocol http url"
• Maybe reply: Antonio Soares: "RE: troubleshooting match protocol http url"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hello:
I am not hitting anything inbound or outbound.
Am i doing something wrong? Thank You.Mike
TOPOLOGY
(http Requester)BB2 ---------- (in and out servic policy) R4 ----------
SW4(IOS-http-Server)!Get Commands:
BB2#tel 167.1.4.10 80
Trying 167.1.4.10, 80 ... Open
GET / HTTP/1.1\r\n
GET /c3550-ipservicesk9-mz.122-37.SE/html/images/update.gif
GET /c3550-ipservicesk9-mz.122-37.SE/html/homepage.htm
//THE CONNECTION REMAINS OPEN

class-map match-any AV
 match protocol http mime "*video*"
 match protocol http mime "*audio*"
class-map match-all HTTP
 match protocol http
class-map match-any PICTURES
description This is an Inbound class-map
 match protocol http url "*.jpg"
 match protocol http url "*.jpeg"
 match protocol http url "*.gif"
 match protocol http mime "*gif*"
 match protocol http mime "*jpg*"
 match protocol http mime "*jepg*"
class-map match-all SLAMMER
 match access-group 101
 match packet length min 404 max 404
class-map match-all NIMDA
 match protocol http url "*readme.eml*"
class-map match-all CISCO
description notice this inbound list matches a hostname
 match protocol http host "cisco.com"
class-map match-all BLOCK-ROOT
 match protocol http url "*root.exe*"
class-map match-any CODE-RED
 match protocol http url "*root.exe*"
 match protocol http url "*cmd.exe*"
 match protocol http url "*.ida*"
!
!
policy-map MY-POLICY
 class CISCO
 class AV
drop
 class PICTURES
drop
 class SLAMMER
drop
 class NIMDA
drop
 class BLOCK-ROOT
drop
 class CODE-RED
drop
 class HTTP
!SHOW COMMAND
R4#sho policy-map int fa0/1 in class PICTURES
 FastEthernet0/1 Service-policy input: MY-POLICY Class-map: PICTURES
(match-any)
0 packets, 0 bytes
5 minute offered rate 0 bps, drop rate 0 bps
Match: protocol http url "*.jpg"
0 packets, 0 bytes
5 minute rate 0 bps
Match: protocol http url "*.jpeg"
0 packets, 0 bytes
5 minute rate 0 bps
Match: protocol http url "*.gif"
0 packets, 0 bytes
5 minute rate 0 bps
Match: protocol http mime "*gif*"
0 packets, 0 bytes
5 minute rate 0 bps
Match: protocol http mime "*jpg*"
0 packets, 0 bytes
5 minute rate 0 bps
Match: protocol http mime "*jepg*"
0 packets, 0 bytes
5 minute rate 0 bps
drop
R4#sho policy-map int fa0/1 in class HTTP
 FastEthernet0/1 Service-policy input: MY-POLICY Class-map: HTTP
(match-all)
0 packets, 0 bytes
5 minute offered rate 0 bps
Match: protocol http
R4#sho policy-map int fa0/1 out class HTTP
 FastEthernet0/1 Service-policy output: MY-POLICY Class-map: HTTP
(match-all)
0 packets, 0 bytes
5 minute offered rate 0 bps
Match: protocol http
R4#

------------------------------------------------------------------------

Local listings, incredible imagery, and driving directions - all in one
place!

• Next message: Antonio Soares: "RE: troubleshooting match protocol http url"
• Previous message: johngibson1541@yahoo.com: "MST-PVST boundary is better than MST-MST boundary for load"
• Next in thread: Antonio Soares: "RE: troubleshooting match protocol http url"
• Maybe reply: Antonio Soares: "RE: troubleshooting match protocol http url"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Sat Aug 18 2007 - 08:17:39 ART