Re: Policy based routing question.

From: Mohamed El Henawy (m.henawy@link.net)
Date: Wed Mar 25 2009 - 03:48:55 ART

• Next message: Darby Weaver: "Re: OT:Dumps are already out for open-ended questions!!"
• Previous message: Darby Weaver: "Re: To ALL"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hello ,

check this link..might be useful

http://enotepad.wordpress.com/2008/09/05/nbar-confusion-usage-of-match-protocol-http-url/
http://www.ciscoblog.com/archives/2006/11/throttling_band.html

why don't you try to filter the 2nd one with ACL to be matched and see if
there will be match or not use the DNS for the site

p.s. this is not a policy based routing :)

for the 2nd one , try
----- Original Message -----
From: "Shahnawaz Khot" <shahnawaz4ccie@gmail.com>
To: "Cisco certification" <ccielab@groupstudy.com>
Sent: Wednesday, February 25, 2009 1:53 PM
Subject: Policy based routing question.

> Hello expert,
>
> What is wrong with my following policy if I am applying this in input
> direction on a vlan interface.
>
> One class(XYZ) matches url string "/home/xyz" which a user is using to
> upload some huge bandwidth files. The idea is to limit him on 32 Kbps.
>
> Another class(XYZ2) is used to limit the bandwidth to access
> www.xyz.com website.
>
>
> class-map match-all XYZ
> match protocol http url "/home/xyz*"
> class-map match-all XYZ2
> match protocol http host "http://www.xyz.com*"
> !
> !
> policy-map XYZ
> class XYZ
> police cir 32000
> class XYZ2
> police cir 32000
>
>
>
> With this double matching, I did not find any packets matched under this
> class whereas users are browsing the site frequently.
>
> CORE-II#show policy-map interface vlan 102
> Vlan102
> Service-policy input: XYZ
> Class-map: XYZ (match-all)
> 0 packets, 0 bytes
> 5 minute offered rate 0 bps, drop rate 0 bps
> Match: protocol http url "/home/xyz*"
> Class-map: XYZ2 (match-all)
> 0 packets, 0 bytes
> 5 minute offered rate 0 bps, drop rate 0 bps
> Match: protocol http host "http://www.xyz.com*"
> Class-map: class-default (match-any)
> 475483 packets, 93943800 bytes
> 5 minute offered rate 285000 bps, drop rate 0 bps
> Match: any
>
> XYZ is a keyword use to hide the original website address. Please suggest.
>
>
> Thank you,
> Shahnawaz
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
>
>
>
>
>
>
>

--------------------------------------------------------------------------------

No virus found in this incoming message.
Checked by AVG - www.avg.com
Version: 8.0.237 / Virus Database: 270.11.9/1992 - Release Date: 03/09/09
19:20:00

Blogs and organic groups at http://www.ccie.net

• Next message: Darby Weaver: "Re: OT:Dumps are already out for open-ended questions!!"
• Previous message: Darby Weaver: "Re: To ALL"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Mon Apr 06 2009 - 06:44:07 ART