Mark and Drop on the same interface is like you would like to paint a wall
then break it, it is possible but not logical to preform.
you just need to verify the wall that you would like to break before you do,
only if some one else at a diffrent time was needed to break that wall you
would need to put an X marking that wall needs to go down.
my 2 cents
On Tue, Jun 30, 2009 at 11:30 AM, Ajay mehra <ajaymehra01_at_gmail.com> wrote:
> Requirement is to mark and drop http traffic which contain certain types of
> strings using NBAR and PBR.
>
> Is it possible to mark and drop traffic on the same interface?
>
> My solution was to apply both service policy(For marking) and ip
> policy(For dropping to null 0) commands to incoming interface while the
> actual solution has marking on incoming interface and ip policy configured
> on outgoing interface.
>
>
> Thanks,
> Ajay
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
>
>
>
>
>
>
>
>
-- Shiran Guez MCSE CCNP NCE1 JNCIA-ER CCIE #20572 http://cciep3.blogspot.com http://www.linkedin.com/in/cciep3 Blogs and organic groups at http://www.ccie.netReceived on Thu Jul 02 2009 - 08:28:34 ART
This archive was generated by hypermail 2.2.0 : Sat Aug 01 2009 - 13:10:21 ART