From: Koen Zeilstra (koen@koenzeilstra.com)
Date: Thu Jun 01 2006 - 05:20:51 ART
Hi group,
Please review the example on
Suppose I have a network like this:
(R3)f0-----f0(R1)s0-------INTERNET
I want to limit all downloads of images to 1Mb using nbar.
According to the example I would need something like this:
Router(config)# class-map match-any web_images
Router(config-cmap)# match protocol http url "*.gif"
Router(config-cmap)# match protocol http url "*.jpg|*.jpeg"
Router(config)# class-map match-any av_im_web
Router(config-cmap)# match class-map audio_video
Router(config-cmap)# match class-map web_images
Router(config)# policy-map e-express
Router(config-pmap-c)# class av_im_web
Router(config-pmap-c)# police 1000000 conform transmit exceed drop
However my question is. Where to apply the service-policy and in which
direction?
Downloading goes from INTERNET towards R1, so I would expect to apply the
service-policy inbound of R1 s0. However a URL contains the link to the
images on which the match statement matches. The download traffic which is
a result of the URL submitted does not contain the URL information.
Applying the service-policy outbound will cause the outgoing traffic to
match, not the download traffic.
Maybe I am making a wrong assumption here. Anyone who can shed some light
on this?
thanks,
Koen
-----------------------
Mother is the invention of necessity.
This archive was generated by hypermail 2.1.4 : Sat Jul 01 2006 - 07:57:31 ART