Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
205
Views
0
Helpful
1
Replies

Using NBAR for an IP Range

kmattes
Level 1
Level 1

‎10-16-2004 12:32 PM - edited ‎03-02-2019 07:19 PM

Hi all:

I've got a 3725 infront of our PIXs (e0/0) and a T3 on on the other side.

I want to use NBAR to filter out all the P2P crap thats been going around on our network..

BUT ;-)

I only want to be using NBAR for a specific source range of IPs... not for all the traffic coming through the interface... (as you can guess, I don't want to cut myself off. hahaha)

Anyone have any ideas how to pull this stunt off...

Thanks In Advance!

Kev

Labels:
0 Helpful
1 Reply 1

Georg Pauwen
VIP
VIP

‎10-17-2004 11:37 AM

Hello Kev,

you could try a class which has to match both the protocol and an access list:

class-map match-all HTTP

match protocol http

match ip address 101

In the access list, you could specify the range of IP addresses you want this policy to be implemented for.

Don't forget to turn on cef globally (ip cef) for this to work...:)

Regards,

Georg

www.solutionfinders.nl

0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card