Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
550
Views
3
Helpful
7
Replies

To block URLs on cisco 7507 router

ror.sanjeev
Level 1
Level 1

‎09-02-2008 04:24 AM - edited ‎03-03-2019 11:22 PM

Hi..I hv cisco 7507 router,I need to block some URLs or websites on this..can I do this and how..Please tell me ..

Labels:
0 Helpful
7 Replies 7

wasiimcisco
Level 1
Level 1

‎09-02-2008 05:45 AM

you can do this by enabling the Nbar on interface and then make class-map test do match protocol http url "*hotmail*"

then make policy-map test

class test

drop

apply the service on interface.

if helpful please rate

0 Helpful

ror.sanjeev
Level 1
Level 1
In response to wasiimcisco

‎09-02-2008 06:56 AM

I have done same thing as:

class-map match-all test

match protocol http url "youtube"

!

!

policy-map test

class test

set ip dscp default

enable ip nbar protocol-discovery on Fa5/1/1

following are access-list applied on fa5/1/1

40 deny ip any any dscp default (105222matches)

50 permit ip any any log (868 matches)

But it blocks all the site not even youtube.I am unable to open any site like yahoo,google,rediff etc.

Please tell me..

0 Helpful

Collin Clark
VIP Alumni
VIP Alumni
In response to ror.sanjeev

‎09-02-2008 07:08 AM

You're denying all IP traffic with a DSCP of 0, which is what most traffic is by default.

Try something like this-

class-map match-all test

match protocol http host *youtube.com*

policy-map test

class test

drop

You can remove the the ACL line 40 & 50.

Hope that helps.

0 Helpful

ror.sanjeev
Level 1
Level 1
In response to Collin Clark

‎09-02-2008 07:59 PM

hi..there is no command like drop..

(config-pmap-c)#?

QoS policy-map class configuration commands:

bandwidth Bandwidth

exit Exit from QoS class action configuration mode

fair-queue Flow-based Fair Queueing

netflow-sampler NetFlow action

no Negate or set default values of a command

police Police

priority Low Latency Queueing

queue-limit Queue Max Threshold for Tail Drop

random-detect Weighted Random Early Detect (Precedence based

service-policy Configure Flow Next

set Set QoS values

shape Traffic Shaping

on this link,http://www.cisco.com/en/US/products/hw/routers/ps359/products_tech_note09186a00800fc176.shtml

it is written there,u can do with set dscp 1 but i m not able to do.

please tell,

thanks.

0 Helpful

Collin Clark
VIP Alumni
VIP Alumni
In response to ror.sanjeev

‎09-03-2008 05:07 AM

Take a look at Method 3 on the link you provided, that would be a way to do it as well.

ror.sanjeev
Level 1
Level 1
In response to Collin Clark

‎09-04-2008 12:15 AM

I have also applied the method (3) from the link http://www.cisco.com/en/US/products/hw/routers/ps359/products_tech_note09186a00800fc176.shtml

still I am not able to block youtube.com.Can you please tell me the complete procedure and commands.

I am using Cisco IOS version 12.3(11)T3,cisco 7507 router.

Thanks,

Sanjeev

0 Helpful

Collin Clark
VIP Alumni
VIP Alumni
In response to ror.sanjeev

‎09-04-2008 05:15 AM

class-map match-all YOUTUBE

match protocol http host "*youtube.com*"

!

policy-map DROP_YOUTUBE

class YOUTUBE

drop

!

interface FastEthernet0/0

description TO INTERNET

service-policy output DROP_YOUTUBE

Hope that helps.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card