About petermann

petermann · 10-29-2008

I have a question relating to ACL's on a routers 'Internet' facing interface.Further to reading several whitepapers on the topic, a recommended ACL would typically contain the following statements.In addition, the Cisco SDM automatically generates a ...

petermann · 05-13-2007

Hi all,Here's the problem. I want to drop all traffic except that defined in a policy-map. I'm using the policy map to serve two functions. Firstly to prioritize certain types of traffic and also to drop unwanted traffic by using NBAR. Ok, here's an ...

petermann · 10-29-2008

thanks Jon for your response.With regard to your first suggestion relating to a possible typo, my intention was not "permit ip any any".My main point is that there are several example configurations posted on the Internet which at the top of the ACL ...

petermann · 05-14-2007

hi Bjornarsb,I very much apprciate your comments.I will try what you have suggested this evening.However, we are just matching on port, and therefore I suspect Skype and other P2P apps will take advantage and tunnel out.thanks though. pete

petermann · 05-14-2007

Thanks Bjornarsb,But your example doesn't have a class drop. for example:class-map match-any drop drop!policy-map voice_traffic class dscp46 shape average 30000 10000 class telnet_ping_snmp shape average 20000 15440 class pop3_smtp shape av...

petermann · 05-14-2007

Hi Bjornarsb,I have tried this and classification of traffic on ingress works (even http), as illustrated in the previous post. I realise best practice when applying QoS is to mark as close to source as possible, but in this scenario it is just a 172...

petermann · 05-14-2007

Hi Mohammed,The thing is, whilst it works I don't really want 2 policy-maps on the router. Whilst my first example illustrated marking the packets with a DSCP value, this was just for the example.What I really want to do is us the policy-map as an ad...

Member Since	‎03-03-2005 06:51 AM
Date Last Visited	‎08-18-2017 03:53 AM
Posts	14

User Statistics

User Activity

ACL Best Practice - On the Internet interface

Using a Policy Map to both prioritise traffic and DROP unwanted traffic

Re: ACL Best Practice - On the Internet interface

Re: Using a Policy Map to both prioritise traffic and DROP unwan

Re: Using a Policy Map to both prioritise traffic and DROP unwan

Re: Using a Policy Map to both prioritise traffic and DROP unwan

Re: Using a Policy Map to both prioritise traffic and DROP unwan