Re: Class-map inspect problem

mocah · ‎10-25-2006

Is it possible to configure "class-map type inspect" with loaded PDLM files. I have uploaded PDLM files for ednokey and bittorent, but I can not see protocols in insect class-map.

Router#sh ip nbar pdlm

The following PDLMs have been loaded :

flash://edonkey.pdlm

flash://bittorrent.pdlm

**************************************************

Router#sh ip nbar port-map

port-map bittorrent tcp 6881 6882 6883 6884 6885 6886 6887 6888 6889

port-map edonkey tcp 4662

***************************************************

When I try using this pdlm in class-map bittorent and eDonkey are not present:

Router(config)#class-map type inspect match-all p2p-test-cmap

Router(config-cmap)#match pro

Router(config-cmap)#match protocol b?

bgp biff bootpc bootps

Router(config-cmap)#match protocol e?

echo entrust-svc-hdlr entrust-svcs exec

Router is Cisco 871 image: C870-ADVIPSERVICESK9-M), Version 12.4(9)T1

sbilgi · ‎10-31-2006

Configuring Modular Policy Framework consists of four tasks:

1. Identify the Layer 3 and 4 traffic to which you want to apply actions using the class-map or class-map type management command.

2. (Application inspection only) Define special actions for application inspection traffic using the policy-map type inspect command.

3. Apply actions to the Layer 3 and 4 traffic using the policy-map command.

4. Activate the actions on an interface using the service-policy command.

http://www.cisco.com/en/US/products/ps6120/products_command_reference_chapter09186a008063f0f8.html#wp1718529

In 7.2 ASA software, you can do more extensive URL filtering with 'regex', 'class-map type regex', 'class-map type inspect', and 'policy-map type inspect' commands: