Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

6509 Layer 7 Application Access Control Lists? Is this possible?

I would like to know if it is possible to setup access lists on a 6509 to filter based on Layer 7 Application information. Particuarly I would like to filter out some audio streaming applications and other potentially malicious or bandwidth intensive applications that go over port 80. Is it possible to setup access lists like this on the application layer? We currently have a Supervisor 1A with PFC and MSFC. Will this work for this functionality or would we need a NAM (network analysis module) or a newer supervisor engine to do this? What do you think?

1 REPLY
Cisco Employee

Re: 6509 Layer 7 Application Access Control Lists? Is this possi

NBAR is supported for Flexwan. NBAR is supported in software on MSFC2 for VLAN traffic with 12.1.13E1. NBAR is not supported for MSFC VLAN traffic.

http://www.cisco.com/en/US/products/hw/switches/ps708/prod_bulletin09186a00801124a0.html

http://www.cisco.com/univercd/cc/td/doc/product/lan/cat6000/12_1e/swconfig/qos.htm

IMPORTANT - HW fwding for the interfaces with NBAR configured will be lost, all traffic will be forced through the MSFC2 (except ingress ACLs).

95
Views
0
Helpful
1
Replies
CreatePlease login to create content