Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
220
Views
0
Helpful
1
Replies

6509 Layer 7 Application Access Control Lists? Is this possible?

NPT_2
Level 2
Level 2

‎10-09-2003 10:02 AM - edited ‎03-02-2019 10:54 AM

I would like to know if it is possible to setup access lists on a 6509 to filter based on Layer 7 Application information. Particuarly I would like to filter out some audio streaming applications and other potentially malicious or bandwidth intensive applications that go over port 80. Is it possible to setup access lists like this on the application layer? We currently have a Supervisor 1A with PFC and MSFC. Will this work for this functionality or would we need a NAM (network analysis module) or a newer supervisor engine to do this? What do you think?

Labels:
0 Helpful
1 Reply 1

tsettle
Level 3
Level 3

‎10-09-2003 01:02 PM

NBAR is supported for Flexwan. NBAR is supported in software on MSFC2 for VLAN traffic with 12.1.13E1. NBAR is not supported for MSFC VLAN traffic.

http://www.cisco.com/en/US/products/hw/switches/ps708/prod_bulletin09186a00801124a0.html

http://www.cisco.com/univercd/cc/td/doc/product/lan/cat6000/12_1e/swconfig/qos.htm

IMPORTANT - HW fwding for the interfaces with NBAR configured will be lost, all traffic will be forced through the MSFC2 (except ingress ACLs).

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents