Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Attention: The Community will be in read-only mode on 12/14/2017 from 12:00 am pacific to 11:30 am.

During this time you will only be able to see content. Other interactions such as posting, replying to questions, or marking content as helpful will be disabled for few hours.

We apologize for the inconvenience while we perform important updates to the Community.

New Member

Can NBAR filter traffic in one-interface routing?

Say I have a routers A and B and a host C. Router A has inside FE 192.168.1.1, Router B has inside interface 192.168.1.2 and host C has FE interface 192.168.1.3.

Router A has a route "ip route 192.168.2.0 255.255.255.0 192.168.1.2". If host C sent an NBAR probhited packet say to host 192.168.2.3 - would Router A be able to filter that traffic via NBAR?

Of course it would assume ICMP redirects were not in play. Thank-you.

3 REPLIES

Re: Can NBAR filter traffic in one-interface routing?

NBAR stands for Network-Based Application Recognition. It does not restrict or filter by itself, it just 'discovers' the applications as they traverse the router. You can use ACL's to filter unwanted traffic.

Hope that helps.

New Member

Re: Can NBAR filter traffic in one-interface routing?

Yes - NBAR is used in conjunction with ACLs to do the filtering. So say you put said ACL at the inside interface - would the traffic in my scenario be filtered?

Re: Can NBAR filter traffic in one-interface routing?

An ACL can be used to filter applications. AFAIK ACL's can't be tied to NBAR for filtering. If you know of a way, please post a config or link. Thanks.

110
Views
0
Helpful
3
Replies
CreatePlease to create content