Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

PBR with NBAR

Can anyone tell me if this will work? The idea is to classify certain HTTP traffic then route it over a secondary WAN link limiting some of the bandwidth hog websites from our primary link.

class-map match-any http-secondary-traffic
  match protocol http host *youtube.com*
  match protocol http host *video.google*
  match protocol http host "*myspace*"
  match protocol http host "*facebook*"
  match protocol http host "*flickr*"
  match protocol http host "*video.msn*"
  match protocol http host "*fbcdn.net*"
  match protocol http host "*grooveshark*"
 
policy-map mark-secondary-traffic
  class http-secondary-traffic
  set ip dscp 1
 
ip access-list extended http-secondary-traffic
  permit ip any any dscp 1

route-map route-http-secondary 10
  match ip address http-secondary-traffic
  set interface FastEthernet1
 
interface Vlan1
  ip policy route-map route-http-secondary
  service-policy input mark-secondary-traffic

1 ACCEPTED SOLUTION

Accepted Solutions
Cisco Employee

Re: PBR with NBAR

Hello,

This should work as you expect, although I didn't test it.

You need to be sure of the order of operations: marking needs to be done before PBR, but this should be the case in all IOS release.

You can check this in the recent CEF code (post 12.4(15)T image, not included) with "show cef interface ".

Here is an example with your config:

Router#sh cef int eth 1/0  

Ethernet1/0 is up (if_number 7)

[...]

  Input features: CCE Input Classification, QoS Marking, Policy Routing

  IP policy routing is enabled

[...]

You can see that QoS marking is before policy routing as said.

2 REPLIES
Cisco Employee

Re: PBR with NBAR

Hello,

This should work as you expect, although I didn't test it.

You need to be sure of the order of operations: marking needs to be done before PBR, but this should be the case in all IOS release.

You can check this in the recent CEF code (post 12.4(15)T image, not included) with "show cef interface ".

Here is an example with your config:

Router#sh cef int eth 1/0  

Ethernet1/0 is up (if_number 7)

[...]

  Input features: CCE Input Classification, QoS Marking, Policy Routing

  IP policy routing is enabled

[...]

You can see that QoS marking is before policy routing as said.

Cisco Employee

Here we are - 6 years later.

Here we are - 6 years later. I tested it and it works without any issue. Thanks!

2169
Views
20
Helpful
2
Replies
CreatePlease to create content