Traffic
Policing can be configured at any level of the policy-map hierarchy??”that is, at the primary level, the secondary
level, or the tertiary level. Example 7-9 shows a basic configuration applying Traffic Policing (Single-Rate
Policing).
Example 7-9. Configuring Traffic Policing
Code View:
Router(config)# class-map myclass
Router(config-cmap)# match access-group 101
Router(config-cmap)# exit
Router(config)# policy-map mypolicy
Router(config-pmap)# class-map myclass
Router(config-pmap-c)# police 8000 1000 1000 conform-action transmit exceed-action
drop violate-action drop
Router(config-pmap-c)#exit
Router(config-pmap)#exit
Router(config)# interface
Router(config-if)# service-policy [input | output] mypolicy
Network-Based Application Recognition (NBAR)
The NBAR feature adds application-level intelligent classification capability to the network infrastructures. NBAR
is a classification engine that recognizes a variety of applications and protocols from Layer 4 through Layer 7,
including web-based and other difficult-to-classify protocols that utilize static and dynamically assigned TCP and
UDP port numbers. NBAR classification extends by looking beyond the TCP/UDP port numbers of a packet and
packet headers.
Pages:
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382