Posts Tagged ‘url’


NBAR protocol classification feature has long supported enhanced HTTP URL matching features. However, Cisco documentation site never provided a detailed description of the pattern language used for URL matching; neither has it explained how the engine matches client/server data streams. In this post we will give an overview of how NBAR works with URL filtering.

We will arrange this post in a FAQ manner as follows.

Continue Reading

Tags: , , , , , ,


Hi Brian,

Can we use NBAR on the gateway router to prevent internal users from watching video streams from any video web site (like


Hi Ahmed,

Yes, NBAR can be used to apply application based filters such as blocking traffic. To accomplish this we can categorize traffic based on the HTTP hostname. Next we will create a policy-map that matches the class and drops the traffic. Lastly the policy is applied outbound to the Internet. Syntax-wise this would read:

class-map match-all YOUTUBE
 match protocol http host "**"
policy-map DROP_YOUTUBE
 class YOUTUBE
interface FastEthernet0/0
 description TO INTERNET
 service-policy output DROP_YOUTUBE

NBAR for HTTP can also be used to match based on URL string or IANA MIME type. For more information see:

Network-Based Application Recognition and Distributed Network-Based Application Recognition

Tags: , , ,


CCIE Bloggers