blog
    Using NBAR for Applicatio ...
    08 May 08

    Using NBAR for Application Filtering

    Posted byBrian McGahan
    facebooktwitterlinkedin
    news-featured

    Hi Brian,

    Can we use NBAR on the gateway router to prevent internal users from watching video streams from any video web site (like Youtube.com)?

    Ahmed

    Hi Ahmed,

    Yes, NBAR can be used to apply application based filters such as blocking youtube.com traffic. To accomplish this we can categorize traffic based on the HTTP hostname. Next we will create a policy-map that matches the youtube.com class and drops the traffic. Lastly the policy is applied outbound to the Internet. Syntax-wise this would read:

    R1#
    
class-map match-all YOUTUBE
    
 match protocol http host "*youtube.com*"
    
!
    
policy-map DROP_YOUTUBE
    
 class YOUTUBE
    
   drop
    
!
    
interface FastEthernet0/0
    
 description TO INTERNET
    
 service-policy output DROP_YOUTUBE

    NBAR for HTTP can also be used to match based on URL string or IANA MIME type. For more information see:

    Network-Based Application Recognition and Distributed Network-Based Application Recognition

    Hey! Don’t miss anything - subscribe to our newsletter!

    © 2022 INE. All Rights Reserved. All logos, trademarks and registered trademarks are the property of their respective owners.
    Terms of servicePrivacy policy
    instagram Logofacebook Logotwitter Logolinkedin Logoyoutube Logo