Chapter 4 Configuring Class Maps and Policy Maps
Class Maps and Policy Map Examples
4-60
Cisco 4700 Series Application Control Engine Appliance Administration Guide
OL-11157-01
Class Maps and Policy Map Examples
This section includes a series of examples that will show you how to use class
maps and policy maps to perform various operations on the ACE. This section
contains the following examples:
• Firewall Example
• Layer 7 Load-Balancing Example
• Layer 3 and Layer 4 Load-Balancing Example
• VIP With Connection Parameters Example
Firewall Example
This example shows how to create a firewall traffic policy (for inside interface
VLAN50) that enables the following processes to occur on the ACE:
• Permits ICMP packets from IP address 172.16.10.0 255.255.255.254.
• Permits SSH access to the ACE.
• Includes an ACL that allows the ACE to receive any HTTP traffic through the
VLAN.
• Filters on content to allow only HTTL headers that contain the “html”
expression.
• Filters a subset of the HTTP traffic using a content filtering rule that permits
the following packet types:
–
With an HTTP header length of 255 or less
–
Without the string “BAD” included in the URL
To Next Page
Loading...
