Kamran You are using NBAR. A normal class map matches the protocol and you drop it at the edge.
Inspect type class-maps and policy-maps are a concept related to Zone-Based-Firewall. If you have a ZBF and you want deep packet inspection ( for example, not allowing file transfers using IM, while allowing IM between the zones), you use inspect type class maps. Unless you have a ZBF, these are not applicable. Regards On Sat, Mar 27, 2010 at 9:22 AM, Kamran Shakil <[email protected]>wrote: > Dears, > > > > > > Well, I have been successfully blocking the P2P traffic and tested it with > my softwares in my own lab setup with available internet connection to me > using class-maps. > > > > Recently , I saw some config in a workbook saying class-map type inspect > xyz and then blocking it , well as I said above, I just made a class-map > and I didn’t use inspect keyword … > > > > In which situation would I use L7 class-map inspect , although the block of > p2p works smoothly with normal L3/L4 Class maps … please anyone ? explain > ..thanks… > > > > > > > > > > truly, > > *Kamran Shakil* > > BS(CS) MCP MCSE CCNA CCDA CCNP CCDP CQS-WLANSE > > CQS-FOUNDSE CQS-IPCX CQS-UCCX > > CCIE*(Sec,inprogress) > > > > > > *" **MDS Cisco team** accepts no liability for the content of this email, > or for the consequences of any actions taken on the basis of the information > provided, unless that information is subsequently confirmed in writing. Any > views or opinions presented in this email are solely those of the author and > do not necessarily represent those of the organization. WARNING: Computer > viruses can be transmitted via email. The recipient should check this email > and any attachments for the presence of viruses. The organization accepts no > liability for any damage caused by any virus transmitted by this email. "* > ** > > > > > > > > _______________________________________________ > For more information regarding industry leading CCIE Lab training, please > visit www.ipexpert.com > >
<<image001.jpg>>
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com
