2012/8/13 Rogerio Freitas <[email protected]>
Guys,
>
> I'm very confused about the use of match-any vs match-all, Can anyone here
> help please?
>
> When using either option I want to make sure my understaing is correct. If
> we use the match-any then it means that under the class-map it can match
> ANY of the options we have configured, it can match 1, 2 or all at once and
> it would still work? Using the match-all it means that it MUST match all
> the rules we have configured else it would not apply, is this correct?
>
Your understanding is correct.
> I want to know to when those commands can be useful!
>
> For example:
>
> ZBF: I can use match-any and match-all
>
> control-plane: I can use match-any and match-all
>
> control-plane host: I can use match-any and match-all
>
> control-plane queue-threshold: I can use match-any and match-all
>
> control-plane port-filter: I need always use match-all!!
>
I don't see any reason not to use match-any in policy-map type port-filter.
The simpliest example:
class-map type port-filter *match-any* c-PORT
match port tcp 80
match port tcp 443
policy-map type port-filter p-PORT
class c-PORT
drop
log
control-plane host
service-policy type port-filter input p-PORT
--
Marta Sokolowska.
_______________________________________________
For more information regarding industry leading CCIE Lab training, please visit
www.ipexpert.com
Are you a CCNP or CCIE and looking for a job? Check out
www.PlatinumPlacement.com
