beautypg.com

Cabletron Systems SMARTSWITCH ROUTER 9032578-05 User Manual

Page 298

background image

Chapter 19: Access Control List Configuration Guide

272

SmartSwitch Router User Reference Manual

Redirecting HTTP Traffic to Cache Servers

You can use a Profile ACL to specify which HTTP traffic should always (or never) be
redirected to the cache servers. (By default, when Web caching is enabled, all HTTP traffic
from all hosts is redirected to the cache servers unless you specify otherwise.)

For example, you can specify that packets with a source address of 10.10.10.10 and a
destination address of 1.2.3.4 always are sent to the Internet and never to the cache
servers. The following commands illustrate this example.

This command creates a Profile ACL called prof4 that uses as its selection criteria all
packets with a source address of 10.10.10.10 and a destination address of 1.2.3.4 :

The following command creates a Web caching policy that prevents packets matching
Profile ACL prof4’s selection criteria (that is, packets with a source address of 10.10.10.10
and a destination address of 1.2.3.4) from being redirected to a cache server. Packets that
match the profile’s selection criteria are sent to the Internet instead.

When the Web caching policy is applied to an interface (with the web-cache apply
interface

command), HTTP traffic with a source address of 10.10.10.10 and a destination

address of 1.2.3.4 goes to the Internet instead of to the cache servers.

Preventing Web Objects From Being Cached

You can also use a Profile ACL to prevent certain Web objects from being cached. For
example, you can specify that information in packets originating from Internet site 1.2.3.4
and destined for local host 10.10.10.10 not be sent to the cache servers. The following
commands illustrate this example.

This command creates a Profile ACL called prof5 that uses as its selection criteria all
packets with a source address of 1.2.3.4 and a destination address of 10.10.10.10:

To have packets matching Profile ACL prof5’s selection criteria bypass the cache servers,
use the following command:

When the Web caching policy is applied to an interface, information in packets originating
from source address 1.2.3.4 and destined for address 10.10.10.10 is not sent to the cache
servers.
See

“Web Caching” on page 244

for more information on using the web-cache command.

ssr(config)# acl prof4 permit ip 10.10.10.10 1.2.3.4

ssr(config)# web-cache policy1 deny hosts profile prof4

ssr(config)# acl prof5 permit ip 1.2.3.4 10.10.10.10

ssr(config)# web-cache policy1 create bypass-list profile prof5

See also other documents in the category Cabletron Systems Hardware: