Table of Contents
Advertisement
Chapter 13: Access Control List Configuration Guide
The following command creates a Web caching policy that prevents packets matching
Profile ACL prof4's selection criteria (that is, packets with a source address of 10.10.10.10
and a destination address of 1.2.3.4) from being redirected to a cache server. Packets that
match the profile's selection criteria are sent to the Internet instead.
ia(config)# web-cache policy1 deny hosts profile prof4
When the Web caching policy is applied to an interface (with the web-cache apply
interface command), HTTP traffic with a source address of 10.10.10.10 and a destination
address of 1.2.3.4 goes to the Internet instead of to the cache servers.
Preventing Web Objects From Being Cached
You can also use a Profile ACL to prevent certain Web objects from being cached. For
example, you can specify that information in packets originating from Internet site 1.2.3.4
and destined for local host 10.10.10.10 not be sent to the cache servers. The following
commands illustrate this example.
This command creates a Profile ACL called prof5 that uses as its selection criteria all
packets with a source address of 1.2.3.4 and a destination address of 10.10.10.10:
ia(config)# acl prof5 permit ip 1.2.3.4 10.10.10.10
To have packets matching Profile ACL prof5's selection criteria bypass the cache servers,
use the following command:
ia(config)# web-cache policy1 create bypass-list profile prof5
When the Web caching policy is applied to an interface, information in packets originating
from source address 1.2.3.4 and destined for address 10.10.10.10 is not sent to the cache
servers.
See
"Web Caching" on page 206
224
for more information on using the web-cache command.
Internet Appliance User Reference Manual
Advertisement
Table of Contents
