Go CCIE Go!! - A Cisco Certified Internetwork Expert

Nit,
1) queue-list 1 protocol http ———> incomplete config! queue-list 1 protocol ip 1 tcp www —-> correct config
See below please: SW1(config)#queue-list 1 protocol ht SW1(config)#queue-list 1 protocol http ? queue number
SW1(config)#queue-list 1 protocol http % Incomplete command.
SW1(config)#queue-list 1 protocol ip ? queue number
SW1(config)#queue-list 1 protocol ip 1 ? fragments Prioritize fragmented IP packets gt Classify packets greater than a specified size list To specify an access list lt Classify packets less than a specified size tcp Prioritize TCP packets ‘to’ or ‘from’ the specified port udp Prioritize UDP packets ‘to’ or ‘from’ the specified port
SW1(config)#queue-list 1 protocol ip 1 tcp ? Port number bgp Border Gateway Protocol (179) chargen Character generator (19) cmd Remote commands (rcmd, 514) daytime Daytime (13) discard Discard (9) domain Domain Name Service (53) echo Echo (7) exec Exec (rsh, 512) finger Finger (79) ftp File Transfer Protocol (21) ftp-data FTP data connections (20) gopher Gopher (70) hostname NIC hostname server (101) ident Ident Protocol (113) irc Internet Relay Chat (194) klogin Kerberos login (543) kshell Kerberos shell (544) login Login (rlogin, 513) lpd Printer service (515) nntp Network News Transport Protocol (119) pim-auto-rp PIM Auto-RP (496)
SW1(config)#queue-list 1 protocol ip 1 tcp www ?
SW1(config)#queue-list 1 protocol ip 1 tcp www SW1(config)#
2) permit tcp any any eq www ———> This matches outgoing http request permit tcp any eq www any ———> This matches http responses (return trafic)
Remember that when making http request, its the destination port number that is actually 80, not the source. As such, when the requests go out, the destination port will be 80 whilst the source could be any random number. And consequently, the return traffic will have a destination of random and source of 80, and hence your ACL resemblance.
HTH
Sadiq