Default Application Policies
Cisco WAAS includes over 150 default application policies that help your WAAS system classify and optimize some of the most common traffic on your network.
Table A-1 lists the default applications and classifiers that WAAS will either optimize or pass through based on the policies that are provided with the system.
Before you create a new application policy, we recommend that you review the default policies and modify them as appropriate. Often, you can more easily modify an existing policy than create a new one.
When reviewing Table A-1, note the following information:
•The subheadings represent the application names, and the associated classifiers are listed under these subheadings. For example, Authentication is a type of application and Kerberos is a classifier for that application.
•Applications with the word (monitored) next to them are monitored by the WAAS Central Manager, which can only display statistics for 20 applications at a time. To view statistics for one of the unmonitored applications, use one of the following methods:
–Use the WAAS CLI, which can display statistics for all applications on a WAAS device. For more information, see the Cisco Wide Area Application Services Command Reference.
–Modify the application settings so the WAAS Central Manager GUI displays statistics for the desired application. For more information, see Chapter 12, "Configuring Application Acceleration."
WAAS uses the following optimization technologies based on the type of traffic it encounters:
•TFO (transport flow optimization)—A collection of optimization technologies such as automatic windows scaling, increased buffering, and selective acknowledgement that optimize all TCP traffic over your network.
•RE (redundancy elimination)—A compression technology that reduces the size of transmitted data by removing redundant information before sending the shortened data stream over the WAN. RE operates on significantly larger streams and maintains a much larger compression history than LZ compression.
•LZ (compression)—Another compression technology that operates on smaller data streams and keeps limited compression history compared to RE.
.
Table A-1 Default Traffic Policies
|
|
|
Authentication |
Kerberos |
Passthrough |
88, 2053, 754, 888, 543, 464, 544, 749 |
SASL |
Passthrough |
3659 |
TACACS |
Passthrough |
49 |
Backup (monitored) |
CommVault |
TFO |
8400-8403 |
Connected-DataProtector |
TFO |
16384 |
IBM-TSM |
LZ+TFO+DRE |
1500-1502 |
Legato-NetWorker |
TFO |
7937, 7938, 7939 |
Legato-RepliStor |
TFO |
7144, 7145 |
Veritas-BackupExec |
TFO |
6101, 6102, 6106, 3527, 1125 |
Veritas-NetBackup |
TFO |
13720, 13721, 13782, 13785 |
CAD |
PDMWorks |
LZ+TFO+DRE |
30000, 40000 |
Call-Management |
Cisco-CallManager |
Passthrough |
2748 |
SIP-secure |
Passthrough |
5061 |
VoIP-Control |
Passthrough |
1300, 2428, 2000-2002, 1718-1720, 5060, 11720, 11000-11999 |
Conferencing |
CU-SeeMe |
Passthrough |
7640, 7642, 7648, 7649 |
ezMeeting |
Passthrough |
10101-10103, 26260-26261 |
Intel-Proshare |
Passthrough |
5713-5717 |
MS-NetMeeting |
Passthrough |
522, 1503, 1720, 1731 |
VocalTec |
Passthrough |
1490, 6670, 25793, 22555 |
Console |
SSL-Shell |
Passthrough |
614 |
Telnet |
Passthrough |
23, 107, 513 |
Telnets |
Passthrough |
992 |
Unix-Remote-Execution |
Passthrough |
514, 512 |
Content-Management (monitored) |
Documentum |
LZ+TFO+DRE |
1489 |
Filenet |
LZ+TFO+DRE |
32768-32774 |
ProjectWise-FileTransfer |
LZ+TFO+DRE |
5800 |
Directory-Services (monitored) |
LDAP |
LZ+TFO+DRE |
389, 8404 |
LDAP-Global-Catalog |
LZ+TFO+DRE |
3268 |
LDAP-Global-Catalog-Secure |
Passthrough |
3269 |
LDAP-secure |
Passthrough |
636 |
Email-and-Messaging (monitored) |
HP-OpenMail |
LZ+TFO+DRE |
5755, 5757, 5766, 5767, 5768, 5729 |
Internet-Mail |
LZ+TFO+DRE |
25, 110, 143, 220 |
Internet-Mail-secure |
TFO |
995, 993, 465 |
Lotus-Notes |
LZ+TFO+DRE |
1352 |
MAPI1 |
LZ+TFO+DRE |
UUID:a4f1db00-ca47-1067-b31f-00dd010662da |
MDaemon |
LZ+TFO+DRE |
3000, 3001 |
NNTP |
LZ+TFO+DRE |
119 |
NNTP-secure |
TFO |
563 |
Novell-Groupwise |
LZ+TFO+DRE |
1677, 1099, 9850, 7205, 3800, 7100, 7180, 7101, 7181, 2800 |
PCMail-Server |
LZ+TFO+DRE |
158 |
QMTP |
LZ+TFO+DRE |
209 |
X400 |
LZ+TFO+DRE |
102 |
Enterprise-Applications (monitored) |
SAP |
LZ+TFO+DRE |
3200-3399, 3600-3699 |
Siebel |
LZ+TFO+DRE |
8448, 2320, 2321 |
File-System (monitored) |
AFS |
LZ+TFO+DRE |
7000-7009 |
Apple-AFP |
LZ+TFO+DRE |
548 |
NFS-non-wafs |
LZ+TFO+DRE |
2049 |
Novell-NetWare |
LZ+TFO+DRE |
524 |
File-Transfer (monitored) |
BFTP |
LZ+TFO+DRE |
152 |
FTP-Control2 |
Passthrough |
src20, 21 |
FTP-Data2 |
LZ+TFO+DRE |
src20, 21 |
FTPS2 |
TFO |
src990 |
FTP-Control2 |
Passthrough |
src989 |
Simple-FTP |
LZ+TFO+DRE |
115 |
TFTP |
LZ+TFO+DRE |
69 |
TFTPS |
TFO |
3713 |
Instant Messaging |
AOL |
Passthrough |
5190-5193 |
Apple-iChat |
Passthrough |
5297, 5298 |
IRC |
Passthrough |
531, 6660-6669 |
Jabber |
Passthrough |
5222, 5269 |
Lotus-Sametime-Connect |
Passthrough |
1533 |
MS-Chat |
Passthrough |
6665, 6667 |
MSN-Messenger |
Passthrough |
1863, 6891-6900 |
Yahoo-Messenger |
Passthrough |
5000, 5001, 5050, 5100 |
Name Services |
DNS |
Passthrough |
53 |
iSNS |
Passthrough |
3205 |
Service-Location |
Passthrough |
427 |
WINS |
Passthrough |
42, 137, 1512 |
Other (monitored) |
Basic-TCP-services |
Passthrough |
1-19 |
MS-EndPointMapper |
EPM |
135 |
MS-Message-Queuing |
LZ+TFO+DRE |
1801, 2101, 2103, 2105 |
NTP |
Passthrough |
123 |
Other-Secure |
Passthrough |
261, 448, 684, 695, 994, 2252, 2478, 2479, 2482, 2484, 2679, 2762, 2998, 3077, 3078, 3183, 3191, 3220, 3410, 3424, 3471, 3496, 3509, 3529, 3539, 3660, 3661, 3747, 3864, 3885, 3896, 3897, 3995, 4031, 5007, 5989, 5990, 7674, 9802, 11751, 12109 |
SOAP |
LZ+TFO+DRE |
7627 |
Symantec-AntiVirus |
LZ+TFO+DRE |
2847, 2848, 2967, 2968, 38037, 38292 |
Unclassified |
LZ+TFO+DRE |
Other |
P2P (monitored) |
BitTorrent |
Passthrough |
6881-6889, 6969 |
eDonkey |
Passthrough |
4661, 4662 |
Gnutella |
Passthrough |
6346-6349, 6355, 5634 |
Grouper |
Passthrough |
8038 |
HotLine |
Passthrough |
5500-5503 |
Kazaa |
Passthrough |
1214 |
Laplink-ShareDirect |
Passthrough |
2705 |
Napster |
Passthrough |
8875, 8888, 7777, 6700, 6666, 6677, 6688 |
Qnext |
Passthrough |
44, 5555 |
SoulSeek |
Passthrough |
2234, 5534 |
WASTE |
Passthrough |
1337 |
WinMX |
Passthrough |
6699 |
Printing (monitored) |
AppSocket |
LZ+TFO+DRE |
9100 |
IPP |
LZ+TFO+DRE |
631 |
SUN-Xprint |
LZ+TFO+DRE |
8100 |
Unix-Printing |
LZ+TFO+DRE |
515, 170 |
Remote-Desktop (monitored) |
Altiris-CarbonCopy |
Passthrough |
1680 |
Apple-NetAssistant |
Passthrough |
3283 |
Citrix-ICA |
LZ+TFO+DRE |
1494 |
ControlIT |
TFO |
799 |
Danware-NetOp |
TFO |
6502 |
Laplink-Host |
TFO |
1547 |
Laplink-PCSync |
TFO |
8444 |
Laplink-PCSync-secure |
TFO |
8443 |
MS-Terminal-Services |
TFO |
3389 |
Netopia-Timbuktu |
TFO |
407, 1417-1420 |
PCAnywhere |
TFO |
73, 5631, 5632, 65301 |
RAdmin |
TFO |
4899 |
Remote-Anything |
TFO |
3999, 4000 |
Vmware-VMConsole |
TFO |
902 |
VNC |
TFO |
5800-5809, 6900-6909 |
XWindows |
TFO |
6000-6063 |
Replication (monitored) |
EMC-Celerra-Replicator |
LZ+TFO+DRE |
8888 |
MS-AD-Replication1 |
LZ+TFO+DRE |
UUID:e3514235-4b06-11d1-ab04-00c04fc2dcd2 |
MS-Content-Replication-Service |
TFO |
560, 507 |
MS-FRS1 |
LZ+TFO+DRE |
UUID:f5cc59b4-4264-101a-8c59-08002b2f8426 |
Netapp-SnapMirror |
LZ+TFO+DRE |
10566 |
Remote-Replication-Agent |
TFO |
5678 |
Rsync |
TFO |
873 |
SQL (monitored) |
Borland-Interbase |
LZ+TFO+DRE |
3050 |
IBM-DB2 |
LZ+TFO+DRE |
523 |
InterSystems-Cache |
LZ+TFO+DRE |
1972 |
MS-SQL |
LZ+TFO+DRE |
1433 |
MS-SQL-RPC1 |
LZ+TFO+DRE |
UUID:3f99b900-4d87-101b-99b7-aa0004007f07 |
MySQL |
LZ+TFO+DRE |
3306 |
Oracle |
LZ+TFO+DRE |
66, 1525, 1521 |
Pervasive-SQL |
LZ+TFO+DRE |
1583 |
PostgreSQL |
LZ+TFO+DRE |
5432 |
Scalable-SQL |
LZ+TFO+DRE |
3352 |
SQL-Service |
LZ+TFO+DRE |
156 |
Sybase-SQL |
LZ+TFO+DRE |
1498, 2638, 2439, 3968 |
UniSQL |
LZ+TFO+DRE |
1978, 1979 |
SSH |
SSH |
TFO |
22 |
Storage (monitored) |
FCIP |
LZ+TFO+DRE |
3225 |
iFCP |
LZ+TFO+DRE |
3420 |
iSCSI |
LZ+TFO+DRE |
3260 |
Streaming (monitored) |
Liquid-Audio |
LZ+TFO+DRE |
18888 |
MS-NetShow |
LZ+TFO+DRE |
1755 |
RTSP |
LZ+TFO+DRE |
554, 8554 |
VDOLive |
LZ+TFO+DRE |
7000 |
Systems-Management (monitored) |
BMC-Patrol |
Passthrough |
6161, 6162, 8160, 8161, 6767, 6768, 10128 |
HP-OpenView |
Passthrough |
7426-7431, 7501, 7510 |
HP-Radia |
LZ+TFO+DRE |
3460, 3461, 3464, 3466 |
IBM-NetView |
Passthrough |
729-731 |
IBM-Tivoli |
LZ+TFO+DRE |
94, 627, 1965, 1500, 1580, 1581 |
LANDesk |
LZ+TFO+DRE |
9535, 9593-9595 |
NetIQ |
Passthrough |
2220, 2735, 10113-10116 |
Netopia-netOctopus |
Passthrough |
1917, 1921 |
Novell-ZenWorks |
LZ+TFO+DRE |
1761-1763, 517, 2544, 8039, 2037, 2638 |
WBEM |
Passthrough |
5987, 5988 |
Version Management (monitored) |
Clearcase |
LZ+TFO+DRE |
371 |
CVS |
LZ+TFO+DRE |
2401 |
VPN |
L2TP |
TFO |
1701 |
OpenVPN |
TFO |
1194 |
PPTP |
TFO |
1723 |
WAFS (monitored) |
CIFS |
LZ+TFO+DRE, WAFS acceleration |
139, 445 |
WAFS |
LZ+TFO+DRE |
139, 145 |
Web (monitored) |
HTTP |
LZ+TFO+DRE |
80, 8080, 8000, 8001, 3128 |
HTTPS |
TFO |
443 |