Chapter: Release Notes for NBAR2 Protocol Pack 3.0.0
Release Notes for NBAR2 Protocol Pack 3.0.0
Last Updated: November 30, 2012
Network Based Application Recognition (NBAR) Protocol Pack 3.0.0 is supported on Cisco ASR 1000 Series Aggregation Services Routers and Cisco ISR G2 Series Integrated Services Routers.
New Protocols in NBAR2 Protocol Pack 3.0.0
The following protocols are added to NBAR2 Protocol Pack 3.0.0:
Apple Remote Desktop (ARD)
ARD is a desktop management system for Mac OS X users that is produced by Apple Inc. This protocol allows users to control or monitor other computers over a network. ARD replaces Apple Network Assistant, a similar product.
IBM Lotus Notes
IBM Lotus Notes provides integrated collaboration functionality such as Calender, Contacts Management, E-mail, IBM Lotus Symphony (an office productivity suite), Instant Message, Track, and access to other Lotus Domino applications and databases.
PPTV (also known as PPLive) developed by PPLive, is a leading online TV service that offers live streaming and video-on-demand of TV programs/shows, movies, drama, sports, news and entertainment video contents. The service is accessible either from its website or from client software installation. PPTV is now available for a variety of systems, including windows PC, Mac, Android mobile phones, and iPads.
QQLive is a live streaming video freeware created by Tencent. QQLive uses advanced P2P streaming media to ensure program fluency with many people viewing the video at the same time.
SPDY (pronounced speedy) is an open networking protocol developed primarily at Google for transporting web content. SPDY is similar to HTTP, with particular goals to reduce web page load latency and improve web security. SPDY achieves reduced latency through compression, multiplexing, and prioritization. The name "SPDY" is a trademark of Google.
Updated Protocols in NBAR2 Protocol Pack 3.0.0
The following protocols are updated in NBAR2 Protocol Pack 3.0.0:
Added support for Microsoft Lync in Microsoft Office 365.
Updated signatures to support msn-messenger on IPv6 environment.
Updated signatures to support Skype version 188.8.131.52 and to allow better blocking of skype.
Deprecated Protocols in NBAR2 Protocol Pack 3.0.0
The following protocols are deprecated in NBAR2 Protocol Pack 3.0.0:
Replaced with lotus-notes.
Replaced with apple-remote-desktop.
Other New Features (FE/SC/Attributes) in NBAR2 Protocol Pack 3.0.0
Caveats in NBAR2 Protocol Pack 3.0.0
If you have an account on Cisco.com, you can also use the Bug Toolkit to find select caveats of any severity. To reach the Bug Toolkit, log in to Cisco.com and go to http://www.cisco.com/pcgi-bin/Support/Bugtool/launch_bugtool.pl. (If the defect that you have requested cannot be displayed, this may be due to one or more of the following reasons: the defect number does not exist, the defect does not have a customer-visible description yet, or the defect has been marked Cisco Confidential.)
Resolved Caveats in NBAR2 Protocol Pack 3.0.0
The following table lists the resolved caveats in NBAR2 Protocol Pack 3.0.0:
IPv6 traffic generated by msn-messenger might be misclassified as ssl
msn-messenger-video and msn-messenger-ft are not working in QoS mode.
Known Caveats in NBAR2 Protocol Pack 3.0.0
The following table lists the known caveats in NBAR2 Protocol Pack 3.0.0:
Traffic generated by pcAnywhere for mac and pcAnywhere mobile app might be misclassified as unknown
Voice traffic generated by secondlife might be misclassified as ssl
Traffic generated by the logmein android app might be misclassified as ssl
ms-lync login and chat traffic might be misclassified as ssl
gtalk-video might be misclassified as rtp
gbridge pc client might not be blocked
Traffic generated by AIM Pro might be misclassified as unknown and webex-meeting
NBAR classification granularity may not work or some protocols may be classified as unknown
Increase in NBAR activation time after loading NBAR2 Protocol Packs 2.1.0 and 3.0.0. The CSCud02101 caveat is specific to Cisco ISR G2 series Integrated Services Routers only.
Traffic generated by pptv mobile clients might be classified as video-over-http
Traffic generated by pptv might be misclassified in QoS mode
Traffic generated by pandora might be misclassified in QoS mode
Traffic generated by yahoo-messenger might be classified late in QoS mode
Restrictions and Limitations in NBAR2 Protocol Pack 3.0.0
The following table lists the limitations and restrictions in NBAR2 Protocol Pack 3.0.0:
http traffic generated by the bitcomet bittorrent client might be classified as http
Application is discontinued and replaced with ms-lync, traffic generated by livemeeting may be classified as ms-lync
Encrypted video streaming generated by hulu might be classified as its underlying protocol rtmpe