Chapter: Release Notes for NBAR2 Protocol Pack 3.1.0
Release Notes for NBAR2 Protocol Pack 3.1.0
Last Updated: February 15, 2013
Network Based Application Recognition (NBAR) Protocol Pack 3.1.0 is supported on Cisco ASR 1000 Series Aggregation Services Routers and Cisco ISR G2 Series Integrated Services Routers.
New Protocols in NBAR2 Protocol Pack 3.1.0
The following protocols are added to NBAR2 Protocol Pack 3.1.0:
BitTorrent Networking is a part of the BitTorrent protocol. It is responsible for acquiring peers from the tracker, DHT network, or any other means, and initiating data transfer sessions between the client and the acquired peers.
Xunlei is a download manager and p2p sharing application. Xunlei supports bittorent, edonkey, http, and ftp protocols. Xunlei also boosts the download speed using multi source technology.
Updated Protocols in NBAR2 Protocol Pack 3.1.0
The following protocols are updated in NBAR2 Protocol Pack 3.1.0:
Updated signatures to allow better blocking of the application.
Updated signatures to support mobile platforms (iOS and android).
Updated signatures to avoid potential misclassification as dns.
Other New Features in NBAR2 Protocol Pack 3.1.0
The following attribute groups added from Cisco IOS XE Release 3.8S can be used with the ipnbarattribute-map command:
For more information on the ipnbarattribute-map command, see the Quality of Service Solutions Command Reference.
Caveats in NBAR2 Protocol Pack 3.1.0
If you have an account on Cisco.com, you can also use the Bug Toolkit to find select caveats of any severity. To reach the Bug Toolkit, log in to Cisco.com and go to http://www.cisco.com/pcgi-bin/Support/Bugtool/launch_bugtool.pl. (If the defect that you have requested cannot be displayed, this may be due to one or more of the following reasons: the defect number does not exist, the defect does not have a customer-visible description yet, or the defect has been marked Cisco Confidential.)
Resolved Caveats in NBAR2 Protocol Pack 3.1.0
The following table lists the resolved caveats in NBAR2 Protocol Pack 3.1.0:
Traffic generated by pptv mobile clients might be classified as video-over-http.
Traffic generated by pandora might be misclassified in QoS mode.
Traffic generated by yahoo-messenger might be classified late in QoS mode.
Known Caveats in NBAR2 Protocol Pack 3.1.0
The following table lists the known caveats in NBAR2 Protocol Pack 3.1.0:
Traffic generated by pcAnywhere for mac and pcAnywhere mobile app might be misclassified as unknown
gtalk-video might be misclassified as rtp
gbridge pc client might not be blocked
Traffic generated by AIM Pro might be misclassified as unknown and webex-meeting
NBAR classification granularity may not work or some protocols may be classified as unknown. The CSCuc57822 caveat is specific to Cisco IOS XE Release 3.7S on Cisco ASR 1000 Series Aggregation Services Routers.
Traffic generated by the Netflix iPad app might be misclassified as http
Restrictions and Limitations in NBAR2 Protocol Pack 3.1.0
The following table lists the limitations and restrictions in NBAR2 Protocol Pack 3.1.0:
http traffic generated by the bitcomet bittorrent client might be classified as http
Application is discontinued and replaced with ms-lync, traffic generated by livemeeting may be classified as ms-lync
Encrypted video streaming generated by hulu might be classified as its underlying protocol rtmpe
Traffic generated by the logmein android app might be misclassified as ssl
Login and chat traffic generated by the ms-lync client might be misclassified as ssl
Voice traffic generated by secondlife might be misclassified as ssl