Guest

Cisco Service Control Application-Protocols

Cisco Service Control Application for Broadband Protocol Pack Notes (Current)

Hierarchical Navigation

Downloads

Table Of Contents

Cisco Service Control Application for Broadband Protocol Pack Notes, Protocol Pack #28

Introduction

Contents

Overview

Installation

SCA BB Protocol Pack #28

Compatibility Information

Protocol Library Updates

IPv6

New Protocols

Updated Protocols

New Flavors

Updated Flavors

New Zones

Resolved Caveats

Known Limitations

Known Caveats

Protocol Signature Details

SCA BB Protocol Pack #27

Compatibility Information

Protocol Library Updates

IPv6 Protocols

New Protocols

Updated Protocols

New Flavors

Updated Flavors

New Zones

Resolved Caveats

Known Limitations

Known Caveats

Protocol Signature Details

SCA BB Protocol Pack #26

Compatibility Information

Protocol Library Updates

New Protocols

Updated Protocols

New Flavors

Updated Flavors

New Zones

Resolved Caveats

Open Caveats

Protocol Signature Details

SCA BB Protocol Pack #25

Compatibility Information

Protocol Library Updates

New Protocols

Updated Protocols

New Flavors - (Supported by 3.5.5 and later)

Updated Flavors - (Supported by 3.5.5 and later)

New Zones - (Supported by 3.5.5 and later)

Resolved Caveats

Known Limitations

Protocol Signature Details

SCA BB Protocol Pack #24

Compatibility Information

Protocol Library Updates

New Protocols

Updated Protocols

New Flavors - (Supported by 3.5.5 and later)

Resolved Issues

Known Limitations

Protocol Signature Details

SCA BB Protocol Pack #23

Compatibility Information

Protocol Library Updates

New Protocols

Updated Protocols

New Flavors - (Supported by 3.5.5 and later)

Resolved Issues

Known Limitations

Protocol Signature Details

Manual Configuration (Release 3.1.7 only)

SCA BB Protocol Pack #22

Compatibility Information

Protocol Library Updates

New Protocols

Updated Protocols

New Flavors - (Supported by 3.5.5 and later)

Resolved Issues

Known Limitations

DSS Content (Release 3.1.7 only)

Protocol Signature Details

Manual Configuration (Release 3.1.7 only)

SCA BB Protocol Pack #21

Compatibility Information

Protocol Library Updates

New Protocols

Updated Protocols

New Flavors - (Supported by Release 3.5.5 and later)

Resolved Issues

Known Limitations

Known Limitations: Protocol Specific

DSS Content (Release 3.1.7 only)

Protocol Signature Details

Manual Configuration (Release 3.1.7 only)

SCA BB Protocol Pack #20

Compatibility Information

Protocol Library Updates

New Protocols

Updated Protocols

New Flavors - (Supported by Release 3.5.0 and later)

Resolved Issues

Known Limitations

DSS Content (Release 3.1.7 only)

Protocol Signature Details

Manual Configuration (Release 3.1.7 only)

SCA BB Protocol Pack #19

Compatibility Information

Protocol Library Updates

New Protocols

Updated Protocols

New Flavors - (Supported by Release 3.5.0 and later)

Resolved Issues

Known Limitations

DSS Content

Protocol Signature Details

Manual Configuration

Obtaining Documentation and Submitting a Service Request


Cisco Service Control Application for Broadband Protocol Pack Notes, Protocol Pack #28

Revised: May 16, 2012, OL-23979-07

Introduction

These protocol pack notes for the Cisco Service Control Application for Broadband (SCA BB) describe the content of the following protocol packs, which are available at the Software Download page of the Cisco website.

PP #28

PP #27

PP #26

PP #25

PP #24

PP #23

PP #22

PP #21

PP #20

PP #19

For information about previous protocol packs, see http://www.cisco.com/en/US/docs/cable/serv_exch/serv_control/broadband_app/protocol_ref_guide/protocol_ref_guide.html.

Contents

Overview

Cisco protocol packs include new and improved protocol signatures for SCA BB. A typical signature update is a file containing new and updated signatures for better detection of new or updated popular peer-to-peer applications, gaming applications, and other interesting protocols. When loaded into the SCE platform, these signatures improve classification abilities of SCA BB with minimal or zero SCE platform service downtime.

The protocol pack files are available for Cisco partners and customers for download from the Software Download page of the Cisco website.

Cisco offers an e-mail notification service that notifies customers and partners each time a new protocol pack becomes available for download. To register for this service, please contact the relevant Cisco account team.

Installation

Installation of the SCA BB Protocol Pack #28 involves a replacement of the SCE platform application. This is done automatically as part of the SPQI installation using hitless upgrade mechanism. For more detailed information, see the Cisco Service Control Application for Broadband User Guide for your SCA BB release:

3.6.6

3.7.0

3.7.1

3.7.2

3.7.5

Note 3.6.5 Protocol pack image can be installed over 3.6.5 and 3.6.6 SCOS.

SCA BB Protocol Pack #28

Compatibility Information

Note SCE2000 SPQI image can be installed in SCE1000 for Protocol Pack #25, Protocol Pack #26. Protocol Pack #27, and Protocol Pack #28.

The SCA BB Protocol Pack #28 can be installed on an SCE 1000, SCE 2000, or SCE8000 platform on which one of the following versions of SCA BB has already been installed.

This Protocol Pack can be installed on top of the following platforms,

SCA BB Release 3.6.6

SCA BB Release 3.7.0

SCA BB Release 3.7.1

SCA BB Release 3.7.2

SCA BB Release 3.7.5

Protocol Library Updates

IPv6

Download over HTTP

Telnet

New Protocols

Hyves

SD Gundam capsule fighter online

Lotus Domino

Skype IM (v5.8)

Skype Video (v5.8 - UDP)

Skype [For SkypeOut TCP traffic]

PC v5.8

Android v2.6

iPhone v3.7

Updated Protocols

Behavioral Upload/Download

What's app

v2.6.x

v2.7.x

Skype Voip (v5.8)

Skype File Transfer (v5.8)

Skype Video (v5.8 - TCP)

Skype [For SkypeOut UDP traffic]

PC v5.8

Android v2.7

iPhone v3.7

RTMPE (Encrypted Joost & iTV traffic )

NTP v4

MSN Voip

PPLive

Dropbox [Change in the buddy protocol]

New Flavors

vuze.com

Hyves

Updated Flavors

None

New Zones

None

Resolved Caveats

CSCtc30635

Weak PPLive signature from PP#18 misclassifies other traffic as PPLive.

CSCty26294

vuze.com gets blocked if bittorrent traffic is blocked.

CSCth87103

MSN Voip not blocked after the first call in the login session.

CSCtw49717

SCE2020 3.5.5 PP24 misclassifies NTP as Skye and other protocols.

CSCtw92305

Issue after upgrading to PP verions 25/26.

Known Limitations

None

Known Caveats

None

Protocol Signature Details

The following table contains protocol IDs for the protocols that were added or enhanced in Protocol Pack #28. These IDs appear in the PROTOCOL_ID field of RDRs that are generated for these protocols.

Table 1 New/Enhanced Protocols in SCA BB Protocol Pack #28

Protocol Name
Protocol ID
Comment
Buddy Protocol
Default Service

Hyves

1200

None

Jabber

Other instant messaging

Skype-IM(V5.8)

1199

None

Skype

instant messaging

LotusDomino

1198

None

DAUM

e-mail

SD Gundam capsule fighter online

1197

None

Doom

PC Gaming

Dropbox

1180

Buddy protocol changed

Binary over HTTP

Other file sharing


SCA BB Protocol Pack #27

Compatibility Information

Note SCE2000 SPQI image can be installed in SCE1000 for Protocol Pack #25, Protocol Pack #26 and Protocol Pack #27.

The SCA BB Protocol Pack #27 can be installed on an SCE 1000, SCE 2000, or SCE8000 platform on which one of the following versions of SCA BB has already been installed.

This Protocol Pack can be installed on top of the following platforms,

SCA BB Release 3.6.6

SCA BB Release 3.7.0

SCA BB Release 3.7.1

SCA BB Release 3.7.2

Protocol Library Updates

IPv6 Protocols

Note IPv6 protocols are applicable for Release 3.7.5.

Download over HTTP

Telnet

Facebook

Youtube

Http

Ftp

Tftp

NNTP

Encrypted Bittorrent

Non-Encrypted Bittorrent

Ms -Exchange Desktop

SpeedyShare

All protocols under 'Other Well-Known Ports' service

SMTP

POP3

New Protocols

Champions Online

Spotify

Facetime

Nimbuzz v 2.09

Qvod v5.0.81

Call of Duty -BlackOps

Team Fortess 2

War Craft 3

Telnet

iMessage

Updated Protocols

BitTorrent 7.2

uTorrent 3.0

BBC iPlayer v 3.2.13

Whatsapp v 2.6

RTMP and RTMPS

ooVoo v3.0.1.46

PPLive

iTel

Steam

SSL v3

New Flavors

BitshareUpload

BitshareDownload

WuploadUpload

WuploadDownload

MegasharesUpload

MegasharesDownload

PlunderDownload

EnteruploadUpload

EnteruploadDownload

FurknetUpload

FurknetDownload

UploadstationUpload

UploadstationDownload

VipfileUpload

QvodVideo

SpotifyFlavor

SpotifyReferer

NicoVideo

Updated Flavors

None

New Zones

None

Resolved Caveats

CSCtu38241

whatsapp support from version 2.6 onwards

CSCtn89419

XBOX live misclassifying with PPLive

Known Limitations

QVOD protocol Blocking can be achieved by rate-limiting at 2kbps.

Work around to block BBC iplayer's video streaming and radio streaming, apply a rate limit of 5 Kbps on BBC iplayer over RTMP protocol.

Blocking Spotify music without blocking spotify login is not supported.

BBC iPlayer v 3.2.13 Watch Live feature is not supported for BBC TV channels.

Known Caveats

None

Protocol Signature Details

The following table contains protocol IDs for the protocols that were added or enhanced in Protocol Pack #27. These IDs appear in the PROTOCOL_ID field of RDRs that are generated for these protocols.

Table 2 New/Enhanced Protocols in SCA BB Protocol Pack #27

Protocol Name
Protocol ID
Comment
Buddy Protocol
Default Service

Champions Online

1189

NA

Doom

PC Gaming

Dropbox

1180

NA

vagaa

Other file sharing

Spotify

1195

NA

Sling

Audio and Video over HTTP

Facetime

1190

NA

Naver

Other VoiP

Nimbuzz

1191

NA

RTP

Other VoIP

Qvod v5.0.81

1181

QVOD downloading can be blocked using a 2kbps rate limiting instead of using the direct block option in the Cisco SCABB.

HyppTV

Other Internet Video

Telnet

911

NA

Telnet

Terminals

WarCraft 3

1192

NA

Doom

PC Gaming

Call of Duty - Black Ops

1193

NA

Doom

PC Gaming

Team Fortress 2

1194

NA

Doom

PC Gaming

iMessage

1188

NA

Jabber

Other Instant Messaging


Note When Protocol Pack #26 PQB is upgraded to Protol Pack #27, ensure Dropbox is mapped under 'Other File Sharing'. If it's not available, create a new service called 'Other File Sharing' under 'File Sharing' and add Dropbox to it.

SCA BB Protocol Pack #26

Compatibility Information

Note SCE2000 SPQI image can be installed in SCE1000 for Protocol Pack #25 and Protocol Pack #26.

The SCA BB Protocol Pack #26 can be installed on an SCE 1000, SCE 2000, or SCE8000 platform on which one of the following versions of SCA BB has already been installed.

This Protocol Pack can be installed on top of the following platforms,

"SCA BB Release 3.6.1

"SCA BB Release 3.6.6

"SCA BB Release 3.7.0

Protocol Library Updates

New Protocols

31SMS v 3.0

WhatsApp v2.6.5320

Team Viewer

Sky GO

MSN V 15.4

Xunlei/ Thunder V7.1.7

Spiral Knight

Dropbox

gPlex

Magic Jack v2.0.6

Olive Phone

Itel

Updated Protocols

BitComet version 1.28 (TCP flows are misclassified with HTTP)

Flash YouTube

New Flavors

31SMS

Sky Go updated

Sky Go Referer

Sky Go UserAgen

TeamViewerReq

TeamViewerRes

SpiralKnights http

Updated Flavors

None

New Zones

Thunder

Resolved Caveats

"CSCtq93885

1080p YouTube video is not classifying as "Flash YouTube HD"

Open Caveats

CSCts98070

CSCts98070 Performance degradation during peak hours is observed and capacity issues are fixed.

Protocol Signature Details

The following table contains protocol IDs for the protocols that were added or enhanced in Protocol Pack #26. These IDs appear in the PROTOCOL_ID field of RDRs that are generated for these protocols.

Table 3 New/Enhanced Protocols in SCA BB Protocol Pack #26

Protocol Name
Protocol ID
Comment
Buddy Protocol
Default Service

31SMS

122

 

Flixster

Other social sites

BitComet

24

 

NA

Non-encrypted Bittorent

WhatsApp v2.6.5320

1178

 

Jabber

IM

Team Viewer

1179

 

Telnet

Remote login

Sky Go

5

 

Sina video

audio and video over HTTP

MSN V15.4

1054

 

None

Voice FT

Xunlei/Thunder V7.1.7

50

 

DirectConnectk

Other P2P

Spiral Knight

1182

 

Doom

PC Gaming

Dropbox

1180

 

Vagaa

P2P

Flash YouTube

1082

Internet Video

Flash YouTube

Flash YouTube

gPlex

1184

 

Naver

VoIP calls

Magic Jack v2.0.6

1185

 

Naver

VoIP calls

Olive Phone

1186

 

Naver

VoIP calls

Itel

1187

 

Naver

VoIP calls


SCA BB Protocol Pack #25

Compatibility Information

Note sce 2000 pkg and pqb image can be installed in sce 1000.

The SCA BB Protocol Pack #25 can be installed on an SCE 1000, SCE 2000, or SCE8000 platform on which one of the following versions of SCA BB has already been installed.

This Protocol Pack can be installed on top of the following platforms,

"SCA BB Release 3.5.5

"SCA BB Release 3.6.5

"SCA BB Release 3.6.6

"SCA BB Release 3.7.0

Protocol Library Updates

New Protocols

"Youku Video

"Facebook Video

"Tango Video Calls

"Mypeople v2.3.2

"JustVoip v4.07

"Skype Video v5.3

"Shareman

"UUsee v2011

"NexTv

"Starcraft2[Wings of Liberty] - Gaming Application

"Minecraft Beta-v1.6.6 - Gaming Application

"Rift v1.2 - Gaming Application

"Viewn

"Flashget v3.7.0.1152 -Download Manager

"One-Click Hosting Sites:

filesonic.com

fileserve.com

hulkshare.net

netload.in

oron.com

Usershare.net

Extabit.com

Shareflare.com

Box.net

Sharebeast.com

Turbobit.com

Updated Protocols

"Gmail Video

"Wow-Gaming

"Netflix

"PPstream v 2.7.0.1166

"Gnutella v5.2

"ISAKMP

"Gmail CallPhone

"HTTP

"Skype VoIP (PC-to-PC) v5.3

New Flavors - (Supported by 3.5.5 and later)

"FileserveUpload

"FileserveDownload

"HulkshareUpload

"HulkshareDownload

"FilesonicUpload

"FilesonicDownload

"NetloadUpload

"NetloadDownload

"OronUpload

"UsershareUpload

"ExtabitUpload

"ExtabitDownloadReferer

"ShareflareUpload

"ShareflareDownload

"ShareflareUploadReferer

"BoxUpload

"BoxDownload

"SharebeastUpload

"SharebeastDownload

"TurbobitUpload

"TurbobitDownload

"Facebook Video

"Viewn

"Viewnuseragent

"Youkulogin

"YoukuUploadingVideo

"UUseeLogin

"UUseeVOD

Updated Flavors - (Supported by 3.5.5 and later)

"Netflix

"NetflixMovieData

New Zones - (Supported by 3.5.5 and later)

"FlashgetZone

Resolved Caveats

CSCtr71719

installing-PP #25 over 3.7.0-Invalid Prefix String '/QVideo/~ajax/logon*

CSCtn00035

ISAKMP traffic over port 500 mis-classified as GBox

CSCtl96414

PPStream traffic misclassified

CSCtn77381

Gnutella Traffic not getting blocked

CSCtn46940

HTTP URL returned as empty string

CSCtj34216

Add enhancement support for Gmail Call Phone

Known Limitations

CSCtq71667

PP25-Capacity is degraded by 3% wrt to PP24 FC

CSCtr14067

Gmail Video UDP flows are misclassified

CSCto87975

Add Support for UUsee - Features of registered users are not supported.

CSCtq91367

Warnings thrown while opening earlier version policies in PP25

Note: Some of the newly added protocols/flavors in PP25 will be mapped as below, when PP24 pqb is upgraded to PP25 :

"'Mypeople Voice Call' protocol is attached to SIP service.

"'Mypeople Video Call' protocol is attached to 'Other VoIP' Service

"'Google Call Phone' is attached to 'Other voip' service.

" 'Uuseelogin' and 'Uusee video are attached to 'Audio and Video over HTTP' service.

"Viewn and Viewnuseragent flavors will be under Unassigned Flavors, so will have to be mapped to the desired service. [In PP25, its added under HTTP]

"Flash get zones will be under Unassigned Zone, so will have to be mapped to the desired service [In PP25 its added under 'Other P2P' service]

Protocol Signature Details

The following table contains protocol IDs for the protocols that were added or enhanced in Protocol Pack #25. These IDs appear in the PROTOCOL_ID field of RDRs that are generated for these protocols.

Table 4 New/Enhanced Protocols in SCA BB Protocol Pack #25

Protocol Name
Protocol ID
Comment
Buddy Protocol
Default Service

Facebook Video

1163

RTMP streaming flow while recording video from facebook

FunshionTCP

Other Internet Video

Google Call Phone

1164

 

Naver

Google Voice

Youku Video

1165

 

Naver

Flash

Tango Video Calls

1166

UDP Data flow between caller1 to caller 2

Naver

Other VoIP

JustVoIP

1167

Support for PC to PC call only.

Naver

Other VoIP

Skype Video

1168

 

Skype

Other Skype

Alicall

1169

 

Naver

Other VoIP

MyPeople Voice Over SIP

1170

 

Telepresence

MyPeople

MyPeople Video Call

1171

 

Naver

MyPeople

Shareman-download

1172

 

AntsP2P

Other P2P

NexTV

1173

 

HyppTV

Other Internet Video

Starcraft2-Gaming

1174

TCP login flow continue till logged out

xbox live

PC Gaming

Rift_Tcp

1175

Main Gaming Flow Found is TCP After Entering the Arena

xbox live

PC Gaming

Minecraft-Gaming

1176

SSL flow (Only login from Stand alone is supported.)

doom

PC Gaming

UUSee

1177

Tcp flow for live streaming.

TVAnts

Other P2P TV

NetflixNetworking

1139

 

HyppTV

Other Internet Video


SCA BB Protocol Pack #24

Compatibility Information

The SCA BB Protocol Pack #24 can be installed on an SCE 1000, SCE 2000, or SCE8000 platform on which one of the following versions of SCA BB has already been installed.

This Protocol Pack can be installed on top of the following platforms,

SCA BB Release 3.5.5

SCA BB Release 3.6.1

SCA BB Release 3.6.5

Protocol Library Updates

New Protocols

Alicall

Daum

Funshion

GaduGadu

Gmail Video

Skype PC-to-Mobile UDP

SSH

Viber

One-Click Hosting Sites

easy-share.com

fileden.com

freakshare.com

gigasize.com

letitbit.net

zippyshare.com

Updated Protocols

CCcam-Traffic

Flash YouTube Normal

Gbox-Traffic

JaJah YahooPhoneOut

Skype VOIP

TeamSpeak

WoW

Yahoo Messenger VoIP

Zattoo

New Flavors - (Supported by 3.5.5 and later)

Daum Flavors

Daum Referers

Easyshare

FileDen

FlashMySpace

Freakshare

FunshionHomepage

FunshionNavigation

GaduGaduPhoto

GaduGaduRadio

GaduGaduTV

GigaSize

LetitBit

TeamSpeak3

Zippyshare

Resolved Issues

CSCtk31435

Yahoo PC-to-PC outgoing call is classified as Yahoo Jajah.

CSCtj80243

StarCraft II game is misclassified as GBox.

CSCtl71677

Cannot block YouTube traffic properly.

CSCtl42682

PPTP is misclassified as CCcam.

CSCtj15387

Radius packet is classified as Zattoo.

CSCtk54367

Added support for Netflix Canada traffic.

CSCtk74640

Wow is misclassified in PP #23 due to latest Wow patch.

Known Limitations

CSCtn19520

Warnings received when opening an older protocol pack policy on PP #24 must be resolved manually using the following procedure.

Step 1 For each warning, right-click the Problems tab.

Step 2 From the drop-down list, select Quick Fix.

Step 3 Select Assign protocol to an existing service and click OK.

Step 4 Select the service to assign the protocol to.

CSCtl99807

Gmail Video UDP is not blocked when a block policy is applied.

Work-around: To block Gmail Video UDP traffic, apply a rate limit of 5 Kbps.

CSCtn70726

Funshion Signature not supported for registered users.

CSCtn70995

No support for GaduGadu VoIP and Video Chat.

Protocol Signature Details

The following table contains protocol IDs for the protocols that were added or enhanced in Protocol Pack #24 These IDs appear in the PROTOCOL_ID field of RDRs that are generated for these protocols.

Table 5 New/Enhanced Protocols in SCA BB Protocol Pack #24

Protocol Name
Protocol ID
Buddy Protocol
Default Service
Comments

Alicall Callback

1156

UUCall

Other VoIP

 

Alicall Control (TCP/UDP call)

1158

UUCall

Other VoIP

 

Alicall TCP Login

1155

UUCall

Other VoIP

 

Alicall UDP

1154

UUCall

Other VoIP

 

DAUM

1150

POP3

DAUM

 

FunshionTCP

1144

HyppTV

Other Internet Video

Carrying video/audio streaming traffic in low bandwidth links.

FunshionUDP

1145

HyppTV

Other Internet Video

Carrying video/audio streaming traffic in high bandwidth links.

GaduGadu

1146

ooVoo

Other Instant Messaging

 

Gmail Video SSL

1153

Google Voice

Gmail Video

 

Gmail Video TCP

1151

Google Voice

Gmail Video

 

Gmail Video UDP

1152

Google Voice

Gmail Video

 

Gmail VoIP SSL

1160

Google Voice

Gmail Video

 

Gmail VoIP TCP

1159

Google Voice

Gmail Video

 

Temp Gmail Video SSL

1162

Google Voice

Gmail Video

 

Temp Gmail Video TCP

1161

Google Voice

Gmail Video

 

Viber over TCP

1147

Naver

Viber

 

Viber over UDP

1148

Naver

Viber

 

Yahoo Messenger Call Setup

1149

Yahoo Messenger VoIP

Yahoo Messenger VoIP

This is common to Yahoo Messenger VoIP and Jajah YahooPhoneOut.


SCA BB Protocol Pack #23

Compatibility Information

The SCA BB Protocol Pack #23 can be installed on an SCE 1000, SCE 2000, or SCE8000 platform on which one of the following versions of SCA BB has already been installed.

This Protocol Pack can be installed on top of the following platforms,

SCA BB Release 3.5.5

SCA BB Release 3.6.0

SCA BB Release 3.6.1

SCA BB Release 3.6.5

Protocol Library Updates

New Protocols

CCTV

Headcall

Netflix

Net2Phone

Pandora Audio (Supported as of 3.6.0 and 3.6.1)

SVTPlay

UUCall

Ustream

World of Warcraft

One-Click Hosting Sites

sendspace

uploaded.to

divshare

mediafire

4shared

depositfiles

uploading

badongo

ziddu

2shared

hotfile

speedyshare

limelinx

filefactory

Updated Protocols

Zattoo v4.0.5

Bittorrent 7.1

uTorrent 2.0.4

MapleStory (v88)

Flash over HTTP

FTP

New Flavors - (Supported by 3.5.5 and later)

Badongo

CCTV

DepositFiles

DivShare

FileFactory

HotFile

Limelinx

Media Fire

Netflix

NetflixMovieData

SendSpace

SpeedyShare

SVTPlayNetworking

SVTPlayStreaming

Uploading

Uploaded2

Ustream Homepage

Ustream Upcoming

Ziddu

2shared

4shared

Resolved Issues

CSCth28266

MapleStory is misclassified as PPlive.

CSCti10070

Bittorent as Generic UDP.

CSCti83620

Added support for Flash over HTTP Initiatee flows.

CSCtj01294

Added support for Pandora.

CSCti18214

RTMPE is misclassified as Zattoo in PP22.

CSCtj20581

Content filtering doe not work when HTTP response is not in order.

CSCtj45626

FTP signature is not robust enough.

CSCtj43892

Added a new signature for Suspected P2P Generic traffic.

Note The new signature Generic P2PSuspected is under the "Other UDP" service by default. This signature was developed for traffic that is suspected of being P2P traffic. To apply the same policy to Generic P2PSuspected as toP2P, move Generic P2PSuspected from the "Other UDP" service to the "P2P" service.
By default, this signature is turned off. The tunable that can be used to turn it on is GT_PL_GENERIC_P2PSUSPECTED_DO_CLASSIFY.

Known Limitations

CSCta17754

Hitless upgrade is not supported on the SCE 2000 platform for release 3.5.5.

CSCte55078

Warnings received when opening an older protocol pack policy on a newer protocol pack release must be resolved manually using the following procedure.

Step 1 For each warning, right-click the Problems tab.

Step 2 From the drop-down list, select Quick Fix.

Step 3 Select Assign protocol to an existing service and click OK.

Step 4 Select the service to assign the protocol to.

CSCti16281

Warnings received when opening a PP#21 policy after PP#22 has been installed must be resolved manually using the procedure described for CSCte55078.

CSCti16531

Hitless upgrade is not supported on the following:

SCOS Release 3.5.5 with PP 22 installed

SCOS Release 3.6.0 with PP 21 installed

CSCti18214

Blocking Zattoo 4.0.5 streaming traffic requires a block policy on the RTMP service element.

Protocol Signature Details

The following table contains protocol IDs for the protocols that were added or enhanced in Protocol Pack#23. These IDs appear in the PROTOCOL_ID field of RDRs that are generated for these protocols.

Table 6 New and Enhanced Protocols in SCA BB Protocol Pack #23

Protocol Name
ProtocolID
Buddy Protocol
Default Service
Comments

WoW-Gaming

1133

Xbox Live

Gaming

 

UUCall

1134

OoVoo Voice

Other VoIP

 

Net2phone

1135

NateOn

Other VoIP

 

Ustream

1136

Hulu

RTMP

 

Pandora Audio

1137

Audio Over HTTP

Audio and Video Over HTTP

 

Pandora

1138

Audio Over HTTP

Audio and Video Over HTTP

 

Netflix Networking

1139

HyppTV

Other Internet Video

 

SVTPlay

1140

Hulu

RTMP

 

CCTV_Video_Stream_UDP

1141

HyppTV

Other Internet Video

 

Headcall

1142

NateOn

Other VoIP

Support for PC to PC call only.

By default, this signature is turned off. To turn this signature on , set the tunable GT_PL_HEADCALL_DO_
CLASSIFY to true

Generic P2PSuspected

1143

Generic UDP

Other UDP

By default, this signature is turned off. To turn this signature on , set the tunable GT_PL_GENERIC_P2P
SUSPECTED_DO_CLASSIFY to true


Manual Configuration (Release 3.1.7 only)

The manual configuration should be performed after the Protocol Pack installation has been completed (according to the procedure described in the Cisco Service Control Application for Broadband User Guide).

To perform any required manual configuration, complete the following steps:

Step 1 Retrieve the PQB file from the SCE platform.

Step 2 Perform the necessary changes according to instructions.

Step 3 Apply the modified PQB file.

SCA BB Protocol Pack #22

Compatibility Information

The SCA BB Protocol Pack #22 can be installed on an SCE 1000, SCE 2000, or SCE8000 platform on which one of the following versions of SCA BB has already been installed.

This Protocol Pack can be installed on top of the following platforms,

SCA BB Release 3.1.7

SCA BB Release 3.5.5

SCA BB Release 3.6.0

SCA BB Release 3.6.1

Protocol Library Updates

New Protocols

ActiveSync Gmail

Card Sharing

Dial070

JaJah YahooPhoneOut

ooVoo

Updated Protocols

Skype FT (3.5.5 and later)

Skype VoIP (3.5.5 and later)

Zatto

Thunder (3.5.5 and later)

Google Talk File Transfer (3.5.5 and later)

Google Talk VoIP (3.5.5 and later)

MSN VoIP

uTorrent

Warez

xbox Call Of Duty

New Flavors - (Supported by 3.5.5 and later)

way2sms

Thunder New Service

Zattoo HttpHost

Zattoo HttpReferer

Skype_UI_Updates

PC-Based Dial070 Voice

PC-Based Dial070 Login

Resolved Issues

CSCta54033

Camera traffic classified as P2P.

CSCtd41901

Skype Voice from a PDA to a PC is misclassified as Skype IM when PP19 is installed.

CSCte89479

MSN VOIP is misclassified when running SCOS Release 3.5.5 with PP 20 installed.

CSCtg26799

Google Talk is misclassified as STUN.

CSCtg27285

Google Talk file transfer is not blocked.

CSCtg65322

Cannot block Skype FT while allowing other Skype protocols.

CSCtg65335

Cannot block Skype VoIP while allowing other Skype protocols.

CSCtg70136

uTorrent is misclassified to "Other UDP" when running SCOS Release 3.5.5 with PP 20 installed.

CSCth28494

Skype can not be blocked in the SCE 2000.

CSCth32957

The protocol ISAKMP is included in different service after upgrading the Protocol Pack.

Known Limitations

CSCsv44394

The installation of Protocol Pack #21 upon SCOS release 3.1.7 requires the following manual configuration in order to support all the Protocol Pack #21 features.

Step 1 Extract the SPQI file from the 3.1.7 Protocol Pack #21 ZIP package and install the Protocol Pack as usual using SCA BB.

Step 2 Extract the script.txt file from the 3.1.7 Protocol Pack #21 ZIP package and upload to the SCE platform using FTP.

Step 3 Open a CLI session in the SCE platform and navigate to the directory where the uploaded script.txt resides and execute the following CLI command: 

script run script.txt.

CSCsx78811

Upgrading from 3.1.7 with Protocol Pack #21 to 3.5.5 with Protocol Pack #21 requires the following manual configuration in order to support all the Protocol Pack #21 features.

Step 1 Remove the DSS. Go to:

Configuration > Signature Settings > Signature Script

and choose Remove.

Step 2 Save the PQB file.

Step 3 Install 3.5.5 with Protocol Pack #21.

Note Upgrading from 3.5.x with Protocol Pack# 21 to a later SCOS version with Protocol Pack# 21 will display warning messages. Once the new configuration is saved, warnings will no longer be displayed.

CSCta17754

Hitless upgrade is not supported on the SCE 2000 platform for release 3.5.5 .

CSCte55078

Warnings received when opening a 3.1.7 policy on SCA BB release 3.5.5 must be resolved manually using the following procedure.

Step 1 For each warning, right-click the Problems tab.

Step 2 From the drop-down list, select Quick Fix.

Step 3 Select Assign protocol to an existing service and click OK.

Step 4 Select the service to assign the protocol to.

CSCti16281

Warnings received when opening a PP#21 policy after PP#22 has been installed must be resolved manually using the procedure described for CSCte55078.

CSCti16531

Hitless upgrade is not supported on the following:

SCOS Release 3.5.5 with PP 22 installed

SCOS Release 3.6.0 with PP 21 installed

DSS Content (Release 3.1.7 only)

Note The DSS included in the SPQI file is automatically applied to the active PQB file when the SPQI is installed on the SCE platform.

The SUS script contains no DSS-based signatures and is only provided to expose the new signature IDs to the application.

Protocol Signature Details

The following table contains protocol IDs for the protocols that were added or enhanced in Protocol Pack#22. These IDs appear in the PROTOCOL_ID field of RDRs that are generated for these protocols.

Table 7 New and Enhanced Protocols in SCA BB Protocol Pack #22

Protocol Name
Protocol ID
Buddy Protocol
Default Service

ooVoo

1114

MyJabber

Other Instant Messaging

ooVoo Voice

1115

Naver

Other VoIP

Dial070 - Smartphone Voice

1118

NateOn

Dial070

ActiveSync Gmail

1123

DHCP

Other Net Admin

JaJah YahooPhoneOut

1126

Yahoo Messenger VoIP

Yahoo Messenger VoIP

xbox Call Of Duty

1127

xbox live

xbox

CCcam-Traffic

1129

Pando

CCcam

Newcamd-Traffic

1130

Pando

Newcamd

Dial070 - Smartphone Login

1131

NateOn

Dial070

GBox-Traffic

1132

Pando

GBox


Manual Configuration (Release 3.1.7 only)

The manual configuration should be performed after the Protocol Pack installation has been completed (according to the procedure described in the Cisco Service Control Application for Broadband User Guide).

To perform any required manual configuration, complete the following steps:

Step 1 Retrieve the PQB file from the SCE platform.

Step 2 Perform the necessary changes according to instructions.

Step 3 Apply the modified PQB file.

SCA BB Protocol Pack #21

Compatibility Information

The SCA BB Protocol Pack #21 can be installed on an SCE 1000, SCE 2000, or SCE8000 platform on which one of the following versions of SCA BB has already been installed.

This Protocol Pack can be installed on top of the following platforms,

SCA BB Release 3.1.7

SCA BB Release 3.5.5

SCA BB Release 3.6.0

Protocol Library Updates

New Protocols

Utagoe UGLive2

SkeedReceiver

WebEx

FIX

RayV

Windows Update

MS Exchange Desktop

Updated Protocols

PPLive

PPStream

PPTP

SMTP

Mobile MMS (V3.6.0 only)

Fring

New Flavors - (Supported by Release 3.5.5 and later)

Facebook

Twitter

MySpace

Flixster

LinkedIn

Tagged

Classmates

MyYearbook

LiveJournal

Ning

BlackPlanet

Bebo

Hi5

Yuku

CafeMom

Friendster

Xanga

Yahoo Profiles

Orkut

UrbanChat

Fubar

AsianTown

Windows Update Self Update

Windows Update Download

Microsoft Silverlight

Sina Video

Resolved Issues

CSCte11816

MMS traffic is not correctly classified

CSCtf36994

TLS based SMTP flows are not subject for SPAM detection or blocking

CSCtf81007

Some Fring VoIP sessions are being misclassified as Other

CSCtg09102

Lord of the rings online is misclassified to PPLive

CSCtf83959

PPTP signature not correctly classified

Known Limitations

CSCsv44394

The installation of Protocol Pack #21 upon SCOS release 3.1.7 requires the following manual configuration in order to support all the Protocol Pack #21 features.

Step 1 Extract the SPQI file from the 3.1.7 Protocol Pack #21 ZIP package and install the Protocol Pack as usual using SCA BB.

Step 2 Extract the script.txt file from the 3.1.7 Protocol Pack #21 ZIP package and upload to the SCE platform using FTP.

Step 3 Open a CLI session in the SCE platform and navigate to the directory where the uploaded script.txt resides and execute the following CLI command: 

script run script.txt.

CSCsx78811

Upgrading from 3.1.7 with Protocol Pack #21 to 3.5.5 with Protocol Pack #21 requires the following manual configuration in order to support all the Protocol Pack #21 features.

Step 1 Remove the DSS. Go to:

Configuration > Signature Settings > Signature Script

and choose Remove.

Step 2 Save the PQB file.

Step 3 Install 3.5.5 with Protocol Pack #21.

Note Upgrading from 3.5.x with Protocol Pack# 21 to a later SCOS version with Protocol Pack# 21 will display warning messages. Once the new configuration is saved, warnings will no longer be displayed.

CSCta17754

Hitless upgrade is not supported on the SCE 2000 platform for release 3.5.5 .

CSCte55078

Warnings received when opening a 3.1.7 policy on SCA BB release 3.5.5 must be resolved manually using the following procedure.

Step 1 For each warning, right-click the Problems tab.

Step 2 From the drop-down list, select Quick Fix.

Step 3 Select Assign protocol to an existing service and click OK.

Step 4 Select the service to assign the protocol to.

Known Limitations: Protocol Specific

WebEx :

As of Protocol Pack#21, flows where security parameters are not negotiated between SSL client and server are not part of the classification.

MS Exchange:

MS Exchange Desktop is supported

Outlook Web Access (OWA) is not supported.

FIX:

Classification is supported for the following browsers:

Google Chrome

IE

Mozilla

Opera

As of Protocol Pack#21, flows where security parameters are not negotiated between SSL client and server are not part of the classification.

Microsoft Silverlight:

Number of HTTP GET detections has to be increased using the following procedure:

Step 1 Open SCA BB.

Step 2 Open Service Configuration in Editor Perspective.

Step 3 In the Policies tab, select Configuration > Policies > System Settings.

System Settings window appears.

Step 4 Go to Advanced Options.

Step 5 Click Advanced Service Configuration Options.

Step 6 Change the value in the Number of HTTP GET Detections field to 50, then click OK.

Step 7 Apply the new service configuration to the SCE platform.

DSS Content (Release 3.1.7 only)

Note The DSS included in the SPQI file is automatically applied to the active PQB file when the SPQI is installed on the SCE platform.

The SUS script contains no DSS-based signatures and is only provided to expose the new signature IDs to the application.

Protocol Signature Details

The following table contains protocol IDs for the protocols that were added or enhanced in Protocol Pack#21. These IDs appear in the PROTOCOL_ID field of RDRs that are generated for these protocols.

Table 8 New and Enhanced Protocols in SCA BB Protocol Pack #21

Protocol Name
Protocol ID
Comment
Buddy Protocol
Default Service

Windows Update

1107

Net Admin

DHCP

Other Net Admin

Utagoe UGLive2

1108

P2P TV

Zattoo

Other P2P TV

SkeedReceiver

1109

P2P TV

Pando

Other P2P TV

WebEx

1110

VoIP

Naver

WebEx

MS Exchange Desktop

1111

Mail

SMPT

MS Exchange Desktop

RayV

1112

P2P TV

Zattoo

Other P2P TV

FIX

1113

Trading

DirectConnect

FIX


Manual Configuration (Release 3.1.7 only)

The manual configuration should be performed after the Protocol Pack installation has been completed (according to the procedure described in the Cisco Service Control Application for Broadband User Guide).

To perform any required manual configuration, complete the following steps:

Step 1 Retrieve the PQB file from the SCE platform.

Step 2 Perform the necessary changes according to instructions.

Step 3 Apply the modified PQB file.

SCA BB Protocol Pack #20

Compatibility Information

The SCA BB Protocol Pack #20 can be installed on an SCE 1000, SCE 2000, or SCE8000 platform on which one of the following versions of SCA BB has already been installed.

This Protocol Pack can be installed on top of the following platforms,

SCA BB Release 3.1.7

SCA BB Release 3.5.0

SCA BB Release 3.5.5

Protocol Library Updates

New Protocols

Street Fighter IV- Gaming Protocol

Einy - P2P Video

RTMPS - Secure RTMP

Citrix - Terminal

Laplink- Terminal

SAP (Supported by 3.5.0 and later)

Updated Protocols

nntps- Port-based protocol, now based also on SSL protocol signatures. (Supported by 3.5.0 and later)

Google Talk- Updated Voice and File Transfer signatures; support added for Japanese version

Call Of Duty - Support added for Call of Duty Modern Warfare 2. (Supported by 3.5.0 and later)

Bittorrent - Support added for uTorrent 2.0

RTMP - Support added for RTMPE, updated RTMPT

MegaUpload - Updated flavor

New Flavors - (Supported by Release 3.5.0 and later)

None

Resolved Issues

CSCtb85172

GoogleTalk might be misclassified as STUN.

CSCtc61531

Street Fighter 4 on Playstation 3 not classified.

CSCtc93694

`Service element already exists' warning when installing Protocol Pack 19.

CSCtd41978

P2P and NNTP classification degradation in SCA-BB version 3.5.5.

CSCtd82455

HTTP-based Yahoo Messenger login is classified as HTTP Browsing.

CSCte12073

SIP TCP classification problem if Register command is spread over two packets.

CSCtd66946

uTP misclassification in latest uTorrent client versions (1.8.4 and higher).

Known Limitations

CSCsv44394

The installation of Protocol Pack #20 upon SCOS release 3.1.7 requires the following manual configuration in order to support all the Protocol Pack #20 features.

Step 1 Extract the SPQI file from the 3.1.7 Protocol Pack #20 ZIP package and install the Protocol Pack as usual using SCA BB.

Step 2 Extract the script.txt file from the 3.1.7 Protocol Pack #20 ZIP package and upload to the SCE platform using FTP.

Step 3 Open a CLI session in the SCE platform and navigate to the directory where the uploaded script.txt resides and execute the following CLI command: 

script run script.txt.

CSCsx78811

Upgrading from 3.1.7 with Protocol Pack #20 to 3.5.0 with Protocol Pack #20 requires the following manual configuration in order to support all the Protocol Pack #20 features.

Step 1 Remove the DSS. Go to:

Configuration > Signature Settings > Signature Script

and choose Remove.

Step 2 Save the PQB file.

Step 3 Install 3.5.0 with Protocol Pack 20.

Note Upgrading from 3.5.x with Protocol Pack 20 to a later SCOS version with Protocol Pack 20 will display warning messages. Once the new configuration is saved, warnings will no longer be displayed.

CSCta17754

Hitless upgrade is not supported on the SCE 2000 platform for release 3.5.5 .

CSCte55078

Warnings received when opening a 3.1.7 policy on SCA BB releases 3.5.5 and 3.5.0 must be resolved manually using the following procedure.

Step 1 For each warning, right-click the Problems tab.

Step 2 From the drop-down list, select Quick Fix.

Step 3 Select Assign protocol to an existing service and click OK.

Step 4 Select the service to assign the protocol to.

DSS Content (Release 3.1.7 only)

Note The DSS included in the SPQI file is automatically applied to the active PQB file when the SPQI is installed on the SCE platform.

The SUS script contains no DSS-based signatures and is only provided to expose the new signature IDs to the application.

Protocol Signature Details

The following table contains protocol IDs for the protocols that were added or enhanced in Protocol Pack #20. These IDs appear in the PROTOCOL_ID field of RDRs that are generated for these protocols.

Table 9 New and Enhanced Protocols in SCA BB Protocol Pack #20

Protocol Name
Protocol ID
Comment
Buddy Protocol
Default Service

SAP

1106

Net Admin

sqlsrv

Other Net Admin

LapLink

1105

Terminal

remote desktop

Terminals

Citrix

1104

Terminal

citrixima

Terminals

RTMPS

1103

Secure RTMP

RTMP

RTMP

Einy

1102

P2P

Pando

Other P2P TV

Street Fighter IV

1101

Gaming

ps3

PlayStation


Manual Configuration (Release 3.1.7 only)

The manual configuration should be performed after the PP installation has been completed (according to the procedure described in the Cisco Service Control Application for Broadband User Guide).

To perform any required manual configuration, complete the following steps:

Step 1 Retrieve the PQB file from the SCE platform.

Step 2 Perform the necessary changes according to instructions below.

Step 3 Apply the modified PQB file.

SCA BB Protocol Pack #19

Compatibility Information

The SCA BB Protocol Pack #19 can be installed on an SCE 1000, SCE 2000, or SCE8000 platform on which one of the following versions of SCA BB has already been installed.

This Protocol Pack can be installed on top of the following platforms,

SCA BB Release 3.1.7

SCA BB Release 3.5.0

SCA BB Release 3.5.5

Protocol Library Updates

New Protocols

Google Voice- VoIP

OpenVPN - VPN

Steam- Gaming Protocol

LottoFile - P2P

Monkey3- P2P

SSL - Security

Updated Protocols

https- Port based protocol is now based also on SSL protocol signatures. (Supported by 3.5.0 and later)

ircs - Port based protocol is now based also on SSL protocol signatures. (Supported by 3.5.0 and later)

imaps - Port based protocol is now based also on SSL protocol signatures. (Supported by 3.5.0 and later)

pop3s - Port based protocol is now based also on SSL protocol signatures. (Supported by 3.5.0 and later)

Soribada- Support added for new download flow

Bittorrent - Support added for Bittorrent 6.2, support added for Bittorrent DNA

Skype - Removed classification of navigation of skype.com to Skype protocol , updated Skype 4 signature

New Flavors - (Supported by Release 3.5.0 and later)

Soribada Download - P2P

Monkey3 Download - P2P

Resolved Issues

CSCsy95605

Skype 4 cannot be blocked.

CSCta86415

Cisco VPN AnyConnect SSL traffic is classified as encrypted BitTorrent.

CSCtb49956

HTTP traffic for skype.com is misclassified as Skype.

CSCtc54115

Non-authenticated SMTP is not blocked when not using diamond brackets.

Known Limitations

CSCsv44394

The installation of Protocol Pack #19 upon SCOS release 3.1.7 requires the following manual configuration in order to support all the Protocol Pack #19 features.

Step 1 Extract the SPQI file from the 3.1.7 Protocol Pack #19 ZIP package and install the Protocol Pack as usual using SCA BB.

Step 2 Extract the script.txt file from the 3.1.7 Protocol Pack #19 ZIP package and upload to the SCE platform using FTP.

Step 3 Open a CLI session in the SCE platform and navigate to the directory where the uploaded script.txt resides and execute the following CLI command: 

script run script.txt.

CSCsx78811

Upgrading from 3.1.7 with Protocol Pack #19 to 3.5.0 with Protocol Pack #19 requires manual configuration in order to support all the Protocol Pack #19 features.

Step 1 Remove the DSS. Go to:

Configuration > Signature Settings > Signature Script

and choose Remove.

Step 2 Save the PQB file.

Step 3 Install 3.5.0 with Protocol Pack 19.

Note Upgrading from 3.5.x with Protocol Pack 19 to a later SCOS version with Protocol Pack 19 will display warning messages. Once the new configuration is saved, warnings will no longer be displayed.

CSCta17754

Hitless upgrade is not supported on the SCE 2000 platform for release 3.5.5 .

DSS Content

Note The DSS included in the SPQI file is automatically applied to the active PQB file when the SPQI is installed on the SCE platform.

The SUS script contains no DSS-based signatures and is only provided to expose the new signature IDs to the application.

Protocol Signature Details

Note For a complete list of supported protocols, refer to the protocol support reference guide located at http://www.cisco.com/pcgi-bin/tablebuild.pl/sca-ps.

The following table contains protocol IDs for the protocols that were added or enhanced in Protocol Pack #19. These IDs appear in the PROTOCOL_ID field of RDRs that are generated for these protocols.

Table 10 New and Enhanced Protocols in SCA BB Protocol Pack #19

Protocol Name
Protocol ID
Comment
Buddy Protocol
Default Service

LottoFile

1095

P2P

v-share

Other P2P

Monkey3

1096

P2P

v-share

Other P2P

Steam

1097

Gaming

Counter Strike

PC Gaming

OpenVPN

1098

VPN

ESP

OpenVPN

Google Voice

1099

VoIP

Naver

Google Voice

SSL

1100

Security

HTTP Tunnel

Tunneling


Manual Configuration

The manual configuration should be performed after the PP installation has been completed (according to the procedure described in the Cisco Service Control Application for Broadband User Guide).

To perform any required manual configuration, complete the following steps:

Step 1 Retrieve the PQB file from the SCE platform.

Step 2 Perform the necessary changes according to instructions below.

Step 3 Apply the modified PQB file.

Obtaining Documentation and Submitting a Service Request

For information on obtaining documentation, submitting a service request, and gathering additional information, see the monthly What's New in Cisco Product Documentation, which also lists all new and revised Cisco technical documentation, at:

http://www.cisco.com/en/US/docs/general/whatsnew/whatsnew.html

Subscribe to the What's New in Cisco Product Documentation as a Really Simple Syndication (RSS) feed and set content to be delivered directly to your desktop using a reader application. The RSS feeds are a free service and Cisco currently supports RSS Version 2.0.

Cisco and the Cisco logo are trademarks or registered trademarks of Cisco and/or its affiliates in the U.S. and other countries. To view a list of Cisco trademarks, go to this URL: www.cisco.com/go/trademarks. Third-party trademarks mentioned are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company. (1110R)

Any Internet Protocol (IP) addresses used in this document are not intended to be actual addresses. Any examples, command display output, and figures included in the document are shown for illustrative purposes only. Any use of actual IP addresses in illustrative content is unintentional and coincidental.

© 2011 Cisco Systems, Inc. All rights reserved.