Release Notes for NBAR2 Protocol Pack 3.0.0

Last Updated: November 30, 2012

Supported Platforms

Network Based Application Recognition (NBAR) Protocol Pack 3.0.0 is supported on Cisco ASR 1000 Series Aggregation Services Routers and Cisco ISR G2 Series Integrated Services Routers.

New Protocols in NBAR2 Protocol Pack 3.0.0

The following protocols are added to NBAR2 Protocol Pack 3.0.0:

Common Name	Syntax Name	Description
Apple Remote Desktop (ARD)	apple-remote-desktop	ARD is a desktop management system for Mac OS X users that is produced by Apple Inc. This protocol allows users to control or monitor other computers over a network. ARD replaces Apple Network Assistant, a similar product.
IBM Lotus Notes	lotus-notes	IBM Lotus Notes provides integrated collaboration functionality such as Calender, Contacts Management, E-mail, IBM Lotus Symphony (an office productivity suite), Instant Message, Track, and access to other Lotus Domino applications and databases.
PPTV	pptv	PPTV (also known as PPLive) developed by PPLive, is a leading online TV service that offers live streaming and video-on-demand of TV programs/shows, movies, drama, sports, news and entertainment video contents. The service is accessible either from its website or from client software installation. PPTV is now available for a variety of systems, including windows PC, Mac, Android mobile phones, and iPads.
QQLive	qqlive	QQLive is a live streaming video freeware created by Tencent. QQLive uses advanced P2P streaming media to ensure program fluency with many people viewing the video at the same time.
SPDY	spdy	SPDY (pronounced speedy) is an open networking protocol developed primarily at Google for transporting web content. SPDY is similar to HTTP, with particular goals to reduce web page load latency and improve web security. SPDY achieves reduced latency through compression, multiplexing, and prioritization. The name "SPDY" is a trademark of Google.

Updated Protocols in NBAR2 Protocol Pack 3.0.0

The following protocols are updated in NBAR2 Protocol Pack 3.0.0:

Protocol	Updates
ms-lync	Added support for Microsoft Lync in Microsoft Office 365.
msn-messenger	Updated signatures to support msn-messenger on IPv6 environment.
pcAnywhere	Updated signatures.
skype	Updated signatures to support Skype version 5.10.0.116 and to allow better blocking of skype.

Deprecated Protocols in NBAR2 Protocol Pack 3.0.0

The following protocols are deprecated in NBAR2 Protocol Pack 3.0.0:

Protocol	Description
notes	Replaced with lotus-notes.
net-assistant	Replaced with apple-remote-desktop.

Other New Features (FE/SC/Attributes) in NBAR2 Protocol Pack 3.0.0

Not Applicable.

Caveats in NBAR2 Protocol Pack 3.0.0

Note

If you have an account on Cisco.com, you can also use the Bug Toolkit to find select caveats of any severity. To reach the Bug Toolkit, log in to Cisco.com and go to http://www.cisco.com/pcgi-bin/Support/Bugtool/launch_bugtool.pl. (If the defect that you have requested cannot be displayed, this may be due to one or more of the following reasons: the defect number does not exist, the defect does not have a customer-visible description yet, or the defect has been marked Cisco Confidential.)

Resolved Caveats in NBAR2 Protocol Pack 3.0.0

The following table lists the resolved caveats in NBAR2 Protocol Pack 3.0.0:

Resolved Caveat	Description
CSCuc59767	IPv6 traffic generated by msn-messenger might be misclassified as ssl
CSCuc67075	msn-messenger-video and msn-messenger-ft are not working in QoS mode.

Known Caveats in NBAR2 Protocol Pack 3.0.0

The following table lists the known caveats in NBAR2 Protocol Pack 3.0.0:

Known Caveat	Description
CSCtx65481	Traffic generated by pcAnywhere for mac and pcAnywhere mobile app might be misclassified as unknown
CSCtx74002	Voice traffic generated by secondlife might be misclassified as ssl
CSCua24701	Traffic generated by the logmein android app might be misclassified as ssl
CSCub26325	ms-lync login and chat traffic might be misclassified as ssl
CSCub62860	gtalk-video might be misclassified as rtp
CSCub89835	gbridge pc client might not be blocked
CSCuc43505	Traffic generated by AIM Pro might be misclassified as unknown and webex-meeting
CSCuc57822	NBAR classification granularity may not work or some protocols may be classified as unknown
CSCud02101	Increase in NBAR activation time after loading NBAR2 Protocol Packs 2.1.0 and 3.0.0. The CSCud02101 caveat is specific to Cisco ISR G2 series Integrated Services Routers only.
CSCud09899	Traffic generated by pptv mobile clients might be classified as video-over-http
CSCud15976	Traffic generated by pptv might be misclassified in QoS mode
CSCud15977	Traffic generated by pandora might be misclassified in QoS mode
CSCud15981	Traffic generated by yahoo-messenger might be classified late in QoS mode

Restrictions and Limitations in NBAR2 Protocol Pack 3.0.0

The following table lists the limitations and restrictions in NBAR2 Protocol Pack 3.0.0:

Protocol	Limitation/Restriction
bittorrent	http traffic generated by the bitcomet bittorrent client might be classified as http
livemeeting	Application is discontinued and replaced with ms-lync, traffic generated by livemeeting may be classified as ms-lync
hulu	Encrypted video streaming generated by hulu might be classified as its underlying protocol rtmpe

Downloading NBAR2 Protocol Packs

NBAR2 Protocol Packs are available for download as Software Type 'NBAR2 Protocol Pack' on cisco.com software download page (http://www.cisco.com/cisco/software/navigator.html).