- Release Notes for NBAR2 Protocol Pack 3.1.0
- 3COM-AMP3 through AYIYA-IPV6-TUNNELED
- BABELGUM through BR-SAT-MON
- CABLEPORT through CYCLESERV2
- DASP through DWR
- ECHO through EXEC
- FACEBOOK through FUJITSU-DEV
- GAME-SPY through GURUGURU
- H323 through HYPERWAVE-ISP
- IAFDBASE through JARGON
- KALI through LWAPP
- MAC-SRVR-ADMIN through MYSQL
- NAME through NXEDIT
- OBEX through OSU-NMS
- P10 through PWDGEN
- QBIKGDP through RXE
- SAFT through SYSTAT
- TACACS through TWITTER
- UAAC through VSLMP
- WAP-PUSH through ZSERV
Release Notes for NBAR2 Protocol Pack 3.1.0
Supported Platforms
Network Based Application Recognition (NBAR) Protocol Pack 3.1.0 is supported on Cisco ASR 1000 Series Aggregation Services Routers and Cisco ISR G2 Series Integrated Services Routers.
New Protocols in NBAR2 Protocol Pack 3.1.0
The following protocols are added to NBAR2 Protocol Pack 3.1.0:
| Common Name |
Syntax Name |
Description |
|---|---|---|
| BitTorrent Networking |
bittorrent-networking |
BitTorrent Networking is a part of the BitTorrent protocol. It is responsible for acquiring peers from the tracker, DHT network, or any other means, and initiating data transfer sessions between the client and the acquired peers. |
| Xunlei |
xunlei |
Xunlei is a download manager and p2p sharing application. Xunlei supports bittorent, edonkey, http, and ftp protocols. Xunlei also boosts the download speed using multi source technology. |
Updated Protocols in NBAR2 Protocol Pack 3.1.0
The following protocols are updated in NBAR2 Protocol Pack 3.1.0:
| Protocol |
Updates |
|---|---|
| bittorrent |
Updated signatures to allow better blocking of the application. |
| qqlive |
Updated signatures to support mobile platforms (iOS and android). |
| tcp-over-dns |
Updated signatures to avoid potential misclassification as dns. |
Other New Features in NBAR2 Protocol Pack 3.1.0
The following attribute groups added from Cisco IOS XE Release 3.8S can be used with the ip nbar attribute-map command:
For more information on the ip nbar attribute-map command, see the Quality of Service Solutions Command Reference.
Caveats in NBAR2 Protocol Pack 3.1.0
 Note |
If you have an account on Cisco.com, you can also use the Bug Toolkit to find select caveats of any severity. To reach the Bug Toolkit, log in to Cisco.com and go to http://www.cisco.com/pcgi-bin/Support/Bugtool/launch_bugtool.pl. (If the defect that you have requested cannot be displayed, this may be due to one or more of the following reasons: the defect number does not exist, the defect does not have a customer-visible description yet, or the defect has been marked Cisco Confidential.) |
Resolved Caveats in NBAR2 Protocol Pack 3.1.0
The following table lists the resolved caveats in NBAR2 Protocol Pack 3.1.0:
| Resolved Caveat |
Description |
|---|---|
| CSCud09899 |
Traffic generated by pptv mobile clients might be classified as video-over-http. |
| CSCud15977 |
Traffic generated by pandora might be misclassified in QoS mode. |
| CSCud15981 |
Traffic generated by yahoo-messenger might be classified late in QoS mode. |
Known Caveats in NBAR2 Protocol Pack 3.1.0
The following table lists the known caveats in NBAR2 Protocol Pack 3.1.0:
| Known Caveat |
Description |
|---|---|
| CSCtx65481 |
Traffic generated by pcAnywhere for mac and pcAnywhere mobile app might be misclassified as unknown |
| CSCub62860 |
gtalk-video might be misclassified as rtp |
| CSCub89835 |
gbridge pc client might not be blocked |
| CSCuc43505 |
Traffic generated by AIM Pro might be misclassified as unknown and webex-meeting |
| CSCuc57822 |
NBAR classification granularity may not work or some protocols may be classified as unknown. The CSCuc57822 caveat is specific to Cisco IOS XE Release 3.7S on Cisco ASR 1000 Series Aggregation Services Routers. |
| CSCud50646 |
Traffic generated by the Netflix iPad app might be misclassified as http |
Restrictions and Limitations in NBAR2 Protocol Pack 3.1.0
| Protocol |
Limitation/Restriction |
|---|---|
| bittorrent |
http traffic generated by the bitcomet bittorrent client might be classified as http |
| livemeeting |
Application is discontinued and replaced with ms-lync, traffic generated by livemeeting may be classified as ms-lync |
| hulu |
Encrypted video streaming generated by hulu might be classified as its underlying protocol rtmpe |
| logmein |
Traffic generated by the logmein android app might be misclassified as ssl |
| ms-lync |
Login and chat traffic generated by the ms-lync client might be misclassified as ssl |
| secondlife |
Voice traffic generated by secondlife might be misclassified as ssl |
Downloading NBAR2 Protocol Packs
NBAR2 Protocol Packs are available for download as Software Type 'NBAR2 Protocol Pack' on cisco.com software download page (http://www.cisco.com/cisco/software/navigator.html).
Additional References
Related Documents
| Related Topic |
Document Title |
|---|---|
| Application Visibility and Control |
|
| Classifying Network Traffic Using NBAR |
|
| NBAR Protocol Pack |
NBAR Protocol Pack module |
| QoS: NBAR Configuration Guide |
|
| QoS Command Reference |
Quality of Service Solutions Command Reference |
Feedback