- Index
- Preface
- Introduction to Cisco WAAS
- Planning Your WAAS Network
- Using Device Groups and Device Locations
- Configuring Traffic Interception
- Configuring Network Settings
- Configuring Administrative Login Authentication, Authorization, and Accounting
- Creating and Managing Administrator User Accounts and Groups
- Creating and Managing IP Access Control Lists for WAAS Devices
- Configuring Other System Settings
- Using the WAE Device Manager GUI
- Configuring Wide Area File Services
- Configuring Application Acceleration
- Configuring and Managing WAAS Print Services
- Configuring Virtualization
- Maintaining Your WAAS System
- Monitoring and Troubleshooting Your WAAS Network
- Configuring SNMP Monitoring
- Default Application Policies
Default Application Policies
The WAAS software includes over 150 default application policies that help your WAAS system classify and optimize some of the most common traffic on your network.
Table A-1 lists the default applications and classifiers that WAAS will either optimize or pass through based on the policies that are provided with the system.
Before you create a new application policy, we recommend that you review the default policies and modify them as appropriate. Often, you can more easily modify an existing policy than create a new one.
When reviewing Table A-1, note the following information:
•The subheadings represent the application names, and the associated classifiers are listed under these subheadings. For example, Authentication is a type of application and Kerberos is a classifier for that application.
•Applications with the word (monitored) next to them are monitored by the WAAS Central Manager, which can display statistics for only 20 applications at a time. To view statistics for one of the unmonitored applications, use one of the following methods:
–Use the WAAS CLI, which can display statistics for all applications on a WAAS device. For more information, see the Cisco Wide Area Application Services Command Reference.
–Modify the application settings so the WAAS Central Manager GUI displays statistics for the desired application. For more information, see Chapter 12, "Configuring Application Acceleration."
The WAAS software uses the following optimization technologies based on the type of traffic that it encounters:
•TFO (transport flow optimization)—A collection of optimization technologies such as automatic windows scaling, increased buffering, and selective acknowledgement that optimize all TCP traffic over your network.
•RE (redundancy elimination)—A compression technology that reduces the size of transmitted data by removing redundant information before sending the shortened data stream over the WAN. RE operates on significantly larger streams and maintains a much larger compression history than LZ compression.
•LZ (compression)—Another compression technology that operates on smaller data streams and keeps limited compression history compared to RE.
•Application accelerator—A collection of individual application accelerators for the following traffic types: CIFS, EPM, HTTP, MAPI, NFS, SSL, and streaming video.
.
|
|
|
---|---|---|
Authentication |
||
Kerberos |
Passthrough |
88, 2053, 754, 888, 543, 464, 544, 749 |
SASL |
Passthrough |
3659 |
TACACS |
Passthrough |
49 |
Backup (monitored) |
||
Amanda |
TFO |
10080 |
BackupExpress |
TFO |
6123 |
CommVault |
TFO |
8400-8403 |
Connected-DataProtector |
TFO |
16384 |
IBM-TSM |
LZ+TFO+DRE |
1500-1502 |
Legato-NetWorker |
TFO |
7937, 7938, 7939 |
Legato-RepliStor |
TFO |
7144, 7145 |
Veritas-BackupExec |
TFO |
6101, 6102, 6106, 3527, 1125 |
Veritas-NetBackup |
TFO |
13720, 13721, 13782, 13785 |
CAD |
||
PDMWorks |
LZ+TFO+DRE |
30000, 40000 |
Call-Management |
||
Cisco-CallManager |
Passthrough |
2443, 2748 |
SIP-secure |
Passthrough |
5061 |
VoIP-Control |
Passthrough |
1300, 2428, 2000-2002, 1718-1720, 5060, 11000-11999 |
Conferencing |
||
CU-SeeMe |
Passthrough |
7640, 7642, 7648, 7649 |
ezMeeting |
Passthrough |
10101-10103, 26260-26261 |
Intel-Proshare |
Passthrough |
5713-5717 |
MS-NetMeeting |
Passthrough |
522, 1503, 1731 |
VocalTec |
Passthrough |
1490, 6670, 25793, 22555 |
Console |
||
SSL-Shell |
Passthrough |
614 |
Telnet |
Passthrough |
23, 107, 513 |
Telnets |
Passthrough |
992 |
Unix-Remote-Execution |
Passthrough |
514, 512 |
Content-Management (monitored) |
||
Documentum |
LZ+TFO+DRE |
1489 |
Filenet |
LZ+TFO+DRE |
32768-32774 |
ProjectWise-FileTransfer |
LZ+TFO+DRE |
5800 |
Directory-Services (monitored) |
||
LDAP |
LZ+TFO+DRE |
389, 8404 |
LDAP-Global-Catalog |
LZ+TFO+DRE |
3268 |
LDAP-Global-Catalog-Secure |
Passthrough |
3269 |
LDAP-secure |
Passthrough |
636 |
Email-and-Messaging (monitored) |
||
HP-OpenMail |
LZ+TFO+DRE |
5755, 5757, 5766, 5767, 5768, 5729 |
Internet-Mail |
LZ+TFO+DRE |
25, 110, 143, 220 |
Internet-Mail-secure |
TFO |
995, 993, 465 |
Lotus-Notes |
LZ+TFO+DRE |
1352 |
MAPI1 |
LZ+TFO+DRE+ MAPI accelerator |
UUID:a4f1db00-ca47-1067-b31f-00dd010662da |
MDaemon |
LZ+TFO+DRE |
3000, 3001 |
NNTP |
LZ+TFO+DRE |
119 |
NNTP-secure |
TFO |
563 |
Novell-Groupwise |
LZ+TFO+DRE |
1677, 1099, 9850, 7205, 3800, 7100, 7180, 7101, 7181, 2800 |
PCMail-Server |
LZ+TFO+DRE |
158 |
QMTP |
LZ+TFO+DRE |
209 |
X400 |
LZ+TFO+DRE |
102 |
Enterprise-Applications (monitored) |
||
SAP |
LZ+TFO+DRE |
3200-3219, 3221-3224, 3226-3267, 3270-3282, 3284-3305, 3307-3388, 3390-3399, 3600-3659, 3662-3699 |
Siebel |
LZ+TFO+DRE |
8448, 2320, 2321 |
File-System (monitored) |
||
AFS |
LZ+TFO+DRE |
7000-7009 |
Apple-AFP |
LZ+TFO+DRE |
548 |
NFS |
LZ+TFO+DRE+ NFS accelerator |
2049 |
Novell-NetWare |
LZ+TFO+DRE |
524 |
Sun-RPC |
Passthrough |
111 |
File-Transfer (monitored) |
||
BFTP |
LZ+TFO+DRE |
152 |
FTP-Control2 |
Passthrough |
21 |
FTP-Data2 |
LZ+TFO+DRE |
src20 |
FTPS2 |
TFO |
990 |
FTP-Control2 |
Passthrough |
src989 |
Simple-FTP |
LZ+TFO+DRE |
115 |
TFTP |
LZ+TFO+DRE |
69 |
TFTPS |
TFO |
3713 |
Instant Messaging |
||
AOL |
Passthrough |
5190-5193 |
Apple-iChat |
Passthrough |
5297, 5298 |
IRC |
Passthrough |
531, 6660-6669 |
Jabber |
Passthrough |
5222, 5269 |
Lotus-Sametime-Connect |
Passthrough |
1533 |
MS-Chat |
Passthrough |
6665, 6667 |
MSN-Messenger |
Passthrough |
1863, 6891-6900 |
Yahoo-Messenger |
Passthrough |
5000, 5001, 5050, 5100 |
Name Services |
||
DNS |
Passthrough |
53 |
iSNS |
Passthrough |
3205 |
Service-Location |
Passthrough |
427 |
WINS |
Passthrough |
42, 137, 1512 |
Other (monitored) |
||
Basic-TCP-services |
Passthrough |
1-19 |
BGP |
LZ+TFO+DRE |
179 |
MS-EndPointMapper |
EPM accelerator |
135 |
MS-Message-Queuing |
LZ+TFO+DRE |
1801, 2101, 2103, 2105 |
NTP |
Passthrough |
123 |
Other-Secure |
Passthrough |
261, 448, 684, 695, 994, 2252, 2478, 2479, 2482, 2484, 2679, 2762, 2998, 3077, 3078, 3183, 3191, 3220, 3410, 3424, 3471, 3496, 3509, 3529, 3539, 3660, 3661, 3747, 3864, 3885, 3896, 3897, 3995, 4031, 5007, 5989, 5990, 7674, 9802, 12109 |
SOAP |
LZ+TFO+DRE |
7627 |
Symantec-AntiVirus |
LZ+TFO+DRE |
2847, 2848, 2967, 2968, 38037, 38292 |
P2P (monitored) |
||
BitTorrent |
Passthrough |
6881-6889, 6969 |
eDonkey |
Passthrough |
4661, 4662 |
Gnutella |
Passthrough |
6346-6349, 6355, 5634 |
Grouper |
Passthrough |
8038 |
HotLine |
Passthrough |
5500-5503 |
Kazaa |
Passthrough |
1214 |
Laplink-ShareDirect |
Passthrough |
2705 |
Napster |
Passthrough |
8875, 7777, 6700, 6666, 6677, 6688 |
Qnext |
Passthrough |
44, 5555 |
SoulSeek |
Passthrough |
2234, 5534 |
WASTE |
Passthrough |
1337 |
WinMX |
Passthrough |
6699 |
Printing (monitored) |
||
AppSocket |
LZ+TFO+DRE |
9100 |
IPP |
LZ+TFO+DRE |
631 |
SUN-Xprint |
LZ+TFO+DRE |
8100 |
Unix-Printing |
LZ+TFO+DRE |
515, 170 |
Remote-Desktop (monitored) |
||
Altiris-CarbonCopy |
Passthrough |
1680 |
Apple-NetAssistant |
Passthrough |
3283 |
Citrix-ICA |
LZ+TFO+DRE |
1494, 2598 |
ControlIT |
TFO |
799 |
Danware-NetOp |
TFO |
6502 |
Laplink-Host |
TFO |
1547 |
Laplink-PCSync |
TFO |
8444 |
Laplink-PCSync-secure |
TFO |
8443 |
MS-Terminal-Services |
TFO |
3389 |
Netopia-Timbuktu |
TFO |
407, 1417-1420 |
PCAnywhere |
TFO |
73, 5631, 5632, 65301 |
RAdmin |
TFO |
4899 |
Remote-Anything |
TFO |
3999, 4000 |
Vmware-VMConsole |
TFO |
902 |
VNC |
TFO |
5801-5809, 6900-6909 |
XWindows |
TFO |
6000-6063 |
Replication (monitored) |
||
Double-Take |
LZ+TFO+DRE |
1100, 1105 |
EMC-Celerra-Replicator |
LZ+TFO+DRE |
8888 |
MS-AD-Replication1 |
LZ+TFO+DRE+ EPM accelerator |
UUID:e3514235-4b06-11d1-ab04-00c04fc2dcd2 |
MS-Content-Replication-Service |
TFO |
560, 507 |
MS-FRS1 |
LZ+TFO+DRE+ EPM accelerator |
UUID:f5cc59b4-4264-101a-8c59-08002b2f8426 |
Netapp-SnapMirror |
LZ+TFO+DRE |
10565-10569 |
Remote-Replication-Agent |
TFO |
5678 |
Rsync |
TFO |
873 |
SQL (monitored) |
||
Borland-Interbase |
LZ+TFO+DRE |
3050 |
IBM-DB2 |
LZ+TFO+DRE |
523 |
InterSystems-Cache |
LZ+TFO+DRE |
1972 |
MS-SQL |
LZ+TFO+DRE |
1433 |
MS-SQL-RPC1 |
LZ+TFO+DRE+ EPM accelerator |
UUID:3f99b900-4d87-101b-99b7-aa0004007f07 |
MySQL |
LZ+TFO+DRE |
3306 |
Oracle |
LZ+TFO+DRE |
66, 1525, 1521 |
Pervasive-SQL |
LZ+TFO+DRE |
1583 |
PostgreSQL |
LZ+TFO+DRE |
5432 |
Scalable-SQL |
LZ+TFO+DRE |
3352 |
SQL-Service |
LZ+TFO+DRE |
156 |
Sybase-SQL |
LZ+TFO+DRE |
1498, 2638, 2439, 3968 |
UniSQL |
LZ+TFO+DRE |
1978, 1979 |
SSL (monitored) |
||
HTTPS |
TFO |
443 |
SSH |
||
SSH |
TFO |
22 |
Storage (monitored) |
||
EMC-SRDFA-IP |
LZ+TFO+DRE |
1748 |
FCIP |
LZ+TFO+DRE |
3225 |
iFCP |
LZ+TFO+DRE |
3420 |
iSCSI |
LZ+TFO+DRE |
3260 |
Streaming (monitored) |
||
Liquid-Audio |
LZ+TFO+DRE |
18888 |
MS-NetShow |
LZ+TFO+DRE |
1755 |
RTSP |
LZ+TFO+DRE+ Video accelerator |
554, 8554 |
VDOLive |
LZ+TFO+DRE |
7000 |
Systems-Management (monitored) |
||
BMC-Patrol |
Passthrough |
6161, 6162, 8160, 8161, 6767, 6768, 10128 |
HP-OpenView |
Passthrough |
7426-7431, 7501, 7510 |
HP-Radia |
LZ+TFO+DRE |
3460, 3461, 3464, 3466 |
IBM-NetView |
Passthrough |
729-731 |
IBM-Tivoli |
LZ+TFO+DRE |
94, 627, 1965, 1580, 1581 |
LANDesk |
LZ+TFO+DRE |
9535, 9593-9595 |
NetIQ |
Passthrough |
2220, 2735, 10113-10116 |
Netopia-netOctopus |
Passthrough |
1917, 1921 |
Novell-ZenWorks |
LZ+TFO+DRE |
1761-1763, 517, 2544, 8039, 2037 |
WAAS-FlowMonitor |
TFO |
7878 |
WBEM |
Passthrough |
5987, 5988 |
Version Management (monitored) |
||
Clearcase |
LZ+TFO+DRE |
371 |
CVS |
LZ+TFO+DRE |
2401 |
VPN |
||
L2TP |
TFO |
1701 |
OpenVPN |
TFO |
1194 |
PPTP |
TFO |
1723 |
WAFS (monitored) |
||
CIFS |
LZ+TFO+DRE+ CIFS accelerator or WAFS legacy acceleration |
139, 445 |
Web (monitored) |
||
HTTP |
LZ+TFO+DRE+ HTTP accelerator |
80, 8080, 8000, 8001, 3128 |
1 These classifiers use the EPM service in WAAS to accelerate traffic. EPM-based applications do not have predefined ports so the application's UUID must be used to identify the traffic. 2 These classifiers identify the source port instead of the destination port. |