Default Application Policies


The WAAS software includes over 150 default application policies that help your WAAS system classify and optimize some of the most common traffic on your network.

Table A-1 lists the default applications and classifiers that WAAS will either optimize or pass through based on the policies that are provided with the system.

Before you create a new application policy, we recommend that you review the default policies and modify them as appropriate. Often, you can more easily modify an existing policy than create a new one.

When reviewing Table A-1, note the following information:

The subheadings represent the application names, and the associated classifiers are listed under these subheadings. For example, Authentication is a type of application and Kerberos is a classifier for that application.

Applications with the word (monitored) next to them are monitored by the WAAS Central Manager, which can display statistics for only 20 applications at a time. To view statistics for one of the unmonitored applications, use one of the following methods:

Use the WAAS CLI, which can display statistics for all applications on a WAAS device. For more information, see the Cisco Wide Area Application Services Command Reference.

Modify the application settings so the WAAS Central Manager GUI displays statistics for the desired application. For more information, see Chapter 12, "Configuring Application Acceleration."

The WAAS software uses the following optimization technologies based on the type of traffic that it encounters:

TFO (transport flow optimization)—A collection of optimization technologies such as automatic windows scaling, increased buffering, and selective acknowledgement that optimize all TCP traffic over your network.

RE (redundancy elimination)—A compression technology that reduces the size of transmitted data by removing redundant information before sending the shortened data stream over the WAN. RE operates on significantly larger streams and maintains a much larger compression history than LZ compression.

LZ (compression)—Another compression technology that operates on smaller data streams and keeps limited compression history compared to RE.

Application accelerator—A collection of individual application accelerators for the following traffic types: CIFS, EPM, HTTP, MAPI, NFS, SSL, and streaming video.

.

Table A-1 Default Traffic Policies 

Classifier
WAAS Action
Destination Ports

Authentication

Kerberos

Passthrough

88, 2053, 754, 888, 543, 464, 544, 749

SASL

Passthrough

3659

TACACS

Passthrough

49

Backup (monitored)

Amanda

TFO

10080

BackupExpress

TFO

6123

CommVault

TFO

8400-8403

Connected-DataProtector

TFO

16384

IBM-TSM

LZ+TFO+DRE

1500-1502

Legato-NetWorker

TFO

7937, 7938, 7939

Legato-RepliStor

TFO

7144, 7145

Veritas-BackupExec

TFO

6101, 6102, 6106, 3527, 1125

Veritas-NetBackup

TFO

13720, 13721, 13782, 13785

CAD

PDMWorks

LZ+TFO+DRE

30000, 40000

Call-Management

Cisco-CallManager

Passthrough

2443, 2748

SIP-secure

Passthrough

5061

VoIP-Control

Passthrough

1300, 2428, 2000-2002, 1718-1720, 5060, 11000-11999

Conferencing

CU-SeeMe

Passthrough

7640, 7642, 7648, 7649

ezMeeting

Passthrough

10101-10103, 26260-26261

Intel-Proshare

Passthrough

5713-5717

MS-NetMeeting

Passthrough

522, 1503, 1731

VocalTec

Passthrough

1490, 6670, 25793, 22555

Console

SSL-Shell

Passthrough

614

Telnet

Passthrough

23, 107, 513

Telnets

Passthrough

992

Unix-Remote-Execution

Passthrough

514, 512

Content-Management (monitored)

Documentum

LZ+TFO+DRE

1489

Filenet

LZ+TFO+DRE

32768-32774

ProjectWise-FileTransfer

LZ+TFO+DRE

5800

Directory-Services (monitored)

LDAP

LZ+TFO+DRE

389, 8404

LDAP-Global-Catalog

LZ+TFO+DRE

3268

LDAP-Global-Catalog-Secure

Passthrough

3269

LDAP-secure

Passthrough

636

Email-and-Messaging (monitored)

HP-OpenMail

LZ+TFO+DRE

5755, 5757, 5766, 5767, 5768, 5729

Internet-Mail

LZ+TFO+DRE

25, 110, 143, 220

Internet-Mail-secure

TFO

995, 993, 465

Lotus-Notes

LZ+TFO+DRE

1352

MAPI1

LZ+TFO+DRE+ MAPI accelerator

UUID:a4f1db00-ca47-1067-b31f-00dd010662da

MDaemon

LZ+TFO+DRE

3000, 3001

NNTP

LZ+TFO+DRE

119

NNTP-secure

TFO

563

Novell-Groupwise

LZ+TFO+DRE

1677, 1099, 9850, 7205, 3800, 7100, 7180, 7101, 7181, 2800

PCMail-Server

LZ+TFO+DRE

158

QMTP

LZ+TFO+DRE

209

X400

LZ+TFO+DRE

102

Enterprise-Applications (monitored)

SAP

LZ+TFO+DRE

3200-3219, 3221-3224, 3226-3267, 3270-3282, 3284-3305, 3307-3388, 3390-3399, 3600-3659, 3662-3699

Siebel

LZ+TFO+DRE

8448, 2320, 2321

File-System (monitored)

AFS

LZ+TFO+DRE

7000-7009

Apple-AFP

LZ+TFO+DRE

548

NFS

LZ+TFO+DRE+ NFS accelerator

2049

Novell-NetWare

LZ+TFO+DRE

524

Sun-RPC

Passthrough

111

File-Transfer (monitored)

BFTP

LZ+TFO+DRE

152

FTP-Control2

Passthrough

21

FTP-Data2

LZ+TFO+DRE

src20

FTPS2

TFO

990

FTP-Control2

Passthrough

src989

Simple-FTP

LZ+TFO+DRE

115

TFTP

LZ+TFO+DRE

69

TFTPS

TFO

3713

Instant Messaging

AOL

Passthrough

5190-5193

Apple-iChat

Passthrough

5297, 5298

IRC

Passthrough

531, 6660-6669

Jabber

Passthrough

5222, 5269

Lotus-Sametime-Connect

Passthrough

1533

MS-Chat

Passthrough

6665, 6667

MSN-Messenger

Passthrough

1863, 6891-6900

Yahoo-Messenger

Passthrough

5000, 5001, 5050, 5100

Name Services

DNS

Passthrough

53

iSNS

Passthrough

3205

Service-Location

Passthrough

427

WINS

Passthrough

42, 137, 1512

Other (monitored)

Basic-TCP-services

Passthrough

1-19

BGP

LZ+TFO+DRE

179

MS-EndPointMapper

EPM accelerator

135

MS-Message-Queuing

LZ+TFO+DRE

1801, 2101, 2103, 2105

NTP

Passthrough

123

Other-Secure

Passthrough

261, 448, 684, 695, 994, 2252, 2478, 2479, 2482, 2484, 2679, 2762, 2998, 3077, 3078, 3183, 3191, 3220, 3410, 3424, 3471, 3496, 3509, 3529, 3539, 3660, 3661, 3747, 3864, 3885, 3896, 3897, 3995, 4031, 5007, 5989, 5990, 7674, 9802, 12109

SOAP

LZ+TFO+DRE

7627

Symantec-AntiVirus

LZ+TFO+DRE

2847, 2848, 2967, 2968, 38037, 38292

P2P (monitored)

BitTorrent

Passthrough

6881-6889, 6969

eDonkey

Passthrough

4661, 4662

Gnutella

Passthrough

6346-6349, 6355, 5634

Grouper

Passthrough

8038

HotLine

Passthrough

5500-5503

Kazaa

Passthrough

1214

Laplink-ShareDirect

Passthrough

2705

Napster

Passthrough

8875, 7777, 6700, 6666, 6677, 6688

Qnext

Passthrough

44, 5555

SoulSeek

Passthrough

2234, 5534

WASTE

Passthrough

1337

WinMX

Passthrough

6699

Printing (monitored)

AppSocket

LZ+TFO+DRE

9100

IPP

LZ+TFO+DRE

631

SUN-Xprint

LZ+TFO+DRE

8100

Unix-Printing

LZ+TFO+DRE

515, 170

Remote-Desktop (monitored)

Altiris-CarbonCopy

Passthrough

1680

Apple-NetAssistant

Passthrough

3283

Citrix-ICA

LZ+TFO+DRE

1494, 2598

ControlIT

TFO

799

Danware-NetOp

TFO

6502

Laplink-Host

TFO

1547

Laplink-PCSync

TFO

8444

Laplink-PCSync-secure

TFO

8443

MS-Terminal-Services

TFO

3389

Netopia-Timbuktu

TFO

407, 1417-1420

PCAnywhere

TFO

73, 5631, 5632, 65301

RAdmin

TFO

4899

Remote-Anything

TFO

3999, 4000

Vmware-VMConsole

TFO

902

VNC

TFO

5801-5809, 6900-6909

XWindows

TFO

6000-6063

Replication (monitored)

Double-Take

LZ+TFO+DRE

1100, 1105

EMC-Celerra-Replicator

LZ+TFO+DRE

8888

MS-AD-Replication1

LZ+TFO+DRE+ EPM accelerator

UUID:e3514235-4b06-11d1-ab04-00c04fc2dcd2

MS-Content-Replication-Service

TFO

560, 507

MS-FRS1

LZ+TFO+DRE+ EPM accelerator

UUID:f5cc59b4-4264-101a-8c59-08002b2f8426

Netapp-SnapMirror

LZ+TFO+DRE

10565-10569

Remote-Replication-Agent

TFO

5678

Rsync

TFO

873

SQL (monitored)

Borland-Interbase

LZ+TFO+DRE

3050

IBM-DB2

LZ+TFO+DRE

523

InterSystems-Cache

LZ+TFO+DRE

1972

MS-SQL

LZ+TFO+DRE

1433

MS-SQL-RPC1

LZ+TFO+DRE+ EPM accelerator

UUID:3f99b900-4d87-101b-99b7-aa0004007f07

MySQL

LZ+TFO+DRE

3306

Oracle

LZ+TFO+DRE

66, 1525, 1521

Pervasive-SQL

LZ+TFO+DRE

1583

PostgreSQL

LZ+TFO+DRE

5432

Scalable-SQL

LZ+TFO+DRE

3352

SQL-Service

LZ+TFO+DRE

156

Sybase-SQL

LZ+TFO+DRE

1498, 2638, 2439, 3968

UniSQL

LZ+TFO+DRE

1978, 1979

SSL (monitored)

HTTPS

TFO

443

SSH

SSH

TFO

22

Storage (monitored)

EMC-SRDFA-IP

LZ+TFO+DRE

1748

FCIP

LZ+TFO+DRE

3225

iFCP

LZ+TFO+DRE

3420

iSCSI

LZ+TFO+DRE

3260

Streaming (monitored)

Liquid-Audio

LZ+TFO+DRE

18888

MS-NetShow

LZ+TFO+DRE

1755

RTSP

LZ+TFO+DRE+ Video accelerator

554, 8554

VDOLive

LZ+TFO+DRE

7000

Systems-Management (monitored)

BMC-Patrol

Passthrough

6161, 6162, 8160, 8161, 6767, 6768, 10128

HP-OpenView

Passthrough

7426-7431, 7501, 7510

HP-Radia

LZ+TFO+DRE

3460, 3461, 3464, 3466

IBM-NetView

Passthrough

729-731

IBM-Tivoli

LZ+TFO+DRE

94, 627, 1965, 1580, 1581

LANDesk

LZ+TFO+DRE

9535, 9593-9595

NetIQ

Passthrough

2220, 2735, 10113-10116

Netopia-netOctopus

Passthrough

1917, 1921

Novell-ZenWorks

LZ+TFO+DRE

1761-1763, 517, 2544, 8039, 2037

WAAS-FlowMonitor

TFO

7878

WBEM

Passthrough

5987, 5988

Version Management (monitored)

Clearcase

LZ+TFO+DRE

371

CVS

LZ+TFO+DRE

2401

VPN

L2TP

TFO

1701

OpenVPN

TFO

1194

PPTP

TFO

1723

WAFS (monitored)

CIFS

LZ+TFO+DRE+ CIFS accelerator or WAFS legacy acceleration

139, 445

Web (monitored)

HTTP

LZ+TFO+DRE+ HTTP accelerator

80, 8080, 8000, 8001, 3128

1 These classifiers use the EPM service in WAAS to accelerate traffic. EPM-based applications do not have predefined ports so the application's UUID must be used to identify the traffic.

2 These classifiers identify the source port instead of the destination port.