NBAR2 Protocol Packs are available for download on the Cisco.com software download page (http://www.cisco.com/cisco/software/navigator.html). On the download page, specify a platform model to display software available for download. One software option will be NBAR2 Protocol Packs.
To display protocol packs available for the Cisco ASR 1001 platform, the navigation path is:
Products > Routers > Service Provider Edge Routers > ASR 1000 Series Aggregation Services Routers > ASR 1001 Router
Special Notes and Limitations
Special Note or Limitation
Applicable to NBAR2 Protocol Pack 21.0.0 for Cisco IOS Version 15.5(3)M2 and IOS-XE 3.16.2S Version 15.5(3)S2
Login and a few encrypted sessions are classified as iTunes.
HTTP traffic generated by the bitcomet bittorrent client might be classified as HTTP.
For capwap-data to be classified correctly, capwap-control must also be enabled.
During configuring QoS class-map with ftp-data, the FTP protocol must be selected. As an alternative, the FTP application group can be selected.
Encrypted video streaming generated by hulu may be classified as its underlying protocol rtmpe.
Traffic generated by the LogMeIn android app may be classified incorrectly as ssl.
Login and chat traffic generated by the ms-lync client may be classified incorrectly as ssl.
Traffic generated by pcAnywhere for Mac may be classified as unknown.
Some perfect-dark sessions may be classified as unknown.
Login to QQ applications which is not via the internet may not be classified as qq-accounts.
The Sub Classification (SC) mechanism was modified to include search for wildcard.
The SC rule for the part of the Server Name Indication (SNI) or the common name (CN) can now include a wildcard. If a wildcard is not used, the complete SNI or the CN is required.
For example, you can either use, "*.pqr.com" or "abc.pqr.com" to classify abc.pqr.com.