- Release Notes for NBAR2 Protocol Pack6.0.0
- 3COM-AMP3 through AYIYA-IPV6-TUNNELED
- BABELGUM through BR-SAT-MON
- CABLEPORT through CYCLESERV2
- DASP through DWR
- ECHO through EXEC
- FACEBOOK through FUJITSU-DEV
- GAME-SPY through GURUGURU
- H323 through HYPERWAVE-ISP
- IAFDBASE through JARGON
- KALI through LWAPP
- MAC-SRVR-ADMIN through MYSQL
- NAME through NXEDIT
- OBEX through OSU-NMS
- P10 through PWDGEN
- QBIKGDP through RXE
- SAFT through SYSTAT
- TACACS through TWITTER
- UAAC through VSLMP
- WAP-PUSH through ZSERV
Release Notes for NBAR2 Protocol Pack 6.0.0
Overview
NBAR2 Protocol Pack 6.0.0 is the first protocol pack that contains the Enhanced Web Classification feature that supports multi-transaction export of URLs. For more information on this feature, see Classifying Network Traffic Using NBAR.
The NBAR2 Protocol Pack 6.0.0 introduces the support for detecting PCoIP (vm ware-view) granularly, to provide per session and per packet QoS. This feature has been developed in collaboration with Teradici, the developer of the PCoIP protocol. Using this feature, different types of traffic can be assigned to different QoS queues with specific priorities. This ensures that the higher priority traffic gets better treatment, there by improving the quality of experience. For more information on this feature, see the Application Visibility and Control for PCoIP white paper.
Supported Platforms
Network Based Application Recognition (NBAR) Protocol Pack 6.0.0 is supported on Cisco ASR 1000 Series Aggregation Services Routers.
New Protocols in NBAR2 Protocol Pack 6.0.0
The following protocols are added to NBAR2 Protocol Pack 6.0.0:
| Common Name |
Syntax Name |
Description |
|---|---|---|
| ESPN Browsing |
espn-browsing |
ESPN is a global television network focused on sports-related programs. espn-browsing is the protocol used for accessing and browsing the websites and mobile applications of the network for iPhone, iPad, Android, and WinRT. |
| ESPN Video |
espn-video |
ESPN is a global television network focused on sports-related programs. espn-video is the protocol used for watching video streams using browser or mobile applications for iPhone, iPad, Android, and WinRT. espn-video is used for video streaming services of the network. |
| |
|
WhatsApp Messenger is a proprietary, cross-platform instant messaging application for smartphones. In addition to text messaging, users can send images, location, contacts, and video and audio media messages. |
Caveats in NBAR2 Protocol Pack 6.0.0
Note: If you have an account on Cisco.com, you can also use the Bug Toolkit to find select caveats of any severity. To reach the Bug Toolkit, log in to Cisco.com and go to
http://www.cisco.com/pcgi-bin/Support/Bugtool/launch_bugtool.pl. (If the defect that you have requested cannot be displayed, this may be due to one or more of the following reasons: the defect number does not exist, the defect does not have a customer-visible description yet, or the defect has been marked Cisco Confidential.)
Known Caveats in NBAR2 Protocol Pack 6.0.0
The following table lists the known caveats in NBAR2 Protocol Pack 6.0.0:
| Known Caveat |
Description |
|---|---|
| CSCtx65481 |
Traffic generated by pcAnywhere for mac and pcAnywhere mobile app might be misclassified as unknown |
| CSCub62860 |
gtalk-video might be misclassified as rtp |
| CSCub89835 |
gbridge pc client might not be blocked |
| CSCuc43505 |
Traffic generated by AIM Pro might be misclassified as unknown and webex-meeting |
| CSCuc57822 |
NBAR classification granularity may not work or some protocols may be classified as unknown. The CSCuc57822 caveat is specific to Cisco IOS XE Release 3.7S on Cisco ASR 1000 Series Aggregation Services Routers. |
| CSCud62120 |
BitTorrent's traffic is changed when being blocked |
| CSCue08462 |
Some Xunlei-KanKan traffic may be misclassified as Xunlei |
| CSCug12174 |
Under heavy SSL traffic, the following error message my appear: ": %STILE_CLIENT-4-MAX_LINK_TOUCH_WARN: F0: cpp_cp: NBAR number of flow-slinks threshold is reached, can't allocate more memory for flow-slinks" |
| CSCuh49380 |
PCoIP session-priority configuration limitation |
| CSCuh53623 |
Segmented packets are not classified when using NBAR sub classification |
| CSCuh63870 |
Video traffic generated by some ESPN websites might be misclassified as unknown |
| CSCuh63889 |
Web traffic generated by some ESPN websites might be misclassified as unknown |
Restrictions and Limitations in NBAR2 Protocol Pack 6.0.0
The following table lists the limitations and restrictions in NBAR2 Protocol Pack 6.0.0:
| Protocol |
Limitation/Restriction |
|---|---|
| bittorrent |
http traffic generated by the bitcomet bittorrent client might be classified as http |
| capwap-data |
For capwap-data to be classified correctly, capwap-control must also be enabled. |
| ftp |
During configuring QoS class-map with ftp-data, the ftp protocol must be selected. As an alternative, the ftp application group can be selected. |
| hulu |
Encrypted video streaming generated by hulu might be classified as its underlying protocol rtmpe |
| livemeeting |
Application is discontinued and replaced with ms-lync, traffic generated by livemeeting may be classified as ms-lync |
| logmein |
Traffic generated by the logmein android app might be misclassified as ssl |
| ms-lync |
Login and chat traffic generated by the ms-lync client might be misclassified as ssl |
| qq-accounts |
Login to QQ applications which is not via web may not be classified as qq-accounts |
| secondlife |
Voice traffic generated by secondlife might be misclassified as ssl |
Downloading NBAR2 Protocol Packs
NBAR2 Protocol Packs are available for download as Software Type 'NBAR2 Protocol Pack' on cisco.com software download page (http://www.cisco.com/cisco/software/navigator.html).
Additional References
Related Documents
| Related Topic |
Document Title |
|---|---|
| Application Visibility and Control |
|
| Classifying Network Traffic Using NBAR |
|
| NBAR Protocol Pack |
NBAR Protocol Pack module |
| QoS: NBAR Configuration Guide |
|
| QoS Command Reference |
Quality of Service Solutions Command Reference |
Feedback