Feedback
Contents
- NBAR2 Custom Protocol
- Finding Feature Information
- Prerequisites for NBAR2 Custom Protocol
- Information About NBAR2 Custom Protocol
- Overview of NBAR2 Custom Protocol
- How to Configure NBAR2 Custom Protocol
- Creating and Configuring an Attribute Profile
- Attaching an Attribute Profile to a Protocol
- Configuration Examples for NBAR2 Custom Protocol
- Example: Creating a Profile and Configuring Attributes for the Profile
- Example: Attaching an Attribute Profile to a Protocol
- Additional References for NBAR2 Custom Protocol
- Feature Information for NBAR2 Custom Protocol
NBAR2 Custom Protocol
The NBAR2 Custom Protocol feature lets you create attribute profiles and attach these attribute profiles to protocols. This module provides an overview of the NBAR2 Custom Protocol feature and explains how to configure attribute profiles for custom protocols.
Finding Feature Information
Your software release may not support all the features documented in this module. For the latest caveats and feature information, see Bug Search Tool and the release notes for your platform and software release. To find information about the features documented in this module, and to see a list of the releases in which each feature is supported, see the feature information table at the end of this module.
Use Cisco Feature Navigator to find information about platform support and Cisco software image support. To access Cisco Feature Navigator, go to www.cisco.com/go/cfn. An account on Cisco.com is not required.
Prerequisites for NBAR2 Custom Protocol
Protocol pack licensing must be enabled to configure custom protocols.
Information About NBAR2 Custom Protocol
Overview of NBAR2 Custom Protocol
Network-Based Application Recognition (NBAR) supports the use of custom protocols to identify custom applications. Custom protocols support static port-based protocols and applications that NBAR does not support.
The NBAR2 Custom Protocol feature lets you create attribute profiles for a custom protocol using the ip nbar attribute-map command. You can attach this profile to a protocol by using the ip nbar attribute-set command. An attribute profile can be modified even after you attach the profile to a protocol.
You can modify (add, edit, delete) individual attributes that have already been configured. This modification does not alter the profile-protocol mapping.
 Note | You can also delete an attribute profile. When deleted, the profile gets detached from all the protocols to which it was attached, and those protocols start using the default attribute set. |
How to Configure NBAR2 Custom Protocol
Creating and Configuring an Attribute Profile
DETAILED STEPS
Attaching an Attribute Profile to a Protocol
Note |
DETAILED STEPS
| Command or Action | Purpose | |
|---|---|---|
Step 1 |
enable
Example: Device> enable |
Enables privileged EXEC mode. |
Step 2 |
configure
terminal
Example: Device# configure terminal |
Enters global configuration mode. |
Step 3 |
ip
nbar
attribute-set
protocol-name
profile-name
Example: Device(config)# ip nbar attribute-set acp test-name |
Attaches an attribute profile to a protocol. |
Step 4 |
end
Example: Device(config)# end |
Returns to privileged EXEC mode. |
Configuration Examples for NBAR2 Custom Protocol
- Example: Creating a Profile and Configuring Attributes for the Profile
- Example: Attaching an Attribute Profile to a Protocol
Example: Creating a Profile and Configuring Attributes for the Profile
The following example shows how to create an attribute profile with attributes configured for the Network News Transfer Protocol (NNTP) protocol:
Device> enable Device# configure terminal Device(config)# ip nbar attribute-map nntp-attrib Device(config-attribute-map)# attribute category newsgroup Device(config-attribute-map)# attribute application-group nntp-group Device(config-attribute-map)# attribute tunnel tunnel-no Device(config-attribute-map)# attribute encrypted encrypted-yes Device(config-attribute-map)# attribute p2p-technology p2p-tech-no Device(config-attribute-map)# end
Additional References for NBAR2 Custom Protocol
Related Documents
Technical Assistance
|
Description |
Link |
|---|---|
|
The Cisco Support and Documentation website provides online resources to download documentation, software, and tools. Use these resources to install and configure the software and to troubleshoot and resolve technical issues with Cisco products and technologies. Access to most tools on the Cisco Support and Documentation website requires a Cisco.com user ID and password. |
Feature Information for NBAR2 Custom Protocol
The following table provides release information about the feature or features described in this module. This table lists only the software release that introduced support for a given feature in a given software release train. Unless noted otherwise, subsequent releases of that software release train also support that feature.
Use Cisco Feature Navigator to find information about platform support and Cisco software image support. To access Cisco Feature Navigator, go to www.cisco.com/go/cfn. An account on Cisco.com is not required.
| Table 1 | Feature Information for NBAR2 Custom Protocol |
|
Feature Name |
Releases |
Feature Information |
|---|---|---|
|
NBAR2 Custom Protocol |
15.2(4)M2 |
The NBAR2 Custom Protocol feature configures attribute profiles for protocols, and maps profiles to protocols. The following commands were introduced or modified: attribute , ip nbar attribute-map, ip nbar attribute-set. |
Cisco and the Cisco logo are trademarks or registered trademarks of Cisco and/or its affiliates in the U.S. and other countries. To view a list of Cisco trademarks, go to this URL: www.cisco.com/go/trademarks. Third-party trademarks mentioned are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company. (1110R)
Any Internet Protocol (IP) addresses and phone numbers used in this document are not intended to be actual addresses and phone numbers. Any examples, command display output, network topology diagrams, and other figures included in the document are shown for illustrative purposes only. Any use of actual IP addresses or phone numbers in illustrative content is unintentional and coincidental.