Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco ......ReleaseNotesforNBAR2ProtocolPack37.0.0...
Transcript of Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco ......ReleaseNotesforNBAR2ProtocolPack37.0.0...
Release Notes for NBAR2 Protocol Pack 37.0.0for Cisco Wireless Controllers
• Overview, on page 2• Supported Platforms, on page 3• New Protocols in NBAR2 Protocol Pack 37.0.0, on page 4• Updated Protocols in NBAR2 Protocol Pack 37.0.0, on page 10• Deprecated Protocols in NBAR2 Protocol Pack 37.0.0, on page 16• Caveats in NBAR2 Protocol Pack 37.0.0, on page 17• Downloading NBAR2 Protocol Pack 37.0.0, on page 20• Special Notes and Limitations, on page 21
Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers1
OverviewThe NBAR2 Protocol Pack 37.0.0 release includes:
• New protocols
• Updated protocols
• Classification improvements
• Bug fixes
Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers2
Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless ControllersOverview
Supported PlatformsNetwork-Based Application Recognition (NBAR2) Protocol Pack 37.0.0 support is provided on the followingCisco Wireless Controller platforms.
• Cisco 3504 Wireless Controller
• Cisco 5520 Wireless Controller
• Cisco 8540 Wireless Controller
• Cisco Virtual Wireless Controller (vWLC) on the following platforms
• VMware vSphere Hypervisor (ESXi) Version 5.x and 6.x
• Hyper-V on Microsoft Servers 2012 and later versions (Support introduced in Release 8.4)
• Kernel-based virtual machine (KVM) (Support introduced in Release 8.1. After KVM is deployed,we recommend that you do not downgrade to a Cisco Wireless release that is earlier than Release8.1.)
• Cisco Wireless Controllers for High Availability for Cisco 3504 controller, Cisco 5520 controller, andCisco 8540 controller.
• Cisco Mobility Express Solution
Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers3
Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless ControllersSupported Platforms
New Protocols in NBAR2 Protocol Pack 37.0.0The table below lists the new protocols added in NBAR2 Protocol Pack 37.0.0 (protocols added since 24.0.0).
Long DescriptionCommon NameProtocol Name
Tools and APIs used by Adobe applications.Adobe Servicesadobe-services
Human resources management software and services.Automatic DataProcessing
adp
Akamai Technologies, Inc. is an American contentdelivery network (CDN) and cloud services provider. Thecompany operates a network of servers around the worldand rents capacity on these servers to customers who wanttheir websites to work faster by distributing content fromlocations close to the user.
Akamaiakamai
Apple Pay is a mobile payment and digital wallet servicefrom Apple, enabling payments by iPhone, AppleWatch,iPad, or Mac.
Apple Payapple-pay
Apple Push Notification Service (APNs) is a platformnotification service created by Apple Inc. that enablesthird party application developers to send notification datato applications installed on Apple devices.
apple-push-notificationApple Push NotificationService
The Apple Updates service provides updates for Appleplatforms and applications.
Apple Updatesapple-updates
Bitcoin is a worldwide cryptocurrency and digital paymentsystem.
Bitcoinbitcoin
Box is an online file sharing and content managementservice for businesses.
Boxbox
Box is an online file sharing and content managementservice for businesses.
Boxbox
BrightTalk professional webinar and video solutions.brighttalkBrightTalk
Cisco Connected Mobile Experiences (CMX) family ofproducts leverages open-architecture principles,intent-driven workflows, and contextual relevance at thecore of Cisco Digital Network Architecture (DNA).
Cisco CMXcisco-cmx
Cisco Collaboration Voice traffic associated with variousCisco Unified Communication clients.
Cisco CollaborationAudio
cisco-collaboration-audio
Cisco Collaboration Video by various Cisco UnifiedCommunication clients.
Cisco CollaborationVideo
cisco-collab-video
Cisco network controller device and SDN solutions.Cisco Controllercisco-controller
Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers4
Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless ControllersNew Protocols in NBAR2 Protocol Pack 37.0.0
Long DescriptionCommon NameProtocol Name
IP SLA (Internet Protocol Service Level Agreement) isan active computer network measurement technology.
Cisco IP SLAcisco-ip-sla
Cisco Network Mobility Services Protocol (NMSP)manages communication between the mobility serviceengine and the wireless controller. This includes transportof telemetry, emergency, and RSSI values between themobility service and the controller.
Cisco NMSPcisco-nmsp
Control flow of Cisco IP phone.Cisco Phone Controlcisco-phone-control
Cisco-media is used mainly in corporations and can beused on- or off-site.
Cisco Phone Mediacisco-phone-media
Cisco Real-Time Monitoring Tool.Cisco RTMTcisco-rtmt
Cisco Real-Time Monitoring Tool.Cisco RTMTcisco-rtmt
Network-level component of Cisco AVC that providesservices to participating devices in a network.
Cisco software-definedAVC
cisco-sd-avc
Cisco Smart Probes help collect performance metricswhen there is no actual user traffic.
Cisco Smart Probecisco-smart-probe
Cisco Spark Audio - Audio of unified communicationsclient and SaaS with mobile team communication: groupchat, private chat, video calls with screen sharing and filesharing.
Cisco Spark Audiocisco-spark-audio
Cisco Spark Media - Media of unified communicationsclient and SaaS with mobile team communication: groupchat, private chat, video calls with screen sharing and filesharing.
Cisco Spark Mediacisco-spark-media
Cisco Spark Video - Video of unified communicationsclient and SaaS with mobile team communication: groupchat, private chat, video calls with screen sharing and filesharing
Cisco Spark Videocisco-spark-video
Cisco corporate TV, with interactive web streaming, andlive studio shows.
Cisco TVcisco-tv
Cable News Network (CNN) is an American basic cableand satellite television news channel.
cnnCNN
Concur SaaS travel and expense management services forbusinesses.
Concurconcur
Audio-Video Conferencing and Collaboration Solutions.conferencingconferencing
Cloud-based e-commerce platform and related servicesfor retailers and manufacturers.
Demandwaredemandware
Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers5
Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless ControllersNew Protocols in NBAR2 Protocol Pack 37.0.0
Long DescriptionCommon NameProtocol Name
Facebook audio streaming services.Facebook AudioStreaming
facebook-audio
Facebook media streaming services.Facebook MediaStreaming
facebook-media
Facebook video streaming services.Facebook VideoStreaming
facebook-video
Google downloads and Google application updates.Google DownloadsServices
google-downloads
Audio streaming related to various Google services, APIs,and collaboration software.
Google Services Audiogoogle-services-audio
Media streaming related to various Google services, APIs,and collaboration software.
Google Services Mediagoogle-services-media
Media streaming related to various Google services, APIs,and collaboration software.
Google Services Videogoogle-services-video
GoToMeeting is a web-hosted service for onlinemeeting,desktop sharing, and video conferencing that enables usersto meet with other computer users, customers, clients, orcolleagues via internet in real time.
gotomeetingGoToMeeting
Gyao is a video site operated by Yahoo Japan.gyaoGyao
H.225 is part of the H.323 family of telecommunicationprotocols, used for call signaling and control.
h225H.225
H.245 is a control channel protocol used within H.323and H.324 communication sessions, and involves the linetransmission of non-telephone signals.
h245H.245
Google Hangouts is a communication platform developedby Google, which includes instant messaging, video chat,SMS, and VOIP features.
Hangoutshangouts
Google Hangouts audio.Hangouts Audiohangouts-audio
Google Hangouts chat.Hangouts Chathangouts-chat
Google Hangouts file transfer.Hangouts File Transferhangouts-file-transfer
Google Hangouts media.Hangouts Mediahangouts-media
Google Hangouts video.Hangouts Videohangouts-video
Software products and services for inbound marketingand sales, including tools for social media marketing,content management, web analytics, and search engineoptimization.
HubSpothubspot
Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers6
Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless ControllersNew Protocols in NBAR2 Protocol Pack 37.0.0
Long DescriptionCommon NameProtocol Name
Institut Studio Francais, an institution teaching the Frenchlanguage. Offers online private French courses.
Institut-SFinstitut-sf
iPass allow users to connect millions of hotspots aroundthe world.
iPassipass
Media streaming for iTunes media player and medialibrary application.
iTunes Mediaitunes-media
Issue tracking product by Atlassian.Jirajira
Communication and collaboration solutions for business.Jive Softwarejive-software
Lifesize is a video and audio telecommunications companyproviding high definition videoconferencing endpointsand accessories, touchscreen conference room phones,and a cloud-based video collaboration platform.
Lifesizelifesize
Corporate marketing automation software.Marketomarketo
McAfee Antivirus and security.McAfee Antivirusmcafee-antivirus
Skype for Business (formerly Microsoft Lync) is acommunications and collaboration platform that bringstogether an experience inspired by Skype withenterprise-grade security, compliance, and control.
Features include presence, IM, voice and video calls, andonline meetings. Because it is built intoMicrosoft Office,initiating chats, calls, and meetings is an integratedexperience within Office.
Skype for Business(MS-Lync) Control
ms-lync-control
Cloud-based software services for managing businessfinancials, operations, and customer relations.
Netsuitenetsuite
Oracle database software and technology, databasemanagement, cloud-engineered systems, and enterprisesoftware.
Oracleoracle
Cloud-based communications and collaboration solutionsfor businesses.
RingCentralringcentral
SCCP User Adaptation (SUA) provides an SCTPadaptation layer for the seamless backhaul or peering ofSignalling Connection Control Part user messages andservice interface across an IP network.
sccp-user-adaptationSCCP User Adaptation
Enterprise cloud computing services and IT servicemanagement.
ServiceNowservicenow
Enterprise cloud computing services and IT servicemanagement.
ServiceNowservicenow
Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers7
Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless ControllersNew Protocols in NBAR2 Protocol Pack 37.0.0
Long DescriptionCommon NameProtocol Name
Oracle Social CRM combines traditional enterprise CRMcapabilities with social networking and Web 2.0technologies. The applications are designed to reflect theway sales people work by helping them identify qualifiedleads, develop sales campaigns, and collaborate withcolleagues.
siebel-crmSiebel CRM
Siri is a personal voice assistant. It uses a natural languageuser interface to answer questions, makerecommendations, and perform actions by delegatingrequests to a set of web services.
Sirisiri
SourceForge, web-based open source applicationrepository and software directory.
SourceForgesourceforge
Splunk is a platform for collecting and analyzingmachine-generated big data in an enterprise ITenvironment
Splunksplunk
Spotify is a commercial music streaming service providingdigital rights management (DRM)-restricted content fromrecord labels, including Sony, EMI,WarnerMusic Groupand Universal. Users can browse for music, or search byartist, album, genre, playlist, or record label. Paid"Premium" subscriptions remove advertisements and allowusers to download music to listen offline.
spotifySpotify
The SQLI (StructuredQuery Language Interface) protocolis a proprietary protocol used by IBM Informix servers.
sqliSQLI
SugarCRM is a Cupertino, California-based company thatproduces the web application, Sugar, a customerrelationship management (CRM) system.
SugarCRMsugarcrm
Telepresence Voice.Telepresence Audiotelepresence-audio
Linux traceroute command, which provides informationabout routes to a network host.
Traceroute Linuxtraceroute-linux
TusFiles is a cloud storage provider for online hostingand sharing of files.
TusFilestus-files
Vimeo is a video-sharing website in which users canupload, share, and view videos.
vimeoVimeo
Web and mobile analytics, and customer engagementplatforms.
Web Analyticsweb-analytics
WebRTC provides browsers andmobile applications withReal-Time Communications (RTC) capabilities.
WebRTCweb-rtc
Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers8
Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless ControllersNew Protocols in NBAR2 Protocol Pack 37.0.0
Long DescriptionCommon NameProtocol Name
WebRTC provides browsers andmobile applications withReal-Time Communications (RTC) capabilities.
WebRTC Audioweb-rtc-audio
WebRTC provides browsers andmobile applications withReal-Time Communications (RTC) capabilities.
WebRTC Videoweb-rtc-video
WeChat is a mobile text and voice messagingcommunication service. The app is available on Android,iPhone, BlackBerry, Windows Phone and Symbianphones.
WeChatwechat
Cloud-based on-demand financialmanagement and humancapital management software.
Workdayworkday
Information technology and business managementservices, including CRM, mail, reports, meetings, chat,docs, wiki, recruiting, invoice, surveys, and more.
Zoho Serviceszoho-services
Enterprise video conferencing and web conferencing.Zoom Meetingszoom-meetings
Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers9
Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless ControllersNew Protocols in NBAR2 Protocol Pack 37.0.0
Updated Protocols in NBAR2 Protocol Pack 37.0.0The following table lists the protocols updated to improve classification in NBAR2 Protocol Pack 37.0.0.0since Protocol Pack 24.0.0.0.
UpdatesProtocol
Updated signaturesamazon-web-services
Updated signaturescifs
Updated signaturescisco-collaboration
Updated signaturescisco-jabber-control
Updated signatures, changed attributescisco-phone
Changed attributescisco-phone-media
Changed attributescisco-phone-video
Updated signaturescisco-spark
Updated signaturesconference-server
Updated signaturesconferencing
Updated signaturesconnected-backup
Updated signaturescrashplan
Updated signaturesgoogle-services
Updated signatureshttp
Updated signaturesicloud
Updated signatureskerberos
Updated signaturesldap
Updated signaturesmongo
Updated signaturesms-office-365
Updated signaturesms-office-web-apps
Updated signaturesms-services
Updated signaturesms-wbt
Updated signaturesmysql
Updated signaturesntp
Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers10
Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless ControllersUpdated Protocols in NBAR2 Protocol Pack 37.0.0
UpdatesProtocol
Updated signaturesoracle-sqlnet
Updated signaturesoutlook-web services
Updated signaturesperforce
Updated signaturesrtcp
Updated signaturesrtcp
Updated signaturesrtp
Updated signaturesrtp-audio
Updated signaturesrtp-video
Updated signaturessip
Updated signaturessqlserver
Updated signaturesssl
Updated signaturestcpoverdns
Updated signaturestelepresence-audio
Updated signaturestelepresence-control
Updated signaturestelepresence-media
Updated signaturestelnet
Updated signaturestftp
Updated signaturesvmware-vsphere
Updated signaturesvnc
Updated signatureswebex-meeting
Updated signatureswifi-calling
Updated signaturesAcano
Updated signaturesMicrosoft SMS
Updated signaturesCisco Spark
Updated attributeapple-services
Updated attributeat-3
Updated attributeat-5
Updated attributeapple-services
Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers11
Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless ControllersUpdated Protocols in NBAR2 Protocol Pack 37.0.0
UpdatesProtocol
Updated attributeat-3
Updated attributeat-5
Updated attributeat-7
Updated attributeat-8
Updated attributeavast-antivirus
Updated attributeayiya-ipv6-tunneled
Updated attributecapwap-data
Updated attributecheckpoint-cpmi
Updated attributeconference-server
Updated attributecorba-iiop-ssl
Updated attributecorba-iiop-ssl
Updated attributedicom
Updated attributedwr
Updated attributefacebook-audio
Updated attributefacebook-media
Updated attributefacebook-video
Updated attributefasttrack-static
Updated attributefix
Updated attributegbridge
Updated attributegoogle-earth
Updated attributegotodevice
Updated attributegotomypc
Updated attributehl7
Updated attributehotmail
Updated attributeidpr
Updated attributeidrp
Updated attributeigrp
Updated attributeipass
Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers12
Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless ControllersUpdated Protocols in NBAR2 Protocol Pack 37.0.0
UpdatesProtocol
Updated attributeipfix
Updated attributeipsec
Updated attributeipv6-icmp
Updated attributeisatap-ipv6-tunneled
Updated attributekakao-services
Updated attributel2tp
Updated attributelogmein
Updated attributemail-ru
Updated attributemcafee-antivirus
Updated attributemfcobol
Updated attributenetflow
Updated attributenetflow
Updated attributenntp
Updated attributensiiops
Updated attributeopenvpn
Updated attributeorbix-cfg-ssl
Updated attributeoscp
Updated attributepcanywhere
Updated attributepearson
Updated attributepim
Updated attributepnni
Updated attributepptp
Updated attributeqq-services
Updated attributersync
Updated attributesdrp
Updated attributesecure-nntp
Updated attributeshowmypc
Updated attributesixtofour-ipv6-tunneled
Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers13
Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless ControllersUpdated Protocols in NBAR2 Protocol Pack 37.0.0
UpdatesProtocol
Updated attributesocks
Updated attributestun-nat
Updated attributesynergy
Updated attributetcpoverdns
Updated attributeteredo-ipv6-tunneled
Updated attributetinc
Updated attributeactivesync
Updated attributeandroid-updates
Updated attributeapple-app-store
Updated attributeapple-ios-updates
Updated attributeapple-pay
Updated attributeavast-antivirus
Updated attributecifs
Updated attributefix
Updated attributegoogle-downloads
Updated attributegoogle-play
Updated attributegridftp
Updated attributegsiftp
Updated attributehangouts
Updated attributehangouts-audio
Updated attributehangouts-chat
Updated attributehangouts-file-transfer
Updated attributehangouts-media
Updated attributehangouts-video
Updated attributemac-os-x-updates
Updated attributemcafee-antivirus
Updated attributemicrosoftds
Updated attributems-sms
Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers14
Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless ControllersUpdated Protocols in NBAR2 Protocol Pack 37.0.0
UpdatesProtocol
Updated attributems-update
Updated attributenfs
Updated attributesiri
Updated attributesplunk
Updated attributesst
Updated attributetftp
Updated attributetunnel-http
Updated attributevmpwscs
Updated attributewindows-store
Updated attributexmpp-client
Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers15
Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless ControllersUpdated Protocols in NBAR2 Protocol Pack 37.0.0
Deprecated Protocols in NBAR2 Protocol Pack 37.0.0The following table lists the caveats deprecated in NBAR2 Protocol Pack 37.0.0 (since 24.0.0):
Table 1: Deprecated Protocols
NBAR2 Protocols DeprecatedDescriptionApplication
aol-messenger
aol-messenger-audio
aol-messenger-video
AOL Instant Messenger.aol-messenger
fring
fring-video
fring-voip
Mobile VOIP application.
http://www.fring.com/faq.html
fring
gbridgeRemote access software, no longersupported.
gbridge
pcanywhereRemote access software, standaloneversion EOL.
https://www.symantec.com/connect/blogs/pcanywhere-eol
pcanywhere
streamworkSAP StreamWork service(enterprise collaboration tool)discontinued.
https://archive.sap.com/documents/docs/DOC-69293
streamwork
mcafee-updateUpdate client of McAfee computersecurity software.
Traffic will be classified as"mcafee-antivirus".
mcafee-update
netshowMicrosoft media streamingprotocol, replaced by “windowsmedia” and “media foundation”.
netshow
songsariCommercial media distributionwebsite.
songsari
vdoliveDefunct real time video/audiostreaming and broadcasting player.
vdolive
Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers16
Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless ControllersDeprecated Protocols in NBAR2 Protocol Pack 37.0.0
Caveats in NBAR2 Protocol Pack 37.0.0
If you have an account on Cisco.com, you can view information on select caveats, using the Bug Search Tool(https://tools.cisco.com/bugsearch/search).
Note
Open Caveats in NBAR2 Protocol Pack 37.0.0
The following table lists the caveats open in NBAR2 Protocol Pack 37.0.0 (since 24.0.0):
DescriptionCaveat ID Number
PCoIP session-priority configuration limitation.CSCuh49380
Segmented packets are not classified when using NBAR sub classification.CSCuh53623
IPv4 bundles might be used in IPv6 traffic.CSCun61772
Caveats Resolved in NBAR2 Protocol Pack 37.0.0
The following table lists the caveats resolved in NBAR2 Protocol Pack 37.0.0 (since 24.0.0):
DescriptionCaveat ID Number
DNS parser skips on additional records which include valid A and AAA.CSCuz03729
NBAR does not classify SIP voice traffic properlyCSCuz38621
Missing host for icloud-content.comsCSCuz51687
Different classification between coarse-grain and fine-grain granularity.CSCva08934
SIP traffic port 5061 is classified as unknown.CSCva18641
IMAP protocol does not receive final classification.CSCva23181
Socket cache entry causes YouTube classification.CSCva26298
NBAR attributes are not supported for static protocols.CSCva30089
The NBAR2 custom protocol feature may not operate correctly because the valuesof the business-relevance and traffic-class attributes for a new customized protocolmay be inappropriate for the targeted application traffic. The values may beinappropriate either by default or following assignment of attribute values by theattribute-map CLI command. Incorrect values for these attributes may cause thetargeted traffic to be assigned to an incorrect class map.
The bug fix ensures that the business-relevance and traffic-class attributes areconfigured according to their usual default values, and enables users to overridethe values if necessary using the attribute-map CLI..
CSCva46618
Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers17
Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless ControllersCaveats in NBAR2 Protocol Pack 37.0.0
DescriptionCaveat ID Number
mySQL port 3306 traffic is classified as unknown.CSCva65247
vSphere traffic classification gaps.CSCvb41876
Gaps in audio/video separation in SIPCSCvb71391
NBAR2 fails to classify Microsoft Remote-Desktop traffic over UDPCSCvb72937
Fixing rtcp multiplexing in rtp flow.CSCvb99174
ssl-local-net traffic misclassified as SSL.CSCvc09665
Inaccurate category assignments of some protocols in NBAR2CSCvc36786
IKEv2 traffic may be misclassified as unknown/Skype.CSCvc39224
Cisco Jabber audio misclassified to video.CSCvc65160
Unable to upgrade Protocol Pack from 14 to 27 with "secure-http" app class map.CSCvc76760
Syslog misclassified as DNSCSCvc82781
RTP misclassification as statistical-downloadCSCvc97492
telepresence-control misclassified as SIPCSCvc97503
Missing Amazon hosts.CSCvc97603
Microsoft-Services missing hosts.CSCvc97867
Gmail missing hosts.CSCvc99541
Google-Services missing hosts.CSCvc99545
Telepresence miss classification over DTLS.CSCvd14579
eDonkey false positive classification.CSCvd24565
Google-Services granularity loss due to incompatible socket-cache post handlers.CSCvd42157
Application name is classified as a number.CSCvd45011
Jabber over xmpp client - caching server but not classifying as JabberCSCvd45680
SIP field extraction may cause SIP parsing misses.CSCvd60686
Engine loops due to duplicated fields in HTTP or SSL packets.CSCvd90446
WLC AVC not classifying jabber audio trafficCSCve43732
IPSec traffic may be classified as 'unknown' by NBARCSCve47576
NBAR incorrectly classifies RTP-AUDIO as Cisco-JabberCSCvf14771
NBAR incorrectly classifies RTP-AUDIO as Cisco-JabberCSCvf14771
Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers18
Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless ControllersCaveats in NBAR2 Protocol Pack 37.0.0
DescriptionCaveat ID Number
NBAR not classifying Citrix traffic when Citrix tags are used.CSCvf38142
NBAR not classifying Citrix traffic when Citrix tags are used.CSCvf38142
NBAR should support DNS packets with some of the 'Z' reserved bits turned on.
Relevant only when using Cisco IOS XE Denali 16.3.2.Note
CSCvf90928
NBAR upgrade modifies class-map configurationCSCvg67293
NBAR upgrade modifies class-map configuration
Relevant only when using Cisco IOS XE Denali 16.3.2.Note
CSCvg67293
Warning message while installing NBAR Protocol Pack 34.0.0 on non-ASRplatforms.
Resolved in Protocol Pack 35.0.0.Note
CSCvh15322
Warning message while installing NBAR Protocol Pack 34.0.0.CSCvh15322
Facebook traffic misclassification for facebook-zero protocolCSCvi10250
Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers19
Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless ControllersCaveats in NBAR2 Protocol Pack 37.0.0
Downloading NBAR2 Protocol Pack 37.0.0NBAR2 Protocol Packs are available for download on the Cisco.com software download page(http://www.cisco.com/cisco/software/navigator.html). On the download page, specify a platform model todisplay software available for download. One software option will be NBAR2 Protocol Packs.
Example
To display protocol packs available for the Cisco Wireless Controllers platform, the navigation path is:
Download Software > Enter the Controller model > NBAR2 Protocol Pack
Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers20
Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless ControllersDownloading NBAR2 Protocol Pack 37.0.0
Special Notes and LimitationsSpecial Note or LimitationProtocol Name
Login and a few encrypted sessions are classified as iTunes.apple-app-store
HTTP traffic generated by the bitcomet bittorrent client might be classifiedas HTTP.
bittorrent
For capwap-data to be classified correctly, capwap-control must also beenabled.
capwap-data
During configuring QoS class-map with ftp-data, the FTP protocol mustbe selected. As an alternative, the FTP application group can be selected.
ftp
Encrypted video streaming generated by hulu may be classified as itsunderlying protocol rtmpe.
hulu
Traffic generated by the logmein android app may be classified incorrectlyas ssl.
logmein
Login and chat traffic generated by the ms-lync client may be classifiedincorrectly as ssl.
ms-lync
Traffic generated by pcanywhere for mac may be classified as unknown.pcanywhere
Some perfect-dark sessions may be classified as unknown.perfect-dark
Login to QQ applications which is not via the internet may not be classifiedas qq-accounts.
qq-accounts
The Sub Classification (SC) mechanism was modified to include searchfor wildcard.
The SC rule for the part of the Server Name Indication (SNI) orthe common name (CN) can now include a wildcard. If awildcard is not used, the complete SNI or the CN is required.
For example, you can either use, "*.pqr.com" or "abc.pqr.com"to classify abc.pqr.com.
Note
ssl
Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers21
Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless ControllersSpecial Notes and Limitations
Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers22
Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless ControllersSpecial Notes and Limitations