1
Juniper Networks Deep Packet Inspection-Decoder (Application Signature) Release Notes
January 29, 2021
Contents Recent Release History | 2
Overview | 2
New Features and Enhancements | 3
New Software Features and Enhancements Introduced in JDPI-Decoder Release 3351 | 3
New Applications | 3
Updated Applications | 18
Custom Applications | 20
New or Modified Application Groups | 20
Obsolete Applications | 21
Resolved Issues | 22
Requesting Technical Support | 23
Self-Help Online Tools and Resources | 23
Creating a Service Request with JTAC | 24
Revision History | 25 2
Recent Release History
Table 1 on page 2 summarizes the features and resolved issues in recent releases. You can use this table to help you decide to update the JDPI-Decoder version in your deployment.
Table 1: JDPI-Decoder Features and Resolved Issues by Release
Release Signature Pack JDPI Decoder Date Version Version Engine Version 5 Features and Resolved Issues
January 29, The relevant 1.500.2-28 5.6.0-39 This JDPI-Decoder version is 2021 signature package supported only on the Junos OS version is 3351. 12.3X48-D95+ and later releases, 15.1X49-D200+ and later releases, and Junos OS 19.2R1 and later releases on all supported SRX Series platforms.
Starting in Junos OS release 20.1R1, enhancements to custom applications are included in the JDPI-Decoder release.
Overview
The JDPI-Decoder is a dynamically loadable module that mainly provides application classification functionality and associated protocol attributes. It is hosted on an external server and can be downloaded as a package and installed on the device. The package also includes XML files that contain additional details of the list of applications and groups. The list of applications can be viewed on the device using the CLI command show services application-identification application summary. Additional details of any particular application can be viewed on the device using the CLI command show services application-identification application detail
NOTE: This application signature package does not support 4.x engines. This upgrade is only supported on Junos OS 12.3X48D95+ and later releases, 15.1X49-D200+ and later releases, and 19.2R1 and later releases. This signature package PB1.500.2-28 is not compatible with Junos releases supporting version4 engine. The Junos releases supporting v4 engine will remain on PB1.460.2-46 and there will be no more updates for these releases. 3
New Features and Enhancements
IN THIS SECTION
New Software Features and Enhancements Introduced in JDPI-Decoder Release 3351 | 3 New Applications | 3 Updated Applications | 18 Custom Applications | 20
The following sections describe new features and enhancements available in the JDPI-Decoder releases:
New Software Features and Enhancements Introduced in JDPI-Decoder Release 3351
The following sections describe new features and enhancements available in JDPI-Decoder Release 3351.
New Applications
Table 2 on page 3 Shows the applications that this release of JDPI-Decoder is introducing.
Table 2: New Applications
Application Application Sr. No. Name Type Reported Over Description
1 AIRFOCUS Web HTTP/HTTP2/HTTPS/ Airfocus is a tool that helps Product managers to prioritize SPDY/SSL task and manage roadmap of their product.
2 AIRBNB Web DNS/HTTP/HTTP2/ Airbnb is a platform for booking and renting apartments between HTTPS/SPDY/SSL individuals. 4
Table 2: New Applications (continued)
Application Application Sr. No. Name Type Reported Over Description
3 AH-CDN Web HTTP/HTTP2/HTTPS/ Advanced Hosting is a hosting, cloud services, and CDN SPDY/SSL platform.
4 ACTIVISION Web HTTP/HTTP2/HTTPS/ Activision is an American video game publisher. This plug-in SPDY/SSL classifies website traffic.
5 AGORA-IO Infrastructure HTTP/HTTP2/HTTPS/ Agora SDK is a WebRTC framework. SPDY/SSL/TCP/UDP
6 APPLE-TV Multimedia AMAZON-AWS/HTTP2/ Apple TV Plus offers paid VOD distributed by Apple. This -PLUS HTTPS/SPDY/SSL plug-in classifies the video streams related to Apple TV Plus option and web site tv.apple.com. This plug-in does not cover streams related to Apple TV application.
7 ACAST Multimedia AMAZON/ARCHIVE/HTTP/ Acast is a podcast platform. This plug-in classifies listening, HTTP2/HTTPS/QUIC/ browsing and downloading SPDY/SSL podcasts traffic for free account.
8 BRID-TV Multimedia HTTP/HTTP2/HTTPS/ BridTV is a video monetization solution platform. This plug-in SPDY/SSL/ZENDESK classifies only website traffic.
9 BAIDU-TIEBA Web BAIDU/HTTP/SSL Baidu Tieba is the Baidu forum platform. This plug-in only classifies website and applications browsing.
10 BREDBAND Web HTTP/HTTP2/HTTPS/ Bredbandskollen is a swedish speedtest service. SKOLLEN SPDY/SSL/TCP 5
Table 2: New Applications (continued)
Application Application Sr. No. Name Type Reported Over Description
11 BUMBLE Web HTTP/HTTP2/HTTP-PROXY/ Bumble is social networking and dating application. HTTPS/SPDY/SSL
12 BROWSEC- Infrastructure HTTP/HTTP2/HTTPS/ Browsec VPN is a set of mobile applications and web browser VPN SPDY/SSL/TCP/UDP/ extensions providing ZENDESK non-professional VPN service. This plug-in classifies the browser extension and mobile applications. Applications may generate ISAKMP/IPSEC traffic.
13 BANGGOOD Web CLOUDFLARE/HTTP/HTTP2/ Banggood is an online shopping website and application. HTTPS/SPDY/SSL
14 BPI-MOBILE Web BPI/HTTP/SSL BPI is the bank of the Philippines island. This plug-in classifies traffic to the mobile application.
15 BPI Web HTTP/HTTP2/HTTPS/ BPI is the bank of the Philippine island. This plug-in classifies SPDY/SSL traffic to the web site.
16 BYTE-CO Multimedia HTTP/HTTP2/HTTPS/ Byte (byte.co) is a mobile app for creating and sharing short SPDY/SSL/STACKPATH/ videos. ZENDESK
17 BAMTECH Multimedia AMAZON/BMFF/HTTP/ BAMTech is a VOD technology provider owned by Walt Disney HTTP2/HTTPS/SPDY/SSL Company, Major League Baseball Advanced Media and National Hockey League. This plug-in classifies its streaming technology as used by Disney Plus. 6
Table 2: New Applications (continued)
Application Application Sr. No. Name Type Reported Over Description
18 CONTROLM Infrastructure TCP Control-M is an orchestration software form BMC. This plug-in -AGENT classifies communication between the server and the agent when TLS is disabled and persistent connections is disabled.
19 CODINGWERFT Web HTTP2/HTTPS/SPDY/ Codingwerft develops SaaS products as Airfocus. SSL
20 CRASHPLAN Web CODE42/HTTP/HTTP2/ Crashplan is an online backup service provided by Code42. QUIC/SPDY/SSL
21 CODE42 Web HTTP/HTTP2/HTTPS/ Code42 is an American software company that develops and QUIC/SPDY/SSL markets the CrashPlan backup software and services suite.
22 CAOCHEN Web HTTP/HTTP2/HTTPS/ Caochen Weather Live is a weather forecast application. -WEATHER QUIC/SPDY/SSL This plug-in classifies only free account traffic.
23 CITRIX Web HTTP/HTTP2/HTTPS/ Citrix is a cloud computing company. This plug-in classifies SPDY/SSL website traffic.
24 DIDA Web HTTP/HTTP2/HTTPS/ Dida Chuxing provides taxi booking services. SPDY/SSL
25 DOORDASH Web AMAZON/HTTP/HTTP2/ Doordash is a food delivery service platform. This plug-in HTTPS/SPDY/SSL classifies traffic generated on Chrome and iOS.
26 DEMANDBASE Web HTTP/HTTP2/HTTPS/ DemandBase is an advertising company. This plug-in classifies SPDY/SSL/ZENDESK traffic for demandbase.com. 7
Table 2: New Applications (continued)
Application Application Sr. No. Name Type Reported Over Description
27 DAGENS- Web AMAZON/HTTP/HTTP2/ Dagens Nyheter a Swedish news paper. This plug-in classifies NYHETER HTTPS/SPDY/SSL website and mobile applications traffic.
28 DISNEY- Multimedia ADOBE/BAMTECH/HTTP/ Disney Plus is a Video On Demand (VOD) service. PLUS HTTP2/HTTPS/SPDY/
SSL
29 DYNAMICS365 Infrastructure HTTP/HTTP2/HTTPS/ Microsoft Dynamics is the enterprise resource planning MICROSOFT/SPDY/ (ERP) and customer relationship SSL/WINDOWS-AZURE management (CRM) platform. This plug-in classifies Cloud version of Microsoft Dynamics.
30 DISCOVERY- Multimedia ADOBE/AMAZON/HTTP Discovery Inc, is an American global media and entertainment INC HTTP2/HTTPS/SPDY company. This plug-in classifies SSL website traffic.
31 DPLAY Multimedia DISCOVERY-INC/HTTP/ Dplay is a video streaming provider. This plug-in classifies QUIC/SSL only free account.
32 ELONG Web CTRIP/HTTP/HTTP2/ Elong is an online travel booking application. This plug-in HTTP-PROXY/SPDY/SSL classifies only website and applications browsing.
33 ETHEREUM- Web UDP Ethereum is a decentralized, open-source blockchain ND featuring smart contract functionality. 8
Table 2: New Applications (continued)
Application Application Sr. No. Name Type Reported Over Description
34 EPIC- Web HTTP/HTTP2/HTTPS/ Epic Browser is a privacy-centric web browser edited by Hidden BROWSER SPDY/SSL Reflex. This plug-in classifies the website. There are 2 additional plug-ins for updates (epic_browser_update) and VPN extention (epic_browser_vpn).
35 ERSPAN Infrastructure IPP-GRE Encapsulated Remote Switch Port ANalyzer (ERSPAN) is a protocol implemented by Cisco hardware allowing to mirror traffic from a switch to another machine for analysis. Traffic is encapsulated in ERSPAN on top of GRE (Generic Routing Encapsualtion).
36 EUROSPORT- Multimedia EUROSPORT/HTTP/ Eurosport Player is the Eurosport service for playing PLAYER HTTP2/QUIC/SSL videos streaming.
37 EVASIVE- Infrastructure AMAZON-AWS/DNS/HTTP/ This protocol classifies common mechanisms used by evasive PROTOCOL HTTP2/HTTPS/SPDY/ applications. Those mechanisms SSL/TCP/UDP can be shared by several different applications.
38 EPIC-BROWSER Infrastructure HTTP2/HTTPS/SPDY/ Epic Browser is a privacy-centric web browser edited by Hidden -VPN SSL Reflex. This plug-in classifies the VPN extension provided with this browser.
39 ENGAGE- Infrastructure HTTP/RING-CENTRAL/ Engage Digital is a digital customer engagement platform. DIGITAL SSL It was previously Dimelo acquired by Ring Central. 9
Table 2: New Applications (continued)
Application Application Sr. No. Name Type Reported Over Description
40 EUROSPORT Web AMAZON-AWS/APPLE-HLS/ Eurosport is a sports Pay TV channel. This plug-in classifies BOOTSTRAPCDN/HTTP/ website browsing. HTTP2/HTTP-PROXY/
TTPS/MPEGTS/QUIC/SPDY/
SSL
41 EPIC-BROWSER Web HTTP/HTTP2/HTTPS/ Epic Browser is a privacy-centric web browser edited by Hidden -UPDATE SPDY/SSL Reflex. This plug-in classifies the update and extension store provided with this browser.
42 ETHEREUM Web HTTP/HTTP2/HTTPS/ Ethereum (ETH 1.X) is a cryptocurrency based on a SPDY/SSL/TCP decentralized blockchain with Proof of Work (PoW). This plug-in handles version 63 (Eth/63) of Ethereum Wire protocol and traffic for the official web site.
43 FACEBOOK- Web FACEBOOK-ACCESS/ Facebook games is a feature to play games and discover apps GAMES FACEBOOK-APP/HTTP on Facebook. This plug-in does not classify traffic that may be generated by games/applications to their own servers.
44 FOLDINGAT Remote- HTTP/HTTP2/HTTPS/ Folding@Home is software allowing to run distributed HOME access SPDY/SSL computed algorithms for research projects.
45 FIFA Gaming ELECTRONIC-ARTS Fifa is a football video game edited by EA Sports. This plug-in classifies video game online traffic. 10
Table 2: New Applications (continued)
Application Application Sr. No. Name Type Reported Over Description
46 FIREWORK Messaging AMAZON/HTTP/HTTP2/ Firework is a a social network application for video-sharing HTTPS/SPDY/SSL similar to TikTok.
47 GOOGLE- Web DNS/GOOGLE-API/ Google Stadia is a platform of cloud gaming allowing players STADIA GOOGLE-GEN/SSL to play within Web browsers.
48 GOOGLE- Web GOOGLE-API/GOOGLE-GEN/ Google Pay is an application that centralizes payment cards, PAY HTTP/QUIC/SSL loyalty cards, and gift cards. Payments can be made on line or in stores through NFC (Near Field Communication).
49 GTA5 Gaming ROCKSTARGAMES/UDP GTA5 is video game, with online play mode.
50 GOOGLE- Messaging GOOGLE-API/GOOGLE-GEN Google messages is an application for texting (SMS, MESSAGES MMS, RCS). A web interface is also available that can be synchronized in both ways with mobile application. Classification of RCS traffic may depend on telecommunication service provider.
51 GRUBHUB Web HTTP/HTTP2/HTTPS/ Grubhub Inc. is an American online and mobile prepared food SPDY/SSL ordering and delivery service that connects diners with local takeout restaurant. This plug-in classifies traffic from France even if the service is not yet available.
52 HEMNET-SE Web CLOUDFLARE/HTTP/HTTP2/ Hemnet is a Swedish Real Estate application and website. HTTPS/SPDY/SSL 11
Table 2: New Applications (continued)
Application Application Sr. No. Name Type Reported Over Description
53 HUAZHU Web HTTP/HTTP2/HTTPS/QUIC/ Huazhu is a hotel management company. This plug-in classifies SPDY/SSL website and application browsing.
54 HALO Gaming ADOBE/HTTP/HTTP2/ Halo is a video game First Personal Shooter (FPS) available HTTPS/SILVERLIGHT/ on Microsoft platforms (PC, SPDY/SSL/UDP Xbox) and published by Microsoft. This plug-in classifies the Halo 5 game exclusive to XboxOne.
55 HOUSEPARTY Multimedia AMAZON/HTTP/HTTP2/ Houseparty is a social network with video capabilities. HTTPS/SPDY/SSL/STUN
56 HIIDO Web HTTP/HTTP2/HTTPS/ Hiido (Haidu Cloud) is a self-service big data service to SPDY/SSL make analytics and statistics platform. This plug-in classifies traffic to hiido.com and hiido.cn.
57 HASP Infrastructure UDP Sentinel is a license manager from Thales. This plugin classifies the version delivered with MasterCam, a CNC software, version 2019.
58 IXIGUA Multimedia BYTEDANCE/HTTP/SSL Xigua Video is a video platform of Bytedance.
59 INTERMEC- Infrastructure UDP Intermec (Honeywell subsidiary) SmartSystem is a barcode SMARTSYSTEM scanner fleet management software. 12
Table 2: New Applications (continued)
Application Application Sr. No. Name Type Reported Over Description
60 JW-PLAYER Web AKAMAI-VIDEO/AMAZON/ JWPLAYER is a video-hosting and a video management BMFF/CLOUDFLARE/FASTLY/ platform. HTTP/HTTPS/HTTP2/SSL/
SPDY
61 KDSLIFE Web HTTP/HTTP2/HTTPS/ Kdslife is a portal and forum for Shanghai's urban life. This QUIC/SPDY/SSL plug-in classifies website and application browsing.
62 KUWO Multimedia BMFF/HTTP/HTTP2/HTTPS/ Kuwo provides music streaming services. KUGOO/RTMP/RTP/SPDY/
SSL/UDP
63 LIKEE Messaging BIGO/HTTP/SSL Likee is a short video creation and sharing platform owned by Bigo.
64 MOJI- Web HTTP/HTTP2/HTTPS/ Moji Weather is a social, crowd-sourced application WEATHER SPDY/SSL generating real-time weather data from its user based around the world.
65 MS-DFSR Infrastructure DCERPC/EPM/KRB5 The Distributed File System Replication (DFSR) service is a new multi-master replication engine that is used to keep folders synchronized on multiple servers.
66 MOXA Web HTTP/HTTP2/HTTPS/ Moxa is a company that develops hardware components. SPDY/SSL 13
Table 2: New Applications (continued)
Application Application Sr. No. Name Type Reported Over Description
67 MEDIALAB- Web HTTP/HTTP2/HTTPS/ MediaLab.AI is a holding company of internet brands like AI SPDY/SSL Kik, Whisper, DatPiff, Manga Life and Coco e-learning. This plug-in classifies website traffic.
68 MARIO-KART Gaming AKAMAI-SSL/HTTP/HTTP2/ Mario Kart Tour is a video game edited by Nintendo. This plug-in -TOUR HTTPS/QUIC/SPDY/SSL/ classifies the game and its UDP associated website.
69 NETEASE- Gaming 163/HTTP/HTTP2/ Netease Games is a division of Netease. GAMES HTTPS/NETEASE/SPDY/
SSL
70 NEXTDNS Web HTTP/HTTP2/HTTPS/ NextDNS is a secure DNS resolver used by Mozilla to SPDY/SSL encrypt the DNS traffic. This plug-in classifies the encrypted DNS traffic when the traffic related to nextDNS.
71 PIPEDRIVE Web HTTP/HTTP2/HTTPS/ Pipedrive is a sales customer relationship management (CRM) SPDY/SSL/ZENDESK tool for salespeople.
72 QBRICK Multimedia BMFF/HTTP/HTTP2/ Qbrick is a service video provider (Video Platform, Video HTTPS/SPDY/SSL Player, Video Editor, Analytics, CDN, API). This plug-in classifies website traffic.
73 QWANT Web DNS/HTTP/HTTP2/ Qwant is a French web search engine. HTTPS/SPDY/SSL
74 ROS Gaming HTTP/NETEASE-GAMES/ Rules of survival is an online multiplayer Battle Royale game SSL from Netease Games. 14
Table 2: New Applications (continued)
Application Application Sr. No. Name Type Reported Over Description
75 READINGEGGS Web AMAZON/HTTP/HTTP2/ Reading Eggs introduces mini-games to help children HTTPS/SPDY/SSL learn alphabet and numbers.
76 RAGNAROK- Gaming GCS/GOOGLE-API/HTTP/ Ragnarok Online is an online role-playing game . This plug-in ONLINE HTTP2/HTTPS/SPDY/SSL/ classifies traffic generated by TCP/UDP Ragnarok M Eternal Love application.
77 RADIO-JAVAN Multimedia HTTP/HTTP2/HTTPS/ Radio Javan is a music platform for Persian and Iranian musics. ICECAST/SPDY/SSL This plug-in classifies traffic related to a free account
78 RCS Web HTTP2/HTTPS/SPDY/ RCS is a communication protocol aiming at replacing SMS SSL messages with more advanced features a text-message system that is richer, provides phonebook polling (for service discovery), and can transmit in-call multimedia. It is part of broader IP Multimedia Subsystem.
79 RAKNET Gaming UDP RakNet is networking middleware for multiplayer game network engine.
80 ROBLOX Gaming AMAZON/HTTP/HTTP2/ Roblox is an online video game.
HTTPS/RAKNET/SPDY/
SSL/TCP/UDP/ZENDESK/
81 ROCKSTAR Gaming HTTP2/HTTPS/SPDY/ Rockstar Game is a video game editor. GAMES SSL 15
Table 2: New Applications (continued)
Application Application Sr. No. Name Type Reported Over Description
82 SHOPIFY Web AMAZON-AWS/FASTLY/ Shopify is an online service to build e-commerce websites. HTTP/HTTP2/HTTPS/QUIC/
SPDY/SSL
83 SKYVPN Infrastructure DNS/EVASIVE-PROTOCOL/ SkyVpn encrypts your data to secure your connection as a HTTP/HTTP2/HTTPS/SPDY/ VPN using domain fronting and SSL/TCP/UDP encrypted traffic.
84 SHARP- Multimedia HTTP/HTTP2/HTTPS/ SharpStream is the streaming platform for streamers. STREAM SPDY/SSL
85 STARKVPN Infrastructure EVASIVE-PROTOCOL Stark VPN is a VPN application.
86 SIFT Web HTTP/HTTP2/HTTPS/ Sift is an analytics company providing services against fraud. SPDY/SSL/ZENDESK
87 SERVICE- Web AKAMAI-SSL/HTTP/HTTP2/ ServiceNow is a web platform to develop custom workflow NOW HTTPS/SPDY/SSL based applications for enterprise, similar to a ticket management system. This plug-in classifies the website, API, and mobile applications.
88 SCHIBSTED Web AMAZON/DISQUS/HTTP/ Schibsted Media Group is an international media group. This HTTP2/HTTPS/OKTA/ plug-in classifies website traffic. SPDY/SSL
89 SVENSKA- Web ADOBE/AMAZON/HTTP/ Svenska Dagbladet ( SvD ) is a Swedish daily newspaper. This DAGBLADET HTTP2/HTTPS/SPDY/ plug-in classifies only free SSL accounts. 16
Table 2: New Applications (continued)
Application Application Sr. No. Name Type Reported Over Description
90 STACKPATH Web AMAZON/CEDEXIS/HTTP/ StackPath is a platform allowing computing infrastructure HTTP2/HTTPS/SPDY/SSL/ deployment and management. ZENDESK This plug-in classifies website traffic.
91 SHAHID- Multimedia HTTP/MEBC/SSL Shahid is an Arabic VOD service owned by MBC Group (Middle NET East Brodcasting Center).
92 S7COMM- Infrastructure COTP S7communication Plus is a Siemens proprietary protocol for PLUS Siemens' Programmable Logic Controllers (PLC).
93 SVERIGES- Multimedia HTTP/HTTP2/HTTPS/ Sveriges Radio is a Swedish online radio and web portal RADIO SPDY/SSL news.
94 SNAPMIRROR Infrastructure TCP This plug-in classifies SnapMirror relationship protocol for data transfer only, thus protocol related to replication of snapshots between any two ONTAP systems.
95 TUNNELGURU Infrastructure HTTP/HTTP2/HTTPS/ This plug-in classifies WebTunnel VPN software SPDY/SSL edited by TunnelGuru and its website.
96 KOCHAVA Web HTTP/HTTP2/HTTPS/ Kochava provides analytics services. This plug-in classifies SPDY/SSL traffic to kochava.com.
97 KEYENCE Infrastructure TCP/UDP Keyence is a manufacturer of industrial imaging devices. This plug-in classifies the protocol used for image retrieval from KV-X cameras. 17
Table 2: New Applications (continued)
Application Application Sr. No. Name Type Reported Over Description
98 KPN- Infrastructure HTTP-PROXY/SSH KPN is a VPN over HTTP proxy and SSH with custom HTTP TUNNEL payload injection.
99 LOCATION- Web HTTP/HTTP2/HTTPS/ LocationIQ provides a geolocation API. This plug-in IQ SPDY/SSL classifies only website traffic.
100 TUCHONG Web BYTEDANCE/HTTP/SSL Tuchong is a photo sharing platform of Bytedance. This plug-in classifies only website browsing traffic.
101 TOUTIAO Web BYTEDANCE/HTTP/ Toutiao is a news recommendation engine and a IXIGUA/SSL content delivery platform of Bytedance.
102 TALKATONE Messaging AMAZON/BRANCH/HTTP/ Talkatone is an instant messaging application that HTTP2/HTTPS/RTP/ provides international call SPDY/SSL feature.
103 UBER-EATS Web HTTP/QUIC/SSL/UBER This plug-in classifies Uber flows that are specific to Uber Eats website and applications. Uber Eats shares the same infrastructure as Uber.
104 WORKDAY Infrastructure ADOBE/HTTP/HTTP2/ Workday provides cloud based finance and HR software. On HTTPS/SPDY/SSL internal networks a part of the traffic won't be classified as Workday.
105 WIREGUARD Infrastructure HTTP/HTTPS/HTTP2/ Wireguard is an open-source VPN protocol designed to be SPDY/SSL/UDP lightweight. The website is classified too. 18
Table 2: New Applications (continued)
Application Application Sr. No. Name Type Reported Over Description
106 WISTIA Web BMFF/CLOUDFLARE/ Wistia provides video-hosting services for businesses, including DISQUS/FASTLY/HTTP/ adding videos to the web, HTTP2/HTTPS/SPDY/ tracking performance and building audiences. This plug-in SSL classifies website traffic.
107 WS- Infrastructure SOAP Web Services Dynamic Discovery (WS-Discovery) is a DISCOVERY multicast SOAP over UDP service discovery protocol standardized by OASIS.
108 VOVA Web AMAZON/HTTP/HTTP2/ Vova is an e-commerce website.
HTTPS/QUIC/SPDY/SSL
109 XIMALAYA Multimedia SSL/SIP/STUN/QUIC/ Ximalaya FM is a platform for sharing voice audio and personal RTSP/SPDY/HTTP2/ radio stations. HTTP-PROXY/HTTP/
HTTPS
110 ZHENAI Web HTTP/HTTP2/HTTPS/ Zhenai is a provider of online matchmaking and dating QQ-WEB/SPDY/SSL/ services in China. TCP/UDP
Updated Applications
Table 3 on page 19 lists the application updates in this release of JDPI-Decoder. 19
Table 3: Updated Applications
Application Application Sr. No. Name Type Reported Over Description
1 FTP Infrastructure HTTP-PROXY/SOCKS4/ This signature detects the File Transfer Protocol (FTP), which SOCKS5/TCP provides facilities for transferring files to and from remote computer systems. It usually runs on TCP port 21.
2 FTP-DATA Infrastructure HTTP/TCP This signature detects Trivial File Transfer Protocol (TFTP), which is a simple file transfer protocol. It usually runs on UDP port 69.
3 ALTIRIS Infrastructure HTTP/HTTP2/HTTPS/ Altiris provides service-oriented management solutions which SPDY/TCP allow managing IT infrastructures. Altiris was founded in 1998 and acquired by Symantec in 2007.
4 GOOGLE- Remote-Access SSL/SIP/STUN/QUIC/ This signature detects SSL access to Google APIs. GEN RTSP/SPDY/HTTP2/
HTTP-PROXY/APPLE-HLS/
BMFF/HTTP/HTTPS/JABBER/
RCS/RTCP/RTMP/RTP/
STOREBUFF/
WINDOWS-AZURE
5 MOXA- Infrastructure HTTP2/HTTPS/SPDY/ This plug-in classifies ASPP (Async Server Proprietary ASPP SSL/TCP Protocol) from Moxa (NPort devices) without activation of encryption. 20
Custom Applications
This release of JDPI-Decoder does not introduce any enhancements to the custom applications.
New or Modified Application Groups
Table 4 on page 20 lists the application additions and modifications in this release of JDPI-Decoder.
Table 4: Modified Application Groups
Application Group Name Applications Details
applications:web Added AIRFOCUS, AIRBNB, AH-CDN, ACTIVISION, BAIDU-TIEBA, BREDBANDSKOLLEN, BUMBLE, BANGGOOD, BPI-MOBILE, BPI, CODINGWERFT, CRASHPLAN, CODE42, CAOCHEN-WEATHER, CITRIX, DIDA, DOORDASH, SVENSKA-DAGBLADET, DEMANDBASE, and DAGENS-NYHETER applications to the application group.
applications:gaming Added FIFA, GTA5, HALO, MARIO-KART -TOUR, NETEASE- GAMES, ROS, RAGNAROK- ONLINE, RAKNET, ROBLOX, and ROCKSTAR GAMES applications to the application group.
applications:infrastructure Added AGORA-IO, BROWSEC- VPN, CONTROLM -AGENT, DYNAMICS365, ERSPAN, EVASIVE- PROTOCOL, EPIC-BROWSER -VPN, ENGAGE- DIGITAL, MS-DFSR, SKYVPN, STARKVPN, S7COMM- PLUS, SNAPMIRROR, TUNNELGURU, KEYENCE, KPN- TUNNEL, WORKDAY, WIREGUARD, and WS- DISCOVERY applications to the application group.
applications:messaging Added FIREWORK, GOOGLE- MESSAGES, LIKEE, and TALKATONE applications to the application group.
applications:multimedia Added APPLE-TV -PLUS, ACAST, BRID-TV, BYTE-CO, BAMTECH, DISNEY- PLUS, DISCOVERY-INC, DPLAY, EUROSPORT- PLAYER, HOUSEPARTY, IXIGUA, KUWO, QBRICK, RADIO-JAVAN, SHARP- STREAM, SHAHID- NET, SVERIGES- RADIO, and XIMALAYA applications to the application group.
applications:remote-access Added FOLDINGAT HOME application to the application group. 21
Obsolete Applications
Table 5 on page 21 shows the applications that are now obsolete either because they are no longer in use in the field or they have been replaced with more recent applications. While configuration commit will not fail if these obsolete applications are already configured, the recommendation is to remove these applications from configurations of AppSecure modules (AppFW, AppQoS, APBR, AppQoE and Unified Policy), as they will no longer be classified or reported. The applications which have been replaced are added as an alias under a related application which are provided in the specific reason column. You cannot configure a new policy with these obsolete applications, instead you can use the related applications mentioned in the specific reason column where available.
Table 5: Obsolete Applications
Application Sr. No. Name Specific Reason Description
1 ALIWANGWANG- Alias under This signature detects HTTP access to NALIWANGWANG-USER-AGENT AliWangWang. AliWangWang is a HTTP Instant Messenger application by the AliBaba Group.
2 ALIWANGWANG- Alias under This signature detects TCP file transfers NALIWANGWANG-USER-AGENT through AliWangWang. AliWangWang FILE-TRANSFER-TCP is a Instant Messenger application by the AliBaba Group.
3 ALIWANGWANG Alias under This signature detects TCP connections NALIWANGWANG-USER-AGENT from AliWangWang. AliWangWang is -TCP a Instant messenger application from the AliBaba group.
4 ALIWANGWANG- Alias under This signature detects UDP file NALIWANGWANG-USER-AGENT transfers through AliWangWang. FILE-TRANSFER- AliWangWang is a Instant Messenger UDP application by the AliBaba Group.
5 FILEFACTORY-COM Alias under This signature detects FileFactory, NALIWANGWANG-USER-AGENT which is a Web-based file sharing application.
6 SHAREFILE-COM Alias under Citrix ShareFile is a secure enterprise NALIWANGWANG-USER-AGENT file sharing and sync (EFSS) solution. This plug-in classifies only website browsing. 22
Resolved Issues
Table 6 on page 22 describes the resolved issues in this release of JDPI-Decoder.
Table 6: Resolved Issues
PR Description
JDPI–Decoder
1529680 AppID is unable to detect FTP traffic on non-standard ports.
1548435 NPORT (MOXA-ASPP) AppID Not Working.
1552513 AppID is unable to classify junos:Altiris with junos:Tweakware, which is impacting traffic due to the AppFW configured in the system. 23
Requesting Technical Support
Technical product support is available through the Juniper Networks Technical Assistance Center (JTAC). If you are a customer with an active J-Care or Partner Support Service support contract, or are covered under warranty, and need post-sales technical support, you can access our tools and resources online or open a case with JTAC.
• JTAC policies—For a complete understanding of our JTAC procedures and policies, review the JTAC User Guide located at https://www.juniper.net/us/en/local/pdf/resource-guides/7100059-en.pdf.
• Product warranties—For product warranty information, visit http://www.juniper.net/support/warranty/.
• JTAC hours of operation—The JTAC centers have resources available 24 hours a day, 7 days a week, 365 days a year.
Self-Help Online Tools and Resources
For quick and easy problem resolution, Juniper Networks has designed an online self-service portal called the Customer Support Center (CSC) that provides you with the following features:
• Find CSC offerings: https://www.juniper.net/customers/support/
• Search for known bugs: https://prsearch.juniper.net/
• Find product documentation: https://www.juniper.net/documentation/
• Find solutions and answer questions using our Knowledge Base: https://kb.juniper.net/
• Download the latest versions of software and review release notes: https://www.juniper.net/customers/csc/software/
• Search technical bulletins for relevant hardware and software notifications: https://kb.juniper.net/InfoCenter/
• Join and participate in the Juniper Networks Community Forum: https://www.juniper.net/company/communities/
• Create a service request online: https://myjuniper.juniper.net
To verify service entitlement by product serial number, use our Serial Number Entitlement (SNE) Tool: https://entitlementsearch.juniper.net/entitlementsearch/ 24
Creating a Service Request with JTAC
You can create a service request with JTAC on the Web or by telephone.
• Visit https://myjuniper.juniper.net.
• Call 1-888-314-JTAC (1-888-314-5822 toll-free in the USA, Canada, and Mexico).
For international or direct-dial options in countries without toll-free numbers, see https://support.juniper.net/support/requesting-support/. 25
Revision History
January 29, 2021—Revision 1, JDPI Release Notes
Copyright © 2020, Juniper Networks, Inc. All rights reserved.
Juniper Networks, Junos, Steel-Belted Radius, NetScreen, and ScreenOS are registered trademarks of Juniper Networks, Inc. in the United States and other countries. The Juniper Networks Logo, the Junos logo, and JunosE are trademarks of Juniper Networks, Inc. All other trademarks, service marks, registered trademarks, or registered service marks are the property of their respective owners.
Juniper Networks assumes no responsibility for any inaccuracies in this document. Juniper Networks reserves the right to change, modify, transfer, or otherwise revise this publication without notice.