Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers

• Overview, on page 2 • Supported Platforms, on page 3 • New Protocols in NBAR2 Protocol Pack 37.0.0, on page 4 • Updated Protocols in NBAR2 Protocol Pack 37.0.0, on page 10 • Deprecated Protocols in NBAR2 Protocol Pack 37.0.0, on page 16 • Caveats in NBAR2 Protocol Pack 37.0.0, on page 17 • Downloading NBAR2 Protocol Pack 37.0.0, on page 20 • Special Notes and Limitations, on page 21

Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers 1 Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers Overview

Overview The NBAR2 Protocol Pack 37.0.0 release includes: • New protocols • Updated protocols • Classification improvements • Bug fixes

Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers 2 Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers Supported Platforms

Supported Platforms Network-Based Application Recognition (NBAR2) Protocol Pack 37.0.0 support is provided on the following Cisco Wireless Controller platforms. • Cisco 3504 Wireless Controller • Cisco 5520 Wireless Controller • Cisco 8540 Wireless Controller • Cisco Virtual Wireless Controller (vWLC) on the following platforms • VMware vSphere Hypervisor (ESXi) Version 5.x and 6.x • Hyper-V on Microsoft Servers 2012 and later versions (Support introduced in Release 8.4) • Kernel-based virtual machine (KVM) (Support introduced in Release 8.1. After KVM is deployed, we recommend that you do not downgrade to a Cisco Wireless release that is earlier than Release 8.1.)

• Cisco Wireless Controllers for High Availability for Cisco 3504 controller, Cisco 5520 controller, and Cisco 8540 controller. • Cisco Mobility Express Solution

Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers 3 Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers New Protocols in NBAR2 Protocol Pack 37.0.0

New Protocols in NBAR2 Protocol Pack 37.0.0 The table below lists the new protocols added in NBAR2 Protocol Pack 37.0.0 (protocols added since 24.0.0).

Protocol Name Common Name Long Description

adobe-services Adobe Services Tools and APIs used by Adobe applications.

adp Automatic Data Human resources management software and services. Processing

akamai Akamai Akamai Technologies, Inc. is an American content delivery network (CDN) and cloud services provider. The company operates a network of servers around the world and rents capacity on these servers to customers who want their websites to work faster by distributing content from locations close to the user.

apple-pay Apple Pay Apple Pay is a mobile payment and digital wallet service from Apple, enabling payments by iPhone, Apple Watch, iPad, or Mac.

Apple Push Notification apple-push-notification Apple Push Notification Service (APNs) is a platform Service notification service created by Apple Inc. that enables third party application developers to send notification data to applications installed on Apple devices.

apple-updates Apple Updates The Apple Updates service provides updates for Apple platforms and applications.

bitcoin Bitcoin Bitcoin is a worldwide cryptocurrency and digital payment system.

box Box Box is an online file sharing and content management service for businesses.

box Box Box is an online file sharing and content management service for businesses.

BrightTalk brighttalk BrightTalk professional webinar and video solutions.

cisco-cmx Cisco CMX Cisco Connected Mobile Experiences (CMX) family of products leverages open-architecture principles, intent-driven workflows, and contextual relevance at the core of Cisco Digital Network Architecture (DNA).

cisco-collaboration-audio Cisco Collaboration Cisco Collaboration Voice traffic associated with various Audio Cisco Unified Communication clients.

cisco-collab-video Cisco Collaboration Cisco Collaboration Video by various Cisco Unified Video Communication clients.

cisco-controller Cisco Controller Cisco network controller device and SDN solutions.

Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers 4 Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers New Protocols in NBAR2 Protocol Pack 37.0.0

Protocol Name Common Name Long Description

cisco-ip-sla Cisco IP SLA IP SLA (Internet Protocol Service Level Agreement) is an active computer network measurement technology.

cisco-nmsp Cisco NMSP Cisco Network Mobility Services Protocol (NMSP) manages communication between the mobility service engine and the wireless controller. This includes transport of telemetry, emergency, and RSSI values between the mobility service and the controller.

cisco-phone-control Cisco Phone Control Control flow of Cisco IP phone.

cisco-phone-media Cisco Phone Media Cisco-media is used mainly in corporations and can be used on- or off-site.

cisco-rtmt Cisco RTMT Cisco Real-Time Monitoring Tool.

cisco-rtmt Cisco RTMT Cisco Real-Time Monitoring Tool.

cisco-sd-avc Cisco software-defined Network-level component of Cisco AVC that provides AVC services to participating devices in a network.

cisco-smart-probe Cisco Smart Probe Cisco Smart Probes help collect performance metrics when there is no actual user traffic.

cisco-spark-audio Cisco Spark Audio Cisco Spark Audio - Audio of unified communications client and SaaS with mobile team communication: group chat, private chat, video calls with screen sharing and file sharing.

cisco-spark-media Cisco Spark Media Cisco Spark Media - Media of unified communications client and SaaS with mobile team communication: group chat, private chat, video calls with screen sharing and file sharing.

cisco-spark-video Cisco Spark Video Cisco Spark Video - Video of unified communications client and SaaS with mobile team communication: group chat, private chat, video calls with screen sharing and file sharing

cisco-tv Cisco TV Cisco corporate TV, with interactive web streaming, and live studio shows.

CNN cnn Cable News Network (CNN) is an American basic cable and satellite television news channel.

concur Concur Concur SaaS travel and expense management services for businesses.

conferencing conferencing Audio-Video Conferencing and Collaboration Solutions.

demandware Demandware Cloud-based e-commerce platform and related services for retailers and manufacturers.

Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers 5 Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers New Protocols in NBAR2 Protocol Pack 37.0.0

Protocol Name Common Name Long Description

facebook-audio Facebook Audio Facebook audio streaming services. Streaming

facebook-media Facebook Media Facebook media streaming services. Streaming

facebook-video Facebook Video Facebook video streaming services. Streaming

google-downloads Google Downloads Google downloads and Google application updates. Services

google-services-audio Google Services Audio Audio streaming related to various Google services, APIs, and collaboration software.

google-services-media Google Services Media Media streaming related to various Google services, APIs, and collaboration software.

google-services-video Google Services Video Media streaming related to various Google services, APIs, and collaboration software.

GoToMeeting gotomeeting GoToMeeting is a web-hosted service for online meeting, desktop sharing, and video conferencing that enables users to meet with other computer users, customers, clients, or colleagues via internet in real time.

Gyao gyao Gyao is a video site operated by Yahoo Japan.

H.225 h225 H.225 is part of the H.323 family of telecommunication protocols, used for call signaling and control.

H.245 h245 H.245 is a control channel protocol used within H.323 and H.324 communication sessions, and involves the line transmission of non-telephone signals.

hangouts Hangouts Google Hangouts is a communication platform developed by Google, which includes instant messaging, video chat, SMS, and VOIP features.

hangouts-audio Hangouts Audio Google Hangouts audio.

hangouts-chat Hangouts Chat Google Hangouts chat.

hangouts-file-transfer Hangouts File Transfer Google Hangouts file transfer.

hangouts-media Hangouts Media Google Hangouts media.

hangouts-video Hangouts Video Google Hangouts video.

hubspot HubSpot Software products and services for inbound marketing and sales, including tools for social media marketing, content management, web analytics, and search engine optimization.

Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers 6 Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers New Protocols in NBAR2 Protocol Pack 37.0.0

Protocol Name Common Name Long Description

institut-sf Institut-SF Institut Studio Francais, an institution teaching the French language. Offers online private French courses.

ipass iPass iPass allow users to connect millions of hotspots around the world.

itunes-media iTunes Media Media streaming for iTunes media player and media library application.

jira Jira Issue tracking product by Atlassian.

jive-software Jive Software Communication and collaboration solutions for business.

lifesize Lifesize Lifesize is a video and audio telecommunications company providing high definition videoconferencing endpoints and accessories, touchscreen conference room phones, and a cloud-based video collaboration platform.

marketo Marketo Corporate marketing automation software.

mcafee-antivirus McAfee Antivirus McAfee Antivirus and security.

ms-lync-control Skype for Business Skype for Business (formerly Microsoft Lync) is a (MS-Lync) Control communications and collaboration platform that brings together an experience inspired by Skype with enterprise-grade security, compliance, and control. Features include presence, IM, voice and video calls, and online meetings. Because it is built into Microsoft Office, initiating chats, calls, and meetings is an integrated experience within Office.

netsuite Netsuite Cloud-based software services for managing business financials, operations, and customer relations.

oracle Oracle Oracle database software and technology, database management, cloud-engineered systems, and enterprise software.

ringcentral RingCentral Cloud-based communications and collaboration solutions for businesses.

SCCP User Adaptation sccp-user-adaptation SCCP User Adaptation (SUA) provides an SCTP adaptation layer for the seamless backhaul or peering of Signalling Connection Control Part user messages and service interface across an IP network.

servicenow ServiceNow Enterprise cloud computing services and IT service management.

servicenow ServiceNow Enterprise cloud computing services and IT service management.

Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers 7 Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers New Protocols in NBAR2 Protocol Pack 37.0.0

Protocol Name Common Name Long Description

Siebel CRM siebel-crm Oracle Social CRM combines traditional enterprise CRM capabilities with social networking and Web 2.0 technologies. The applications are designed to reflect the way sales people work by helping them identify qualified leads, develop sales campaigns, and collaborate with colleagues.

siri Siri Siri is a personal voice assistant. It uses a natural language user interface to answer questions, make recommendations, and perform actions by delegating requests to a set of web services.

sourceforge SourceForge SourceForge, web-based open source application repository and software directory.

splunk Splunk Splunk is a platform for collecting and analyzing machine-generated big data in an enterprise IT environment

Spotify spotify Spotify is a commercial music streaming service providing digital rights management (DRM)-restricted content from record labels, including Sony, EMI, Warner Music Group and Universal. Users can browse for music, or search by artist, album, genre, playlist, or record label. Paid "Premium" subscriptions remove advertisements and allow users to download music to listen offline.

SQLI sqli The SQLI (Structured Query Language Interface) protocol is a proprietary protocol used by IBM Informix servers.

sugarcrm SugarCRM SugarCRM is a Cupertino, California-based company that produces the web application, Sugar, a customer relationship management (CRM) system.

telepresence-audio Telepresence Audio Telepresence Voice.

traceroute-linux Traceroute Linux Linux traceroute command, which provides information about routes to a network host.

tus-files TusFiles TusFiles is a cloud storage provider for online hosting and sharing of files.

Vimeo vimeo Vimeo is a video-sharing website in which users can upload, share, and view videos.

web-analytics Web Analytics Web and mobile analytics, and customer engagement platforms.

web-rtc WebRTC WebRTC provides browsers and mobile applications with Real-Time Communications (RTC) capabilities.

Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers 8 Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers New Protocols in NBAR2 Protocol Pack 37.0.0

Protocol Name Common Name Long Description

web-rtc-audio WebRTC Audio WebRTC provides browsers and mobile applications with Real-Time Communications (RTC) capabilities.

web-rtc-video WebRTC Video WebRTC provides browsers and mobile applications with Real-Time Communications (RTC) capabilities.

wechat WeChat WeChat is a mobile text and voice messaging communication service. The app is available on Android, iPhone, BlackBerry, Windows Phone and Symbian phones.

workday Workday Cloud-based on-demand financial management and human capital management software.

zoho-services Zoho Services Information technology and business management services, including CRM, mail, reports, meetings, chat, docs, wiki, recruiting, invoice, surveys, and more.

zoom-meetings Zoom Meetings Enterprise video conferencing and web conferencing.

Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers 9 Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers Updated Protocols in NBAR2 Protocol Pack 37.0.0

Updated Protocols in NBAR2 Protocol Pack 37.0.0 The following table lists the protocols updated to improve classification in NBAR2 Protocol Pack 37.0.0.0 since Protocol Pack 24.0.0.0.

Protocol Updates

amazon-web-services Updated signatures

cifs Updated signatures

cisco-collaboration Updated signatures

cisco-jabber-control Updated signatures

cisco-phone Updated signatures, changed attributes

cisco-phone-media Changed attributes

cisco-phone-video Changed attributes

cisco-spark Updated signatures

conference-server Updated signatures

conferencing Updated signatures

connected-backup Updated signatures

crashplan Updated signatures

google-services Updated signatures

http Updated signatures

icloud Updated signatures

kerberos Updated signatures

ldap Updated signatures

mongo Updated signatures

ms-office-365 Updated signatures

ms-office-web-apps Updated signatures

ms-services Updated signatures

ms-wbt Updated signatures

mysql Updated signatures

ntp Updated signatures

Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers 10 Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers Updated Protocols in NBAR2 Protocol Pack 37.0.0

Protocol Updates

oracle-sqlnet Updated signatures

outlook-web services Updated signatures

perforce Updated signatures

rtcp Updated signatures

rtcp Updated signatures

rtp Updated signatures

rtp-audio Updated signatures

rtp-video Updated signatures

sip Updated signatures

sqlserver Updated signatures

ssl Updated signatures

tcpoverdns Updated signatures

telepresence-audio Updated signatures

telepresence-control Updated signatures

telepresence-media Updated signatures

telnet Updated signatures

tftp Updated signatures

vmware-vsphere Updated signatures

vnc Updated signatures

webex-meeting Updated signatures

wifi-calling Updated signatures

Acano Updated signatures

Microsoft SMS Updated signatures

Cisco Spark Updated signatures

apple-services Updated attribute

at-3 Updated attribute

at-5 Updated attribute

apple-services Updated attribute

Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers 11 Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers Updated Protocols in NBAR2 Protocol Pack 37.0.0

Protocol Updates

at-3 Updated attribute

at-5 Updated attribute

at-7 Updated attribute

at-8 Updated attribute

avast-antivirus Updated attribute

ayiya-ipv6-tunneled Updated attribute

capwap-data Updated attribute

checkpoint-cpmi Updated attribute

conference-server Updated attribute

corba-iiop-ssl Updated attribute

corba-iiop-ssl Updated attribute

dicom Updated attribute

dwr Updated attribute

facebook-audio Updated attribute

facebook-media Updated attribute

facebook-video Updated attribute

fasttrack-static Updated attribute

fix Updated attribute

gbridge Updated attribute

google-earth Updated attribute

gotodevice Updated attribute

gotomypc Updated attribute

hl7 Updated attribute

hotmail Updated attribute

idpr Updated attribute

idrp Updated attribute

igrp Updated attribute

ipass Updated attribute

Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers 12 Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers Updated Protocols in NBAR2 Protocol Pack 37.0.0

Protocol Updates

ipfix Updated attribute

ipsec Updated attribute

ipv6-icmp Updated attribute

isatap-ipv6-tunneled Updated attribute

kakao-services Updated attribute

l2tp Updated attribute

logmein Updated attribute

mail-ru Updated attribute

mcafee-antivirus Updated attribute

mfcobol Updated attribute

netflow Updated attribute

netflow Updated attribute

nntp Updated attribute

nsiiops Updated attribute

openvpn Updated attribute

orbix-cfg-ssl Updated attribute

oscp Updated attribute

pcanywhere Updated attribute

pearson Updated attribute

pim Updated attribute

pnni Updated attribute

pptp Updated attribute

qq-services Updated attribute

rsync Updated attribute

sdrp Updated attribute

secure-nntp Updated attribute

showmypc Updated attribute

sixtofour-ipv6-tunneled Updated attribute

Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers 13 Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers Updated Protocols in NBAR2 Protocol Pack 37.0.0

Protocol Updates

socks Updated attribute

stun-nat Updated attribute

synergy Updated attribute

tcpoverdns Updated attribute

teredo-ipv6-tunneled Updated attribute

tinc Updated attribute

activesync Updated attribute

android-updates Updated attribute

apple-app-store Updated attribute

apple-ios-updates Updated attribute

apple-pay Updated attribute

avast-antivirus Updated attribute

cifs Updated attribute

fix Updated attribute

google-downloads Updated attribute

google-play Updated attribute

gridftp Updated attribute

gsiftp Updated attribute

hangouts Updated attribute

hangouts-audio Updated attribute

hangouts-chat Updated attribute

hangouts-file-transfer Updated attribute

hangouts-media Updated attribute

hangouts-video Updated attribute

mac-os-x-updates Updated attribute

mcafee-antivirus Updated attribute

microsoftds Updated attribute

ms-sms Updated attribute

Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers 14 Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers Updated Protocols in NBAR2 Protocol Pack 37.0.0

Protocol Updates

ms-update Updated attribute

nfs Updated attribute

siri Updated attribute

splunk Updated attribute

sst Updated attribute

tftp Updated attribute

tunnel-http Updated attribute

vmpwscs Updated attribute

windows-store Updated attribute

xmpp-client Updated attribute

Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers 15 Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers Deprecated Protocols in NBAR2 Protocol Pack 37.0.0

Deprecated Protocols in NBAR2 Protocol Pack 37.0.0 The following table lists the caveats deprecated in NBAR2 Protocol Pack 37.0.0 (since 24.0.0):

Table 1: Deprecated Protocols

Application Description NBAR2 Protocols Deprecated

aol-messenger AOL Instant Messenger. aol-messenger aol-messenger-audio aol-messenger-video

fring Mobile VOIP application. fring http://www.fring.com/faq.html fring-video fring-voip

gbridge Remote access software, no longer gbridge supported.

pcanywhere Remote access software, standalone pcanywhere version EOL. https://www.symantec.com/connect/blogs/pcanywhere-eol

streamwork SAP StreamWork service streamwork (enterprise collaboration tool) discontinued. https://archive.sap.com/documents/docs/DOC-69293

mcafee-update Update client of McAfee computer mcafee-update security software. Traffic will be classified as "mcafee-antivirus".

netshow Microsoft media streaming netshow protocol, replaced by “windows media” and “media foundation”.

songsari Commercial media distribution songsari website.

vdolive Defunct real time video/audio vdolive streaming and broadcasting player.

Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers 16 Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers Caveats in NBAR2 Protocol Pack 37.0.0

Caveats in NBAR2 Protocol Pack 37.0.0

Note If you have an account on Cisco.com, you can view information on select caveats, using the Bug Search Tool (https://tools.cisco.com/bugsearch/search).

Open Caveats in NBAR2 Protocol Pack 37.0.0 The following table lists the caveats open in NBAR2 Protocol Pack 37.0.0 (since 24.0.0):

Caveat ID Number Description

CSCuh49380 PCoIP session-priority configuration limitation.

CSCuh53623 Segmented packets are not classified when using NBAR sub classification.

CSCun61772 IPv4 bundles might be used in IPv6 traffic.

Caveats Resolved in NBAR2 Protocol Pack 37.0.0 The following table lists the caveats resolved in NBAR2 Protocol Pack 37.0.0 (since 24.0.0):

Caveat ID Number Description

CSCuz03729 DNS parser skips on additional records which include valid A and AAA.

CSCuz38621 NBAR does not classify SIP voice traffic properly

CSCuz51687 Missing host for icloud-content.coms

CSCva08934 Different classification between coarse-grain and fine-grain granularity.

CSCva18641 SIP traffic port 5061 is classified as unknown.

CSCva23181 IMAP protocol does not receive final classification.

CSCva26298 Socket cache entry causes YouTube classification.

CSCva30089 NBAR attributes are not supported for static protocols.

CSCva46618 The NBAR2 custom protocol feature may not operate correctly because the values of the business-relevance and traffic-class attributes for a new customized protocol may be inappropriate for the targeted application traffic. The values may be inappropriate either by default or following assignment of attribute values by the attribute-map CLI command. Incorrect values for these attributes may cause the targeted traffic to be assigned to an incorrect class map. The bug fix ensures that the business-relevance and traffic-class attributes are configured according to their usual default values, and enables users to override the values if necessary using the attribute-map CLI..

Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers 17 Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers Caveats in NBAR2 Protocol Pack 37.0.0

Caveat ID Number Description

CSCva65247 mySQL port 3306 traffic is classified as unknown.

CSCvb41876 vSphere traffic classification gaps.

CSCvb71391 Gaps in audio/video separation in SIP

CSCvb72937 NBAR2 fails to classify Microsoft Remote-Desktop traffic over UDP

CSCvb99174 Fixing rtcp multiplexing in rtp flow.

CSCvc09665 ssl-local-net traffic misclassified as SSL.

CSCvc36786 Inaccurate category assignments of some protocols in NBAR2

CSCvc39224 IKEv2 traffic may be misclassified as unknown/Skype.

CSCvc65160 Cisco Jabber audio misclassified to video.

CSCvc76760 Unable to upgrade Protocol Pack from 14 to 27 with "secure-http" app class map.

CSCvc82781 Syslog misclassified as DNS

CSCvc97492 RTP misclassification as statistical-download

CSCvc97503 telepresence-control misclassified as SIP

CSCvc97603 Missing Amazon hosts.

CSCvc97867 Microsoft-Services missing hosts.

CSCvc99541 Gmail missing hosts.

CSCvc99545 Google-Services missing hosts.

CSCvd14579 Telepresence miss classification over DTLS.

CSCvd24565 eDonkey false positive classification.

CSCvd42157 Google-Services granularity loss due to incompatible socket-cache post handlers.

CSCvd45011 Application name is classified as a number.

CSCvd45680 Jabber over xmpp client - caching server but not classifying as Jabber

CSCvd60686 SIP field extraction may cause SIP parsing misses.

CSCvd90446 Engine loops due to duplicated fields in HTTP or SSL packets.

CSCve43732 WLC AVC not classifying jabber audio traffic

CSCve47576 IPSec traffic may be classified as 'unknown' by NBAR

CSCvf14771 NBAR incorrectly classifies RTP-AUDIO as Cisco-Jabber

CSCvf14771 NBAR incorrectly classifies RTP-AUDIO as Cisco-Jabber

Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers 18 Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers Caveats in NBAR2 Protocol Pack 37.0.0

Caveat ID Number Description

CSCvf38142 NBAR not classifying Citrix traffic when Citrix tags are used.

CSCvf38142 NBAR not classifying Citrix traffic when Citrix tags are used.

CSCvf90928 NBAR should support DNS packets with some of the 'Z' reserved bits turned on. Note Relevant only when using Cisco IOS XE Denali 16.3.2.

CSCvg67293 NBAR upgrade modifies class-map configuration

CSCvg67293 NBAR upgrade modifies class-map configuration Note Relevant only when using Cisco IOS XE Denali 16.3.2.

CSCvh15322 Warning message while installing NBAR Protocol Pack 34.0.0 on non-ASR platforms. Note Resolved in Protocol Pack 35.0.0.

CSCvh15322 Warning message while installing NBAR Protocol Pack 34.0.0.

CSCvi10250 Facebook traffic misclassification for facebook-zero protocol

Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers 19 Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers Downloading NBAR2 Protocol Pack 37.0.0

Downloading NBAR2 Protocol Pack 37.0.0 NBAR2 Protocol Packs are available for download on the Cisco.com software download page (http://www.cisco.com/cisco/software/navigator.html). On the download page, specify a platform model to display software available for download. One software option will be NBAR2 Protocol Packs.

Example To display protocol packs available for the Cisco Wireless Controllers platform, the navigation path is: Download Software > Enter the Controller model > NBAR2 Protocol Pack

Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers 20 Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers Special Notes and Limitations

Special Notes and Limitations

Protocol Name Special Note or Limitation

apple-app-store Login and a few encrypted sessions are classified as iTunes.

bittorrent HTTP traffic generated by the bitcomet bittorrent client might be classified as HTTP.

capwap-data For capwap-data to be classified correctly, capwap-control must also be enabled.

ftp During configuring QoS class-map with ftp-data, the FTP protocol must be selected. As an alternative, the FTP application group can be selected.

hulu Encrypted video streaming generated by hulu may be classified as its underlying protocol rtmpe.

logmein Traffic generated by the logmein android app may be classified incorrectly as ssl.

ms-lync Login and chat traffic generated by the ms-lync client may be classified incorrectly as ssl.

pcanywhere Traffic generated by pcanywhere for mac may be classified as unknown.

perfect-dark Some perfect-dark sessions may be classified as unknown.

qq-accounts Login to QQ applications which is not via the internet may not be classified as qq-accounts.

ssl The Sub Classification (SC) mechanism was modified to include search for wildcard. Note The SC rule for the part of the Server Name Indication (SNI) or the common name (CN) can now include a wildcard. If a wildcard is not used, the complete SNI or the CN is required. For example, you can either use, "*.pqr.com" or "abc.pqr.com" to classify abc.pqr.com.

Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers 21 Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers Special Notes and Limitations

Release Notes for NBAR2 Protocol Pack 37.0.0 for Cisco Wireless Controllers 22