the internet traffic of the user PC's at our headquater is forced to use a http proxy server. additionally the PIX firewall internal interface does only allow tcp port 80 traffic origined from the proxy server. hence, all audio or video traffic like real or windows media player have to use http instead of rtsp.
now, if we want to classify audio/video streaming traffic using NBAR at our gateway routers, i think we cannot use "match protocol rtsp"?
in order to classify and exclude those audio/video traffic going through our proxy server, would it be appropriate to match the http mime type instead?
class-map match-any CLASSIFY-SCAVENGER
match protocol http mime "audio/*"
match protocol http mime "video/*"
match protocol rtsp
match protocol streamwork
match protocol vdolive
match protocol cuseeme
match protocol netshow