need to inspect and drop on Cisco router P2P traffic (the cisco IOS IPS is not available as solution) and the nbar (network based application recognition) feature may can help me.
On the documentation I found 'only' the following link for download the nbar pdlm files:
where there's present only 1 pdlm file "directconnect.pdlm" and the readme.
As indicated on the readme document on page 1:
Note: For customers using any Cisco IOS versions running kazaa version 6 including the Cisco IOS 12.2SB
(Exodus) release, do not download the kazaa2.pdlm module. Doing so will cause classification
*** THE QUESTIONS:
1) As on the router I've the last IOS T release 12.4(5)T and the version display on the router is the following:
need to download the previous directconnect.pdlm file ?
2) WHERE I CAN FIND ALL THE PDLM FILES ? (also available for the Catalyst 6500 PISA supervisor) ?
3) Need to configure the following for inspect with nbar kazaa on HTTP port:
This PDLM uses a new software infrastructure which is provided in the Cisco IOS software releases.
You can check that this infrastructure is supported on your platform. At any class-map configuration
prompt, enter match protocol ?. If kazaa displays as a protocol to match, then it is supported.
Kazaa can use port 80 to get around the Firewall. You can control it be adding the following to the
match protocol http url \.hash=*