NBAR not recognizing IPSEC as IPSEC

Unanswered Question
Jun 23rd, 2008
User Badges:

I'm using the Cisco VPN client to connect to a 2821. When creating traffic between the remote cisco vpn client software and the Office network which is behind the 2821, NBAR classifies the IPSEC traffic as "Unknown".

I'd like to use nbar+qos to prioritize IPSEC, but I can't if I can't recognize it! And ideas?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
srue Mon, 06/23/2008 - 18:37
User Badges:
  • Blue, 1500 points or more

nbar can only match on IP traffic - IPSEC uses esp.

can you be more specific about what you're trying to do? are you trying to prioritize ALL vpnclient/ipsec traffic, or just certain traffic within the connections?

bbrendon Mon, 06/23/2008 - 21:46
User Badges:

Ahh. I'm trying to prioritize all VPN traffic.

How come NBAR has an IPSEC class if it can't recognize it?

srue Tue, 06/24/2008 - 05:01
User Badges:
  • Blue, 1500 points or more

Assuming the only traffic passing between the vpn peers is via the tunnel, have you tried classifying based solely on peer IP addresses?

bbrendon Tue, 06/24/2008 - 15:07
User Badges:

VPN Traffic is by Cisco VPN Clients

They are random around the world. I can't use source IPs for classification.


This Discussion