cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
650
Views
0
Helpful
4
Replies

NBAR not recognizing IPSEC as IPSEC

bbrendon
Level 1
Level 1

I'm using the Cisco VPN client to connect to a 2821. When creating traffic between the remote cisco vpn client software and the Office network which is behind the 2821, NBAR classifies the IPSEC traffic as "Unknown".

I'd like to use nbar+qos to prioritize IPSEC, but I can't if I can't recognize it! And ideas?

4 Replies 4

srue
Level 7
Level 7

nbar can only match on IP traffic - IPSEC uses esp.

can you be more specific about what you're trying to do? are you trying to prioritize ALL vpnclient/ipsec traffic, or just certain traffic within the connections?

Ahh. I'm trying to prioritize all VPN traffic.

How come NBAR has an IPSEC class if it can't recognize it?

Assuming the only traffic passing between the vpn peers is via the tunnel, have you tried classifying based solely on peer IP addresses?

VPN Traffic is by Cisco VPN Clients

They are random around the world. I can't use source IPs for classification.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: