Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

NBAR not recognizing IPSEC as IPSEC

I'm using the Cisco VPN client to connect to a 2821. When creating traffic between the remote cisco vpn client software and the Office network which is behind the 2821, NBAR classifies the IPSEC traffic as "Unknown".

I'd like to use nbar+qos to prioritize IPSEC, but I can't if I can't recognize it! And ideas?

4 REPLIES
Gold

Re: NBAR not recognizing IPSEC as IPSEC

nbar can only match on IP traffic - IPSEC uses esp.

can you be more specific about what you're trying to do? are you trying to prioritize ALL vpnclient/ipsec traffic, or just certain traffic within the connections?

New Member

Re: NBAR not recognizing IPSEC as IPSEC

Ahh. I'm trying to prioritize all VPN traffic.

How come NBAR has an IPSEC class if it can't recognize it?

Gold

Re: NBAR not recognizing IPSEC as IPSEC

Assuming the only traffic passing between the vpn peers is via the tunnel, have you tried classifying based solely on peer IP addresses?

New Member

Re: NBAR not recognizing IPSEC as IPSEC

VPN Traffic is by Cisco VPN Clients

They are random around the world. I can't use source IPs for classification.

311
Views
0
Helpful
4
Replies