Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

NBAR port 80 P2P

Will NBAR with the latest pdlm be capable of recognizing traffic on port 80 that is p2p like kazAa and differentiate between that and HTTP?. In other words can I rate limit and/or Drop P2P applications functioning on port 80 and not effect HTTP? Most documnetation suggests "deep packet inspection" and recognizing statefulness but i was curious if anyone knows if this is reliable.

Thank you for any feedback.

1 REPLY
New Member

Re: NBAR port 80 P2P

Most of the control traffic is encrypted except for the ones that go over the regular http port 80. Most of the bandwidth hog is the data traffic and not the control traffic. The Kazaa2 pdlm classifies the traffic by looking for a Kazaa specific string within the Kazaa Data Traffic - regardless of the port number used.

Here is a sample config:

match protocol http url *topsearch* - for the control traffic on port 80

match protocol http host www.cms1.net - control traffic on port 80

match protocol http host *kazaa* - control traffic on port 80

match protocol kazaa2 - data traffic

match protocol fasttrack - data traffic

114
Views
0
Helpful
1
Replies