Cisco NBAR

Posted on 2016-11-23
Last Modified: 2016-12-01
We are using “match protocol rtp audio” in the QoS Class Maps w/o NBAR Protocol Discovery to look inside the packets to match on the CE router. Is that OK?
Question by:totaram
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
LVL 29

Expert Comment

by:Predrag Jovic
ID: 41900108
Not OK. You need to use NBAR for that match.

Author Comment

ID: 41900132
I have never used NBAR in past, Can you please provide some config steps to include NBAR for using it?
LVL 29

Expert Comment

by:Predrag Jovic
ID: 41900360
NBAR should be enabled per interface basis
interface Gi1/0/49
 ip nbar protocol-discovery

more details - Chapter: Enabling Protocol Discovery
Free learning courses: Active Directory Deep Dive

Get a firm grasp on your IT environment when you learn Active Directory best practices with Veeam! Watch all, or choose any amount, of this three-part webinar series to improve your skills. From the basics to virtualization and backup, we got you covered.


Author Comment

ID: 41901200
Just a quick question: NBAR is a recent thing but QoS has been around for long time. So, how did peeking inside of packet get taken place earlier?
LVL 29

Accepted Solution

Predrag Jovic earned 500 total points
ID: 41901214
So, how did peeking inside of packet get taken place earlier?
There were no peeking inside packet at that level before NBAR. Expansion of P2P applications (kazaa, eDonkey, BitTorrent, WinMX..) created a need to peek into packets. Generally, marking of traffic was done by extended ACLs (up to L4 of  OSI model), upper levels were not included.

Author Closing Comment

ID: 41909745

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
VOIP gateways - feedback 23 125
Server 2012 R2 Radius server and Cisco AP 7 69
VLAN Configuration on Cisco Switch 8 50
Cisco ACS second root certificate 3 12
When I upgraded my ASA 8.2 to 8.3, I realized that my nonat statement was failing!   The log showed the following error:     %ASA-5-305013: Asymmetric NAT rules matched for forward and reverse flows It was caused by the config upgrade, because t…
For months I had no idea how to 'discover' the IP address of the other end of a link (without asking someone who knows), and it drove me batty. Think about it. You can't use Cisco Discovery Protocol (CDP) because it's not implemented on the ASAs.…
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…

751 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question