09-10-2002 07:01 AM - edited 03-12-2019 08:42 PM
Hi !
Do i have to enable "ip nbar protocol-discovery" on an interface i want to use NBAR on to classify traffic or is that command just used for statistics ?
Thanks,
Michael
09-10-2002 10:22 AM
The "ip nbar protocol-discovery" command is applied on an interface to discover transitting traffic for all protocols known to NBAR. To display the gathered statistics, use the "show ip nbar protocol-discovery" command.
To enable NBAR do the following:
enable CEF, create a class-map to classify the protocol or application, create a policy-map for the class and attach the policy to an interface (service-policy command).
Check out this link: (watch the wrap)
Dot
09-10-2002 10:37 AM
Sorry, I didn't answer your specific question in my last post. You do not need to explicitly invoke the "ip nbar protocol-discovery" command.
Dot
09-10-2002 11:40 AM
Yes you have to type that on any interface that you want to use NBAR on. If you do not it will not work.
09-11-2002 10:11 AM
I have configured NBAR several times and never had to type it on the interface. I only typed the service policy command on the interface. I only used the protocol-discovery command later to view and verify the traffic pattern (with the show command).
It doesn't hurt typing in the command anyway, at least to give an indication of the traffic pattern (if you have no other way of doing that) before applying NBAR.
Dot
09-12-2002 06:02 AM
Hi !
This is why i was asking... the docs state neither "have to" nor "optional" and there seem to be a lot of disageeing about this...
Could maybe someone from cisco ask at development ? AND update the docs ?
Thanks everybody,
Michael
02-29-2024 07:49 AM
This is a pretty well-detailed page on Protocol Discovery
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide