nbar2 standard protocol pack 1...p2ptechnology no encrypted no tunnel no underlyingprotocols - •...
TRANSCRIPT
NBAR2 Standard Protocol Pack 10
Americas HeadquartersCisco Systems Inc170 West Tasman DriveSan Jose CA 95134-1706USAhttpwwwciscocomTel 408 526-4000 800 553-NETS (6387)Fax 408 527-0883
copy 2013 Cisco Systems Inc All rights reserved
C O N T E N T S
C H A P T E R 1 Release Notes for NBAR2 Standard Protocol Pack 10 1
C H A P T E R 2 BGP 3
BITTORRENT 6
CITRIX 7
DHCP 8
DIRECTCONNECT 9
DNS 10
EDONKEY 11
EGP 12
EIGRP 13
EXCHANGE 14
FASTTRACK 15
FINGER 16
FTP 17
GNUTELLA 18
GOPHER 19
GRE 20
H323 21
HTTP 22
ICMP 23
IMAP 24
IPINIP 25
IPV6-ICMP 26
IRC 27
KAZAA2 28
KERBEROS 29
L2TP 30
NBAR2 Standard Protocol Pack 10 iii
LDAP 31
MGCP 32
NETBIOS 33
NETSHOW 34
NFS 35
NNTP 36
NOTES 37
NTP 38
OSPF 39
POP3 40
PPTP 41
PRINTER 42
RIP 43
RTCP 44
RTP 45
RTSP 46
SAP 47
SECURE-FTP 48
SECURE-HTTP 49
SECURE-IMAP 50
SECURE-IRC 51
SECURE-LDAP 52
SECURE-NNTP 53
SECURE-POP3 54
SECURE-TELNET 55
SIP 56
SKINNY 57
SKYPE 58
SMTP 59
SNMP 60
SOCKS 61
SQLNET 62
SQLSERVER 63
SSH 64
STREAMWORK 65
NBAR2 Standard Protocol Pack 10iv
Contents
SUNRPC 66
SYSLOG 67
TELNET 68
TFTP 69
VDOLIVE 70
WINMX 71
NBAR2 Standard Protocol Pack 10 v
Contents
NBAR2 Standard Protocol Pack 10vi
Contents
C H A P T E R 1Release Notes for NBAR2 Standard ProtocolPack 10
NBAR2 Standard Protocol Pack Overview
The Network Based Application Recognition (NBAR2) Standard Protocol Pack 10 is provided as the baseprotocol pack with an unlicensed Cisco image on a device The NBAR2 Standard Protocol Pack has limitedfeatures and functionality
Supported Platform
The NBAR2 Standard Protocol Pack 10 is supported on Cisco ASR 1000 Series Aggregation ServicesRouters
Additional References
Document TitleRelated Topic
Application Visibility and Control ConfigurationGuide
Application Visibility and Control
Classifying Network Traffic Using NBAR moduleClassifying Network Traffic Using NBAR
NBAR Protocol Pack moduleNBAR Protocol Pack
QoS NBAR Configuration GuideQoS NBAR Configuration Guide
NBAR2 Standard Protocol Pack 10 1
NBAR2 Standard Protocol Pack 102
Release Notes for NBAR2 Standard Protocol Pack 10
C H A P T E R 2BGP
bgpNameCLI Keyword
Border Gateway ProtocolFull Name
Border Gateway Protocol (BGP) is a protocol designed to share networkinformation (for example network reachability) between autonomous systems(AS) According to the information the BGP routers buildmodify their routingtables The protocol was designed to replace the Exterior Gateway Protocol(EGP) Usually the protocol uses TCPUDP ports 179 as default
Description
httptoolsietforghtmlrfc4274Reference
L4179Global ID
11ID
Known Mappings
179UDP Port
179TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NBAR2 Standard Protocol Pack 10 3
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
bull BITTORRENT page 6
bull CITRIX page 7
bull DHCP page 8
bull DIRECTCONNECT page 9
bull DNS page 10
bull EDONKEY page 11
bull EGP page 12
bull EIGRP page 13
bull EXCHANGE page 14
bull FASTTRACK page 15
bull FINGER page 16
bull FTP page 17
bull GNUTELLA page 18
bull GOPHER page 19
bull GRE page 20
bull H323 page 21
bull HTTP page 22
bull ICMP page 23
bull IMAP page 24
bull IPINIP page 25
bull IPV6-ICMP page 26
bull IRC page 27
bull KAZAA2 page 28
bull KERBEROS page 29
bull L2TP page 30
bull LDAP page 31
bull MGCP page 32
NBAR2 Standard Protocol Pack 104
BGP
bull NETBIOS page 33
bull NETSHOW page 34
bull NFS page 35
bull NNTP page 36
bull NOTES page 37
bull NTP page 38
bull OSPF page 39
bull POP3 page 40
bull PPTP page 41
bull PRINTER page 42
bull RIP page 43
bull RTCP page 44
bull RTP page 45
bull RTSP page 46
bull SAP page 47
bull SECURE-FTP page 48
bull SECURE-HTTP page 49
bull SECURE-IMAP page 50
bull SECURE-IRC page 51
bull SECURE-LDAP page 52
bull SECURE-NNTP page 53
bull SECURE-POP3 page 54
bull SECURE-TELNET page 55
bull SIP page 56
bull SKINNY page 57
bull SKYPE page 58
bull SMTP page 59
bull SNMP page 60
bull SOCKS page 61
bull SQLNET page 62
bull SQLSERVER page 63
bull SSH page 64
bull STREAMWORK page 65
NBAR2 Standard Protocol Pack 10 5
BGP
bull SUNRPC page 66
bull SYSLOG page 67
bull TELNET page 68
bull TFTP page 69
bull VDOLIVE page 70
bull WINMX page 71
BITTORRENTbittorrentNameCLI Keyword
BitTorrentFull Name
BitTorrent is a p2p file sharing protocol used for distributing files over theinternet It identifies content by URL and is designed to integrate seamlesslywith the web The BitTorrent protocol is based on a BitTorrent tracker (server)that initializes the connections between the clients (peers)
Description
httpjonasnitrodkbittorrentbittorrent-rfchtmlReference
L769Global ID
69ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NBAR2 Standard Protocol Pack 106
BGPBITTORRENT
NoEncrypted
NoTunnel
socksUnderlying Protocols
CITRIXcitrixNameCLI Keyword
CitrixFull Name
Citrix is an application that mediates users remotely to their corporate applicationsICA Independed Computing Architecture is a designated protocol for applicationserver system it is used for transferring data between clients and serversCGPCGP is a tunneling protocol the latest addition to the family of Citrix protocolAsof today it encapsulates ICA protocol but will be extended to other Citrix protocolsuch as RDP HTTPHTTPSIMA used for server-server communicationServer-Browser Used mainly a control connection which has PublishedApplication Name and triggers an ICA connection
Description
httpwwwcitrixcomsiteresourcesdynamicadditionalICA_Acceleration_0709apdf
Reference
L756Global ID
56ID
Known Mappings
1604UDP Port
1494251225132598TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NBAR2 Standard Protocol Pack 10 7
BGPCITRIX
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
DHCPdhcpNameCLI Keyword
Dynamic Host Configuration ProtocolFull Name
The Dynamic Host Configuration Protocol (DHCP) provides a framework forpassing configuration information to hosts on a TCPIP network The informationgiven by designated DHCP servers include IP address subnet mask and defaultgateway ADHCP server usually listens on UDP port 67 and DHCP client usuallylistens on UDP 68
Description
httpwwwietforgrfcrfc2131txtReference
L713Global ID
13ID
Known Mappings
6768UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NBAR2 Standard Protocol Pack 108
BGPDHCP
NoEncrypted
NoTunnel
-Underlying Protocols
DIRECTCONNECTdirectconnectNameCLI Keyword
Direct ConnectFull Name
Direct connect is a peer-to-peer file sharing protocol Clients connect to a mainhub that mediates them to other clients in order to download files The hubs holda database of clients and files and mediate the clients Once clients are connectedin a P2P manner they can download files and chat with one another
Description
httpwwwmetroactivecompapersmetro071201work-0128htmlReference
L770Global ID
70ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NBAR2 Standard Protocol Pack 10 9
BGPDIRECTCONNECT
NoTunnel
-Underlying Protocols
DNSdnsNameCLI Keyword
Domain Name SystemFull Name
Domain Name Server is a server that translates URLs into IP addresses basedon client queries It is based on client-server architecture
Description
httpswww1ietforgrfcrfc1035txtReference
L453Global ID
72ID
Known Mappings
53UDP Port
53TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1010
BGPDNS
EDONKEYedonkeyNameCLI Keyword
eDonkeyFull Name
eDonkey is a peer-to-peer file sharing addopted to share large files The networkis based on multiple decentralized servers each client must be connected to aserver to enter the network edonkey-static and eMule are also required to fullydetect or prevent this application traffic
Description
httpwebarchiveorgweb20010213200827wwwedonkey2000comoverviewhtml
Reference
L767Global ID
67ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 11
BGPEDONKEY
EGPegpNameCLI Keyword
Exterior Gateway ProtocolFull Name
Exterior Gateway Protocol (EGP) is a protocol used to convey networkinformation between neighboring gateways or Autonomic systems This waythe gateways acquire neighbors monitor neighbor reachability and exchangenet-reachability information in the form of Update messages EGP is IP protocolnumber 8
Description
httptoolsietforghtmlrfc904Reference
L38Global ID
4ID
Known Mappings
-UDP Port
-TCP Port
8IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1012
BGPEGP
EIGRPeigrpNameCLI Keyword
Interior Gateway Routing ProtocolFull Name
Enhanced Interior Gateway Routing Protocol (EIGRP) is an interior gatewayprotocol It is an advanced distance-vector routing protocol with optimizationsto minimize both the routing instability incurred after topology changes as wellas the use of bandwidth and processing power in the router The protocol isusually known as IP protocol 88 as default
Description
httpwwwciscocomenUStechtk365technologies_white_paper09186a0080094cb7shtml
Reference
L388Global ID
7ID
Known Mappings
-UDP Port
-TCP Port
88IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 13
BGPEIGRP
EXCHANGEexchangeNameCLI Keyword
Microsoft ExchangeFull Name
Exchange is a protocol that allows users to synchronize and connect to theirexchange server when the client is outside the organizations firewall Theunderlying protocol is RPC over HTTP
Description
httpsupportmicrosoftcomkb262986Reference
L749Global ID
49ID
Known Mappings
-UDP Port
135TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1014
BGPEXCHANGE
FASTTRACKfasttrackNameCLI Keyword
FastTrackFull Name
FastTrack is a file sharing client software that is based on peer-to-peer connectionFastTrack is used by multiple file sharing applications such as Kazaa GroksteriMesh andMorpheus Initialization Initial the connection with FastTrack serverover HTTP Search Searching for files in FastTrack server Download Downloadrequest from FastTracker server
Description
httpdeveloperberliosdeprojectsgift-fasttrackReference
L757Global ID
57ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 15
BGPFASTTRACK
FINGERfingerNameCLI Keyword
Finger ProtocolFull Name
The FingerName protocol provides an interface to the Name and Finger programsat several network sites These programs return a friendly human-oriented statusreport on either the system at the moment or a particular person in depth
Description
httpwwwietforgrfcrfc1288txtReference
L479Global ID
14ID
Known Mappings
79UDP Port
79TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1016
BGPFINGER
FTPftpNameCLI Keyword
File Transfer ProtocolFull Name
File Transfer Protocol (FTP) is used to transfer files between hosts over TCPnetworks and is based on client-server architecture An FTP server usually listenson port 21
Description
httpwwwietforgrfcrfc959txtReference
L421Global ID
2ID
Known Mappings
-UDP Port
21TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 17
BGPFTP
GNUTELLAgnutellaNameCLI Keyword
GnutellaFull Name
Gnutella ver2 is decentralized and open-source peer-to-peer file sharing protocolused by various clients such as BearShare Shareeza Morpheus etc Using aGnutella client files can be shared located and downloaded by another Gnutellaclient
Description
httprfc-gnutellasourceforgenetReference
L758Global ID
58ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1018
BGPGNUTELLA
GOPHERgopherNameCLI Keyword
GopherFull Name
Internet Gopher protocol is a protocol is a TCPIP application layer protocoldesigned for distributing searching and retrieving documents over the InternetThe protocol is based on a client-server architecture and usually uses TCP port70 as default
Description
httptoolsietforghtmlrfc1436Reference
L470Global ID
15ID
Known Mappings
70UDP Port
70TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 19
BGPGOPHER
GREgreNameCLI Keyword
Generic Route EncapsulationFull Name
Generic Routing Encapsulation (GRE) is a protocol used for encapsulation of anetwork layer over another The protocol encapsulates the packet and saves theprotocol type of the payload packet so the receivers know what network layerwas encapsulated and digests the packet respectively Usually the protocol usesIP port 47
Description
httptoolsietforghtmlrfc2784Reference
L347Global ID
5ID
Known Mappings
-UDP Port
-TCP Port
47IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1020
BGPGRE
H323h323NameCLI Keyword
H323Full Name
H323 is a recommendation from the ITU Telecommunication StandardizationSector (ITU-T) that defines the protocols to provide audio-visual communicationsessions on any packet network The H323 standard addresses call signaling andcontrol multimedia transport and control and bandwidth control for point-to-pointand multi-point conferences
Description
httpwwwh323forumorgReference
L764Global ID
64ID
Known Mappings
-UDP Port
110001100111002110031100411005110061100711008110091101011011110121101311TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 21
BGPH323
HTTPhttpNameCLI Keyword
HyperText Transfer ProtocolFull Name
Hypertext Transfer Protocol (HTTP) is a standard for communication betweenweb browsers and servers over the World Wide Web The protocol works in arequest-responsemanner over a client server computingmodel The server usuallylistens on port 80
Description
httpwwww3orgProtocolsrfc2616rfc2616htmlReference
L480Global ID
3ID
Known Mappings
-UDP Port
80TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1022
BGPHTTP
ICMPicmpNameCLI Keyword
Internet Control Message ProtocolFull Name
Internet Control Message Protocol (ICMP) messages are typically generated inresponse to errors in IP datagrams or for diagnostic or routing purposes ICMPerrors are always reported to the original source IP address of the originatingdatagram ICMP is IP protocol number 1 Traffic is classified only if its identifiedas ICMP but was not recognized as any other more granular classification suchas Ping
Description
httptoolsietforghtmlrfc792Reference
L31Global ID
6ID
Known Mappings
-UDP Port
-TCP Port
1IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 23
BGPICMP
IMAPimapNameCLI Keyword
Internet Message Access Protocol version 4Full Name
The Internet Message Acceess protocol allows users to acess their email serversand to receivesend emails The protocol simulates a local use when in-fact it isa connection to a server An IMAP server usually listens on port 143
Description
httptoolsietforghtmlrfc3501Reference
L4143Global ID
17ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1024
BGPIMAP
IPINIPipinipNameCLI Keyword
IP in IPFull Name
IP in IP tunneling is a protocol used to encapsulate IP headers to a different IPheader to share information between endpoints in different internet-networks(for example forwarding traffic from one intranet to another)
Description
httptoolsietforghtmlrfc1853Reference
L34Global ID
8ID
Known Mappings
-UDP Port
-TCP Port
4IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 25
BGPIPINIP
IPV6-ICMPipv6-icmpNameCLI Keyword
ICMP for IPv6Full Name
Internet Control Message Protocol version 6 (ICMPv6) is the implementation ofthe Internet Control Message Protocol (ICMP) for Internet Protocol version 6(IPv6) ICMPv6 is an integral part of IPv6 and performs error reporting diagnosticfunctions (eg ping) and a framework for extensions to implement futurechanges
Description
httptoolsietforghtmlrfc4443Reference
L358Global ID
812ID
Known Mappings
-UDP Port
-TCP Port
58IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1026
BGPIPV6-ICMP
IRCircNameCLI Keyword
Internet Relay ChatFull Name
Internet Relay Chat (IRC) protocol is used for chat messaging in real time It canbe used for conferencing or one-on-one chatting The protocol works onclient-server architecture with a distributed manner An IRC server usually listenson TCP port 194
Description
httpwwwirchelporgirchelprfcrfchtmlReference
L4194Global ID
19ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
httpUnderlying Protocols
NBAR2 Standard Protocol Pack 10 27
BGPIRC
KAZAA2kazaa2NameCLI Keyword
Kazaa2Full Name
Kazaa is an online music subscription service that is based on second generationpeer-to-peer technology FastTracker
Description
httpwwwkazaacomaboutReference
L759Global ID
59ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1028
BGPKAZAA2
KERBEROSkerberosNameCLI Keyword
KerberosFull Name
Kerberos is a network authentication protocol The protocol is used to verifyidentities over the internet using a trusted third party Extensions of the protocolalso use the exchange of cryptographic certification of a public key Usually theprotocol uses TCPUDP ports 88749 as default
Description
httpwwwietforgrfcrfc4120txtReference
L488Global ID
21ID
Known Mappings
88749UDP Port
88749TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 29
BGPKERBEROS
L2TPl2tpNameCLI Keyword
Layer 2 Tunneling ProtocolFull Name
Layer 2 Tunneling Protocol (L2TP) is a tunneling protocol used to support virtualprivate networks (VPNs) or as part of the delivery of services by ISPs It doesnot provide any encryption or confidentiality by itself it relies on an encryptionprotocol that it passes within the tunnel to provide privacy
Description
httptoolsietforghtmlrfc2661Reference
L4115Global ID
22ID
Known Mappings
1701UDP Port
1701TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1030
BGPL2TP
LDAPldapNameCLI Keyword
Lightweight Directory Access ProtocolFull Name
Lightweight Directory Access Protocol (LDAP) is a protocol designed to toaccess distributed directory services Typically it uses port 389 for TCP andUDP
Description
httptoolsietforghtmlrfc4510Reference
L4389Global ID
23ID
Known Mappings
389UDP Port
389TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 31
BGPLDAP
MGCPmgcpNameCLI Keyword
Media Gateway Control ProtocolFull Name
Media Gateway Control Protocol (MGCP) 10 is a protocol for the control ofVoice over IP (VoIP) calls by external call-control elements known as MediaGateway Controllers (MGCs) or Call Agents (CAs)
Description
httpwwwpacketizercomrfcrfc3435Reference
L762Global ID
62ID
Known Mappings
24272727UDP Port
242724282727TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1032
BGPMGCP
NETBIOSnetbiosNameCLI Keyword
Network Basic InputOutput SystemFull Name
Network Basic InputOutput System (NetBIOS) provides services related to thesession layer of the OSI model allowing applications on separate computers tocommunicate over a local area network As strictly an API NetBIOS is not anetworking protocol In modern networks NetBIOS normally runs over TCPIPvia the NetBIOS over TCPIP (NBT) protocol This results in each computer inthe network having both an IP address and a NetBIOS name corresponding to a(possibly different) host name
Description
httptoolsietforghtmlrfc1001Reference
L726Global ID
26ID
Known Mappings
137138UDP Port
137139TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 33
BGPNETBIOS
NETSHOWnetshowNameCLI Keyword
NetShowFull Name
Netshow is a Microsoft software designed to stream media over intranets andthe internet NetShow can transfer livemulticast and on-demand streamed audioillustrated audio and video Typically Netshow uses TCP port 1755 and UDPports between 1024-5000
Description
httpwwwmicrosoftcompresspasspress1997mar97nsbta2prmspxReference
L7426Global ID
53ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1034
BGPNETSHOW
NFSnfsNameCLI Keyword
Network File SystemFull Name
Network File System (NFS) is a distributed file system developed by SunMicrosystems Inc that allows users to access and modify files remotly as if itwas a local file The protocol is based on client server architecture and typicallyuses TCPUDP port 2049
Description
httpwwwietforgrfcrfc3530txtReference
L42049Global ID
27ID
Known Mappings
2049UDP Port
2049TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
NoUnderlying Protocols
NBAR2 Standard Protocol Pack 10 35
BGPNFS
NNTPnntpNameCLI Keyword
Network News Transfer ProtocolFull Name
Network News Transfer Protocol (NNTP) is an internet transfer protocol usedfor readingposting Usenet articles and transferring them between news serversUsually the TCP port is 119 while nntp over SSL TCPUDP port is 563
Description
httptoolsietforghtmlrfc3977Reference
L4119Global ID
28ID
Known Mappings
119UDP Port
119TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1036
BGPNNTP
NOTESnotesNameCLI Keyword
IBM Lotus NotesFull Name
IBM Lotus Notes is the client of a collaborative client-server platform IBMLotus Domino is the application server Lotus Notes provides integratedcollaboration functionality including email calendaring contacts managementto do tracking instant messaging an office productivity suite (IBM LotusSymphony) and access to other Lotus Domino applications and databases
Description
httpwww-01ibmcomsoftwarelotusnotesanddominoReference
L41352Global ID
30ID
Known Mappings
1352UDP Port
1352TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 37
BGPNOTES
NTPntpNameCLI Keyword
Network Time ProtocolFull Name
The Network Time Protocol is a protocol for synchronizing the system clocksof distributed computer systems over packet-switched variable-latency datanetworks Usually the UDP port used is 123
Description
httpwwweecisudeledu~millsntphtmlindexhtmlReference
L4123Global ID
31ID
Known Mappings
123UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1038
BGPNTP
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
copy 2013 Cisco Systems Inc All rights reserved
C O N T E N T S
C H A P T E R 1 Release Notes for NBAR2 Standard Protocol Pack 10 1
C H A P T E R 2 BGP 3
BITTORRENT 6
CITRIX 7
DHCP 8
DIRECTCONNECT 9
DNS 10
EDONKEY 11
EGP 12
EIGRP 13
EXCHANGE 14
FASTTRACK 15
FINGER 16
FTP 17
GNUTELLA 18
GOPHER 19
GRE 20
H323 21
HTTP 22
ICMP 23
IMAP 24
IPINIP 25
IPV6-ICMP 26
IRC 27
KAZAA2 28
KERBEROS 29
L2TP 30
NBAR2 Standard Protocol Pack 10 iii
LDAP 31
MGCP 32
NETBIOS 33
NETSHOW 34
NFS 35
NNTP 36
NOTES 37
NTP 38
OSPF 39
POP3 40
PPTP 41
PRINTER 42
RIP 43
RTCP 44
RTP 45
RTSP 46
SAP 47
SECURE-FTP 48
SECURE-HTTP 49
SECURE-IMAP 50
SECURE-IRC 51
SECURE-LDAP 52
SECURE-NNTP 53
SECURE-POP3 54
SECURE-TELNET 55
SIP 56
SKINNY 57
SKYPE 58
SMTP 59
SNMP 60
SOCKS 61
SQLNET 62
SQLSERVER 63
SSH 64
STREAMWORK 65
NBAR2 Standard Protocol Pack 10iv
Contents
SUNRPC 66
SYSLOG 67
TELNET 68
TFTP 69
VDOLIVE 70
WINMX 71
NBAR2 Standard Protocol Pack 10 v
Contents
NBAR2 Standard Protocol Pack 10vi
Contents
C H A P T E R 1Release Notes for NBAR2 Standard ProtocolPack 10
NBAR2 Standard Protocol Pack Overview
The Network Based Application Recognition (NBAR2) Standard Protocol Pack 10 is provided as the baseprotocol pack with an unlicensed Cisco image on a device The NBAR2 Standard Protocol Pack has limitedfeatures and functionality
Supported Platform
The NBAR2 Standard Protocol Pack 10 is supported on Cisco ASR 1000 Series Aggregation ServicesRouters
Additional References
Document TitleRelated Topic
Application Visibility and Control ConfigurationGuide
Application Visibility and Control
Classifying Network Traffic Using NBAR moduleClassifying Network Traffic Using NBAR
NBAR Protocol Pack moduleNBAR Protocol Pack
QoS NBAR Configuration GuideQoS NBAR Configuration Guide
NBAR2 Standard Protocol Pack 10 1
NBAR2 Standard Protocol Pack 102
Release Notes for NBAR2 Standard Protocol Pack 10
C H A P T E R 2BGP
bgpNameCLI Keyword
Border Gateway ProtocolFull Name
Border Gateway Protocol (BGP) is a protocol designed to share networkinformation (for example network reachability) between autonomous systems(AS) According to the information the BGP routers buildmodify their routingtables The protocol was designed to replace the Exterior Gateway Protocol(EGP) Usually the protocol uses TCPUDP ports 179 as default
Description
httptoolsietforghtmlrfc4274Reference
L4179Global ID
11ID
Known Mappings
179UDP Port
179TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NBAR2 Standard Protocol Pack 10 3
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
bull BITTORRENT page 6
bull CITRIX page 7
bull DHCP page 8
bull DIRECTCONNECT page 9
bull DNS page 10
bull EDONKEY page 11
bull EGP page 12
bull EIGRP page 13
bull EXCHANGE page 14
bull FASTTRACK page 15
bull FINGER page 16
bull FTP page 17
bull GNUTELLA page 18
bull GOPHER page 19
bull GRE page 20
bull H323 page 21
bull HTTP page 22
bull ICMP page 23
bull IMAP page 24
bull IPINIP page 25
bull IPV6-ICMP page 26
bull IRC page 27
bull KAZAA2 page 28
bull KERBEROS page 29
bull L2TP page 30
bull LDAP page 31
bull MGCP page 32
NBAR2 Standard Protocol Pack 104
BGP
bull NETBIOS page 33
bull NETSHOW page 34
bull NFS page 35
bull NNTP page 36
bull NOTES page 37
bull NTP page 38
bull OSPF page 39
bull POP3 page 40
bull PPTP page 41
bull PRINTER page 42
bull RIP page 43
bull RTCP page 44
bull RTP page 45
bull RTSP page 46
bull SAP page 47
bull SECURE-FTP page 48
bull SECURE-HTTP page 49
bull SECURE-IMAP page 50
bull SECURE-IRC page 51
bull SECURE-LDAP page 52
bull SECURE-NNTP page 53
bull SECURE-POP3 page 54
bull SECURE-TELNET page 55
bull SIP page 56
bull SKINNY page 57
bull SKYPE page 58
bull SMTP page 59
bull SNMP page 60
bull SOCKS page 61
bull SQLNET page 62
bull SQLSERVER page 63
bull SSH page 64
bull STREAMWORK page 65
NBAR2 Standard Protocol Pack 10 5
BGP
bull SUNRPC page 66
bull SYSLOG page 67
bull TELNET page 68
bull TFTP page 69
bull VDOLIVE page 70
bull WINMX page 71
BITTORRENTbittorrentNameCLI Keyword
BitTorrentFull Name
BitTorrent is a p2p file sharing protocol used for distributing files over theinternet It identifies content by URL and is designed to integrate seamlesslywith the web The BitTorrent protocol is based on a BitTorrent tracker (server)that initializes the connections between the clients (peers)
Description
httpjonasnitrodkbittorrentbittorrent-rfchtmlReference
L769Global ID
69ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NBAR2 Standard Protocol Pack 106
BGPBITTORRENT
NoEncrypted
NoTunnel
socksUnderlying Protocols
CITRIXcitrixNameCLI Keyword
CitrixFull Name
Citrix is an application that mediates users remotely to their corporate applicationsICA Independed Computing Architecture is a designated protocol for applicationserver system it is used for transferring data between clients and serversCGPCGP is a tunneling protocol the latest addition to the family of Citrix protocolAsof today it encapsulates ICA protocol but will be extended to other Citrix protocolsuch as RDP HTTPHTTPSIMA used for server-server communicationServer-Browser Used mainly a control connection which has PublishedApplication Name and triggers an ICA connection
Description
httpwwwcitrixcomsiteresourcesdynamicadditionalICA_Acceleration_0709apdf
Reference
L756Global ID
56ID
Known Mappings
1604UDP Port
1494251225132598TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NBAR2 Standard Protocol Pack 10 7
BGPCITRIX
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
DHCPdhcpNameCLI Keyword
Dynamic Host Configuration ProtocolFull Name
The Dynamic Host Configuration Protocol (DHCP) provides a framework forpassing configuration information to hosts on a TCPIP network The informationgiven by designated DHCP servers include IP address subnet mask and defaultgateway ADHCP server usually listens on UDP port 67 and DHCP client usuallylistens on UDP 68
Description
httpwwwietforgrfcrfc2131txtReference
L713Global ID
13ID
Known Mappings
6768UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NBAR2 Standard Protocol Pack 108
BGPDHCP
NoEncrypted
NoTunnel
-Underlying Protocols
DIRECTCONNECTdirectconnectNameCLI Keyword
Direct ConnectFull Name
Direct connect is a peer-to-peer file sharing protocol Clients connect to a mainhub that mediates them to other clients in order to download files The hubs holda database of clients and files and mediate the clients Once clients are connectedin a P2P manner they can download files and chat with one another
Description
httpwwwmetroactivecompapersmetro071201work-0128htmlReference
L770Global ID
70ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NBAR2 Standard Protocol Pack 10 9
BGPDIRECTCONNECT
NoTunnel
-Underlying Protocols
DNSdnsNameCLI Keyword
Domain Name SystemFull Name
Domain Name Server is a server that translates URLs into IP addresses basedon client queries It is based on client-server architecture
Description
httpswww1ietforgrfcrfc1035txtReference
L453Global ID
72ID
Known Mappings
53UDP Port
53TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1010
BGPDNS
EDONKEYedonkeyNameCLI Keyword
eDonkeyFull Name
eDonkey is a peer-to-peer file sharing addopted to share large files The networkis based on multiple decentralized servers each client must be connected to aserver to enter the network edonkey-static and eMule are also required to fullydetect or prevent this application traffic
Description
httpwebarchiveorgweb20010213200827wwwedonkey2000comoverviewhtml
Reference
L767Global ID
67ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 11
BGPEDONKEY
EGPegpNameCLI Keyword
Exterior Gateway ProtocolFull Name
Exterior Gateway Protocol (EGP) is a protocol used to convey networkinformation between neighboring gateways or Autonomic systems This waythe gateways acquire neighbors monitor neighbor reachability and exchangenet-reachability information in the form of Update messages EGP is IP protocolnumber 8
Description
httptoolsietforghtmlrfc904Reference
L38Global ID
4ID
Known Mappings
-UDP Port
-TCP Port
8IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1012
BGPEGP
EIGRPeigrpNameCLI Keyword
Interior Gateway Routing ProtocolFull Name
Enhanced Interior Gateway Routing Protocol (EIGRP) is an interior gatewayprotocol It is an advanced distance-vector routing protocol with optimizationsto minimize both the routing instability incurred after topology changes as wellas the use of bandwidth and processing power in the router The protocol isusually known as IP protocol 88 as default
Description
httpwwwciscocomenUStechtk365technologies_white_paper09186a0080094cb7shtml
Reference
L388Global ID
7ID
Known Mappings
-UDP Port
-TCP Port
88IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 13
BGPEIGRP
EXCHANGEexchangeNameCLI Keyword
Microsoft ExchangeFull Name
Exchange is a protocol that allows users to synchronize and connect to theirexchange server when the client is outside the organizations firewall Theunderlying protocol is RPC over HTTP
Description
httpsupportmicrosoftcomkb262986Reference
L749Global ID
49ID
Known Mappings
-UDP Port
135TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1014
BGPEXCHANGE
FASTTRACKfasttrackNameCLI Keyword
FastTrackFull Name
FastTrack is a file sharing client software that is based on peer-to-peer connectionFastTrack is used by multiple file sharing applications such as Kazaa GroksteriMesh andMorpheus Initialization Initial the connection with FastTrack serverover HTTP Search Searching for files in FastTrack server Download Downloadrequest from FastTracker server
Description
httpdeveloperberliosdeprojectsgift-fasttrackReference
L757Global ID
57ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 15
BGPFASTTRACK
FINGERfingerNameCLI Keyword
Finger ProtocolFull Name
The FingerName protocol provides an interface to the Name and Finger programsat several network sites These programs return a friendly human-oriented statusreport on either the system at the moment or a particular person in depth
Description
httpwwwietforgrfcrfc1288txtReference
L479Global ID
14ID
Known Mappings
79UDP Port
79TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1016
BGPFINGER
FTPftpNameCLI Keyword
File Transfer ProtocolFull Name
File Transfer Protocol (FTP) is used to transfer files between hosts over TCPnetworks and is based on client-server architecture An FTP server usually listenson port 21
Description
httpwwwietforgrfcrfc959txtReference
L421Global ID
2ID
Known Mappings
-UDP Port
21TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 17
BGPFTP
GNUTELLAgnutellaNameCLI Keyword
GnutellaFull Name
Gnutella ver2 is decentralized and open-source peer-to-peer file sharing protocolused by various clients such as BearShare Shareeza Morpheus etc Using aGnutella client files can be shared located and downloaded by another Gnutellaclient
Description
httprfc-gnutellasourceforgenetReference
L758Global ID
58ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1018
BGPGNUTELLA
GOPHERgopherNameCLI Keyword
GopherFull Name
Internet Gopher protocol is a protocol is a TCPIP application layer protocoldesigned for distributing searching and retrieving documents over the InternetThe protocol is based on a client-server architecture and usually uses TCP port70 as default
Description
httptoolsietforghtmlrfc1436Reference
L470Global ID
15ID
Known Mappings
70UDP Port
70TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 19
BGPGOPHER
GREgreNameCLI Keyword
Generic Route EncapsulationFull Name
Generic Routing Encapsulation (GRE) is a protocol used for encapsulation of anetwork layer over another The protocol encapsulates the packet and saves theprotocol type of the payload packet so the receivers know what network layerwas encapsulated and digests the packet respectively Usually the protocol usesIP port 47
Description
httptoolsietforghtmlrfc2784Reference
L347Global ID
5ID
Known Mappings
-UDP Port
-TCP Port
47IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1020
BGPGRE
H323h323NameCLI Keyword
H323Full Name
H323 is a recommendation from the ITU Telecommunication StandardizationSector (ITU-T) that defines the protocols to provide audio-visual communicationsessions on any packet network The H323 standard addresses call signaling andcontrol multimedia transport and control and bandwidth control for point-to-pointand multi-point conferences
Description
httpwwwh323forumorgReference
L764Global ID
64ID
Known Mappings
-UDP Port
110001100111002110031100411005110061100711008110091101011011110121101311TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 21
BGPH323
HTTPhttpNameCLI Keyword
HyperText Transfer ProtocolFull Name
Hypertext Transfer Protocol (HTTP) is a standard for communication betweenweb browsers and servers over the World Wide Web The protocol works in arequest-responsemanner over a client server computingmodel The server usuallylistens on port 80
Description
httpwwww3orgProtocolsrfc2616rfc2616htmlReference
L480Global ID
3ID
Known Mappings
-UDP Port
80TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1022
BGPHTTP
ICMPicmpNameCLI Keyword
Internet Control Message ProtocolFull Name
Internet Control Message Protocol (ICMP) messages are typically generated inresponse to errors in IP datagrams or for diagnostic or routing purposes ICMPerrors are always reported to the original source IP address of the originatingdatagram ICMP is IP protocol number 1 Traffic is classified only if its identifiedas ICMP but was not recognized as any other more granular classification suchas Ping
Description
httptoolsietforghtmlrfc792Reference
L31Global ID
6ID
Known Mappings
-UDP Port
-TCP Port
1IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 23
BGPICMP
IMAPimapNameCLI Keyword
Internet Message Access Protocol version 4Full Name
The Internet Message Acceess protocol allows users to acess their email serversand to receivesend emails The protocol simulates a local use when in-fact it isa connection to a server An IMAP server usually listens on port 143
Description
httptoolsietforghtmlrfc3501Reference
L4143Global ID
17ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1024
BGPIMAP
IPINIPipinipNameCLI Keyword
IP in IPFull Name
IP in IP tunneling is a protocol used to encapsulate IP headers to a different IPheader to share information between endpoints in different internet-networks(for example forwarding traffic from one intranet to another)
Description
httptoolsietforghtmlrfc1853Reference
L34Global ID
8ID
Known Mappings
-UDP Port
-TCP Port
4IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 25
BGPIPINIP
IPV6-ICMPipv6-icmpNameCLI Keyword
ICMP for IPv6Full Name
Internet Control Message Protocol version 6 (ICMPv6) is the implementation ofthe Internet Control Message Protocol (ICMP) for Internet Protocol version 6(IPv6) ICMPv6 is an integral part of IPv6 and performs error reporting diagnosticfunctions (eg ping) and a framework for extensions to implement futurechanges
Description
httptoolsietforghtmlrfc4443Reference
L358Global ID
812ID
Known Mappings
-UDP Port
-TCP Port
58IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1026
BGPIPV6-ICMP
IRCircNameCLI Keyword
Internet Relay ChatFull Name
Internet Relay Chat (IRC) protocol is used for chat messaging in real time It canbe used for conferencing or one-on-one chatting The protocol works onclient-server architecture with a distributed manner An IRC server usually listenson TCP port 194
Description
httpwwwirchelporgirchelprfcrfchtmlReference
L4194Global ID
19ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
httpUnderlying Protocols
NBAR2 Standard Protocol Pack 10 27
BGPIRC
KAZAA2kazaa2NameCLI Keyword
Kazaa2Full Name
Kazaa is an online music subscription service that is based on second generationpeer-to-peer technology FastTracker
Description
httpwwwkazaacomaboutReference
L759Global ID
59ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1028
BGPKAZAA2
KERBEROSkerberosNameCLI Keyword
KerberosFull Name
Kerberos is a network authentication protocol The protocol is used to verifyidentities over the internet using a trusted third party Extensions of the protocolalso use the exchange of cryptographic certification of a public key Usually theprotocol uses TCPUDP ports 88749 as default
Description
httpwwwietforgrfcrfc4120txtReference
L488Global ID
21ID
Known Mappings
88749UDP Port
88749TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 29
BGPKERBEROS
L2TPl2tpNameCLI Keyword
Layer 2 Tunneling ProtocolFull Name
Layer 2 Tunneling Protocol (L2TP) is a tunneling protocol used to support virtualprivate networks (VPNs) or as part of the delivery of services by ISPs It doesnot provide any encryption or confidentiality by itself it relies on an encryptionprotocol that it passes within the tunnel to provide privacy
Description
httptoolsietforghtmlrfc2661Reference
L4115Global ID
22ID
Known Mappings
1701UDP Port
1701TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1030
BGPL2TP
LDAPldapNameCLI Keyword
Lightweight Directory Access ProtocolFull Name
Lightweight Directory Access Protocol (LDAP) is a protocol designed to toaccess distributed directory services Typically it uses port 389 for TCP andUDP
Description
httptoolsietforghtmlrfc4510Reference
L4389Global ID
23ID
Known Mappings
389UDP Port
389TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 31
BGPLDAP
MGCPmgcpNameCLI Keyword
Media Gateway Control ProtocolFull Name
Media Gateway Control Protocol (MGCP) 10 is a protocol for the control ofVoice over IP (VoIP) calls by external call-control elements known as MediaGateway Controllers (MGCs) or Call Agents (CAs)
Description
httpwwwpacketizercomrfcrfc3435Reference
L762Global ID
62ID
Known Mappings
24272727UDP Port
242724282727TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1032
BGPMGCP
NETBIOSnetbiosNameCLI Keyword
Network Basic InputOutput SystemFull Name
Network Basic InputOutput System (NetBIOS) provides services related to thesession layer of the OSI model allowing applications on separate computers tocommunicate over a local area network As strictly an API NetBIOS is not anetworking protocol In modern networks NetBIOS normally runs over TCPIPvia the NetBIOS over TCPIP (NBT) protocol This results in each computer inthe network having both an IP address and a NetBIOS name corresponding to a(possibly different) host name
Description
httptoolsietforghtmlrfc1001Reference
L726Global ID
26ID
Known Mappings
137138UDP Port
137139TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 33
BGPNETBIOS
NETSHOWnetshowNameCLI Keyword
NetShowFull Name
Netshow is a Microsoft software designed to stream media over intranets andthe internet NetShow can transfer livemulticast and on-demand streamed audioillustrated audio and video Typically Netshow uses TCP port 1755 and UDPports between 1024-5000
Description
httpwwwmicrosoftcompresspasspress1997mar97nsbta2prmspxReference
L7426Global ID
53ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1034
BGPNETSHOW
NFSnfsNameCLI Keyword
Network File SystemFull Name
Network File System (NFS) is a distributed file system developed by SunMicrosystems Inc that allows users to access and modify files remotly as if itwas a local file The protocol is based on client server architecture and typicallyuses TCPUDP port 2049
Description
httpwwwietforgrfcrfc3530txtReference
L42049Global ID
27ID
Known Mappings
2049UDP Port
2049TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
NoUnderlying Protocols
NBAR2 Standard Protocol Pack 10 35
BGPNFS
NNTPnntpNameCLI Keyword
Network News Transfer ProtocolFull Name
Network News Transfer Protocol (NNTP) is an internet transfer protocol usedfor readingposting Usenet articles and transferring them between news serversUsually the TCP port is 119 while nntp over SSL TCPUDP port is 563
Description
httptoolsietforghtmlrfc3977Reference
L4119Global ID
28ID
Known Mappings
119UDP Port
119TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1036
BGPNNTP
NOTESnotesNameCLI Keyword
IBM Lotus NotesFull Name
IBM Lotus Notes is the client of a collaborative client-server platform IBMLotus Domino is the application server Lotus Notes provides integratedcollaboration functionality including email calendaring contacts managementto do tracking instant messaging an office productivity suite (IBM LotusSymphony) and access to other Lotus Domino applications and databases
Description
httpwww-01ibmcomsoftwarelotusnotesanddominoReference
L41352Global ID
30ID
Known Mappings
1352UDP Port
1352TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 37
BGPNOTES
NTPntpNameCLI Keyword
Network Time ProtocolFull Name
The Network Time Protocol is a protocol for synchronizing the system clocksof distributed computer systems over packet-switched variable-latency datanetworks Usually the UDP port used is 123
Description
httpwwweecisudeledu~millsntphtmlindexhtmlReference
L4123Global ID
31ID
Known Mappings
123UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1038
BGPNTP
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
C O N T E N T S
C H A P T E R 1 Release Notes for NBAR2 Standard Protocol Pack 10 1
C H A P T E R 2 BGP 3
BITTORRENT 6
CITRIX 7
DHCP 8
DIRECTCONNECT 9
DNS 10
EDONKEY 11
EGP 12
EIGRP 13
EXCHANGE 14
FASTTRACK 15
FINGER 16
FTP 17
GNUTELLA 18
GOPHER 19
GRE 20
H323 21
HTTP 22
ICMP 23
IMAP 24
IPINIP 25
IPV6-ICMP 26
IRC 27
KAZAA2 28
KERBEROS 29
L2TP 30
NBAR2 Standard Protocol Pack 10 iii
LDAP 31
MGCP 32
NETBIOS 33
NETSHOW 34
NFS 35
NNTP 36
NOTES 37
NTP 38
OSPF 39
POP3 40
PPTP 41
PRINTER 42
RIP 43
RTCP 44
RTP 45
RTSP 46
SAP 47
SECURE-FTP 48
SECURE-HTTP 49
SECURE-IMAP 50
SECURE-IRC 51
SECURE-LDAP 52
SECURE-NNTP 53
SECURE-POP3 54
SECURE-TELNET 55
SIP 56
SKINNY 57
SKYPE 58
SMTP 59
SNMP 60
SOCKS 61
SQLNET 62
SQLSERVER 63
SSH 64
STREAMWORK 65
NBAR2 Standard Protocol Pack 10iv
Contents
SUNRPC 66
SYSLOG 67
TELNET 68
TFTP 69
VDOLIVE 70
WINMX 71
NBAR2 Standard Protocol Pack 10 v
Contents
NBAR2 Standard Protocol Pack 10vi
Contents
C H A P T E R 1Release Notes for NBAR2 Standard ProtocolPack 10
NBAR2 Standard Protocol Pack Overview
The Network Based Application Recognition (NBAR2) Standard Protocol Pack 10 is provided as the baseprotocol pack with an unlicensed Cisco image on a device The NBAR2 Standard Protocol Pack has limitedfeatures and functionality
Supported Platform
The NBAR2 Standard Protocol Pack 10 is supported on Cisco ASR 1000 Series Aggregation ServicesRouters
Additional References
Document TitleRelated Topic
Application Visibility and Control ConfigurationGuide
Application Visibility and Control
Classifying Network Traffic Using NBAR moduleClassifying Network Traffic Using NBAR
NBAR Protocol Pack moduleNBAR Protocol Pack
QoS NBAR Configuration GuideQoS NBAR Configuration Guide
NBAR2 Standard Protocol Pack 10 1
NBAR2 Standard Protocol Pack 102
Release Notes for NBAR2 Standard Protocol Pack 10
C H A P T E R 2BGP
bgpNameCLI Keyword
Border Gateway ProtocolFull Name
Border Gateway Protocol (BGP) is a protocol designed to share networkinformation (for example network reachability) between autonomous systems(AS) According to the information the BGP routers buildmodify their routingtables The protocol was designed to replace the Exterior Gateway Protocol(EGP) Usually the protocol uses TCPUDP ports 179 as default
Description
httptoolsietforghtmlrfc4274Reference
L4179Global ID
11ID
Known Mappings
179UDP Port
179TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NBAR2 Standard Protocol Pack 10 3
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
bull BITTORRENT page 6
bull CITRIX page 7
bull DHCP page 8
bull DIRECTCONNECT page 9
bull DNS page 10
bull EDONKEY page 11
bull EGP page 12
bull EIGRP page 13
bull EXCHANGE page 14
bull FASTTRACK page 15
bull FINGER page 16
bull FTP page 17
bull GNUTELLA page 18
bull GOPHER page 19
bull GRE page 20
bull H323 page 21
bull HTTP page 22
bull ICMP page 23
bull IMAP page 24
bull IPINIP page 25
bull IPV6-ICMP page 26
bull IRC page 27
bull KAZAA2 page 28
bull KERBEROS page 29
bull L2TP page 30
bull LDAP page 31
bull MGCP page 32
NBAR2 Standard Protocol Pack 104
BGP
bull NETBIOS page 33
bull NETSHOW page 34
bull NFS page 35
bull NNTP page 36
bull NOTES page 37
bull NTP page 38
bull OSPF page 39
bull POP3 page 40
bull PPTP page 41
bull PRINTER page 42
bull RIP page 43
bull RTCP page 44
bull RTP page 45
bull RTSP page 46
bull SAP page 47
bull SECURE-FTP page 48
bull SECURE-HTTP page 49
bull SECURE-IMAP page 50
bull SECURE-IRC page 51
bull SECURE-LDAP page 52
bull SECURE-NNTP page 53
bull SECURE-POP3 page 54
bull SECURE-TELNET page 55
bull SIP page 56
bull SKINNY page 57
bull SKYPE page 58
bull SMTP page 59
bull SNMP page 60
bull SOCKS page 61
bull SQLNET page 62
bull SQLSERVER page 63
bull SSH page 64
bull STREAMWORK page 65
NBAR2 Standard Protocol Pack 10 5
BGP
bull SUNRPC page 66
bull SYSLOG page 67
bull TELNET page 68
bull TFTP page 69
bull VDOLIVE page 70
bull WINMX page 71
BITTORRENTbittorrentNameCLI Keyword
BitTorrentFull Name
BitTorrent is a p2p file sharing protocol used for distributing files over theinternet It identifies content by URL and is designed to integrate seamlesslywith the web The BitTorrent protocol is based on a BitTorrent tracker (server)that initializes the connections between the clients (peers)
Description
httpjonasnitrodkbittorrentbittorrent-rfchtmlReference
L769Global ID
69ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NBAR2 Standard Protocol Pack 106
BGPBITTORRENT
NoEncrypted
NoTunnel
socksUnderlying Protocols
CITRIXcitrixNameCLI Keyword
CitrixFull Name
Citrix is an application that mediates users remotely to their corporate applicationsICA Independed Computing Architecture is a designated protocol for applicationserver system it is used for transferring data between clients and serversCGPCGP is a tunneling protocol the latest addition to the family of Citrix protocolAsof today it encapsulates ICA protocol but will be extended to other Citrix protocolsuch as RDP HTTPHTTPSIMA used for server-server communicationServer-Browser Used mainly a control connection which has PublishedApplication Name and triggers an ICA connection
Description
httpwwwcitrixcomsiteresourcesdynamicadditionalICA_Acceleration_0709apdf
Reference
L756Global ID
56ID
Known Mappings
1604UDP Port
1494251225132598TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NBAR2 Standard Protocol Pack 10 7
BGPCITRIX
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
DHCPdhcpNameCLI Keyword
Dynamic Host Configuration ProtocolFull Name
The Dynamic Host Configuration Protocol (DHCP) provides a framework forpassing configuration information to hosts on a TCPIP network The informationgiven by designated DHCP servers include IP address subnet mask and defaultgateway ADHCP server usually listens on UDP port 67 and DHCP client usuallylistens on UDP 68
Description
httpwwwietforgrfcrfc2131txtReference
L713Global ID
13ID
Known Mappings
6768UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NBAR2 Standard Protocol Pack 108
BGPDHCP
NoEncrypted
NoTunnel
-Underlying Protocols
DIRECTCONNECTdirectconnectNameCLI Keyword
Direct ConnectFull Name
Direct connect is a peer-to-peer file sharing protocol Clients connect to a mainhub that mediates them to other clients in order to download files The hubs holda database of clients and files and mediate the clients Once clients are connectedin a P2P manner they can download files and chat with one another
Description
httpwwwmetroactivecompapersmetro071201work-0128htmlReference
L770Global ID
70ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NBAR2 Standard Protocol Pack 10 9
BGPDIRECTCONNECT
NoTunnel
-Underlying Protocols
DNSdnsNameCLI Keyword
Domain Name SystemFull Name
Domain Name Server is a server that translates URLs into IP addresses basedon client queries It is based on client-server architecture
Description
httpswww1ietforgrfcrfc1035txtReference
L453Global ID
72ID
Known Mappings
53UDP Port
53TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1010
BGPDNS
EDONKEYedonkeyNameCLI Keyword
eDonkeyFull Name
eDonkey is a peer-to-peer file sharing addopted to share large files The networkis based on multiple decentralized servers each client must be connected to aserver to enter the network edonkey-static and eMule are also required to fullydetect or prevent this application traffic
Description
httpwebarchiveorgweb20010213200827wwwedonkey2000comoverviewhtml
Reference
L767Global ID
67ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 11
BGPEDONKEY
EGPegpNameCLI Keyword
Exterior Gateway ProtocolFull Name
Exterior Gateway Protocol (EGP) is a protocol used to convey networkinformation between neighboring gateways or Autonomic systems This waythe gateways acquire neighbors monitor neighbor reachability and exchangenet-reachability information in the form of Update messages EGP is IP protocolnumber 8
Description
httptoolsietforghtmlrfc904Reference
L38Global ID
4ID
Known Mappings
-UDP Port
-TCP Port
8IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1012
BGPEGP
EIGRPeigrpNameCLI Keyword
Interior Gateway Routing ProtocolFull Name
Enhanced Interior Gateway Routing Protocol (EIGRP) is an interior gatewayprotocol It is an advanced distance-vector routing protocol with optimizationsto minimize both the routing instability incurred after topology changes as wellas the use of bandwidth and processing power in the router The protocol isusually known as IP protocol 88 as default
Description
httpwwwciscocomenUStechtk365technologies_white_paper09186a0080094cb7shtml
Reference
L388Global ID
7ID
Known Mappings
-UDP Port
-TCP Port
88IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 13
BGPEIGRP
EXCHANGEexchangeNameCLI Keyword
Microsoft ExchangeFull Name
Exchange is a protocol that allows users to synchronize and connect to theirexchange server when the client is outside the organizations firewall Theunderlying protocol is RPC over HTTP
Description
httpsupportmicrosoftcomkb262986Reference
L749Global ID
49ID
Known Mappings
-UDP Port
135TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1014
BGPEXCHANGE
FASTTRACKfasttrackNameCLI Keyword
FastTrackFull Name
FastTrack is a file sharing client software that is based on peer-to-peer connectionFastTrack is used by multiple file sharing applications such as Kazaa GroksteriMesh andMorpheus Initialization Initial the connection with FastTrack serverover HTTP Search Searching for files in FastTrack server Download Downloadrequest from FastTracker server
Description
httpdeveloperberliosdeprojectsgift-fasttrackReference
L757Global ID
57ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 15
BGPFASTTRACK
FINGERfingerNameCLI Keyword
Finger ProtocolFull Name
The FingerName protocol provides an interface to the Name and Finger programsat several network sites These programs return a friendly human-oriented statusreport on either the system at the moment or a particular person in depth
Description
httpwwwietforgrfcrfc1288txtReference
L479Global ID
14ID
Known Mappings
79UDP Port
79TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1016
BGPFINGER
FTPftpNameCLI Keyword
File Transfer ProtocolFull Name
File Transfer Protocol (FTP) is used to transfer files between hosts over TCPnetworks and is based on client-server architecture An FTP server usually listenson port 21
Description
httpwwwietforgrfcrfc959txtReference
L421Global ID
2ID
Known Mappings
-UDP Port
21TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 17
BGPFTP
GNUTELLAgnutellaNameCLI Keyword
GnutellaFull Name
Gnutella ver2 is decentralized and open-source peer-to-peer file sharing protocolused by various clients such as BearShare Shareeza Morpheus etc Using aGnutella client files can be shared located and downloaded by another Gnutellaclient
Description
httprfc-gnutellasourceforgenetReference
L758Global ID
58ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1018
BGPGNUTELLA
GOPHERgopherNameCLI Keyword
GopherFull Name
Internet Gopher protocol is a protocol is a TCPIP application layer protocoldesigned for distributing searching and retrieving documents over the InternetThe protocol is based on a client-server architecture and usually uses TCP port70 as default
Description
httptoolsietforghtmlrfc1436Reference
L470Global ID
15ID
Known Mappings
70UDP Port
70TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 19
BGPGOPHER
GREgreNameCLI Keyword
Generic Route EncapsulationFull Name
Generic Routing Encapsulation (GRE) is a protocol used for encapsulation of anetwork layer over another The protocol encapsulates the packet and saves theprotocol type of the payload packet so the receivers know what network layerwas encapsulated and digests the packet respectively Usually the protocol usesIP port 47
Description
httptoolsietforghtmlrfc2784Reference
L347Global ID
5ID
Known Mappings
-UDP Port
-TCP Port
47IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1020
BGPGRE
H323h323NameCLI Keyword
H323Full Name
H323 is a recommendation from the ITU Telecommunication StandardizationSector (ITU-T) that defines the protocols to provide audio-visual communicationsessions on any packet network The H323 standard addresses call signaling andcontrol multimedia transport and control and bandwidth control for point-to-pointand multi-point conferences
Description
httpwwwh323forumorgReference
L764Global ID
64ID
Known Mappings
-UDP Port
110001100111002110031100411005110061100711008110091101011011110121101311TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 21
BGPH323
HTTPhttpNameCLI Keyword
HyperText Transfer ProtocolFull Name
Hypertext Transfer Protocol (HTTP) is a standard for communication betweenweb browsers and servers over the World Wide Web The protocol works in arequest-responsemanner over a client server computingmodel The server usuallylistens on port 80
Description
httpwwww3orgProtocolsrfc2616rfc2616htmlReference
L480Global ID
3ID
Known Mappings
-UDP Port
80TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1022
BGPHTTP
ICMPicmpNameCLI Keyword
Internet Control Message ProtocolFull Name
Internet Control Message Protocol (ICMP) messages are typically generated inresponse to errors in IP datagrams or for diagnostic or routing purposes ICMPerrors are always reported to the original source IP address of the originatingdatagram ICMP is IP protocol number 1 Traffic is classified only if its identifiedas ICMP but was not recognized as any other more granular classification suchas Ping
Description
httptoolsietforghtmlrfc792Reference
L31Global ID
6ID
Known Mappings
-UDP Port
-TCP Port
1IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 23
BGPICMP
IMAPimapNameCLI Keyword
Internet Message Access Protocol version 4Full Name
The Internet Message Acceess protocol allows users to acess their email serversand to receivesend emails The protocol simulates a local use when in-fact it isa connection to a server An IMAP server usually listens on port 143
Description
httptoolsietforghtmlrfc3501Reference
L4143Global ID
17ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1024
BGPIMAP
IPINIPipinipNameCLI Keyword
IP in IPFull Name
IP in IP tunneling is a protocol used to encapsulate IP headers to a different IPheader to share information between endpoints in different internet-networks(for example forwarding traffic from one intranet to another)
Description
httptoolsietforghtmlrfc1853Reference
L34Global ID
8ID
Known Mappings
-UDP Port
-TCP Port
4IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 25
BGPIPINIP
IPV6-ICMPipv6-icmpNameCLI Keyword
ICMP for IPv6Full Name
Internet Control Message Protocol version 6 (ICMPv6) is the implementation ofthe Internet Control Message Protocol (ICMP) for Internet Protocol version 6(IPv6) ICMPv6 is an integral part of IPv6 and performs error reporting diagnosticfunctions (eg ping) and a framework for extensions to implement futurechanges
Description
httptoolsietforghtmlrfc4443Reference
L358Global ID
812ID
Known Mappings
-UDP Port
-TCP Port
58IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1026
BGPIPV6-ICMP
IRCircNameCLI Keyword
Internet Relay ChatFull Name
Internet Relay Chat (IRC) protocol is used for chat messaging in real time It canbe used for conferencing or one-on-one chatting The protocol works onclient-server architecture with a distributed manner An IRC server usually listenson TCP port 194
Description
httpwwwirchelporgirchelprfcrfchtmlReference
L4194Global ID
19ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
httpUnderlying Protocols
NBAR2 Standard Protocol Pack 10 27
BGPIRC
KAZAA2kazaa2NameCLI Keyword
Kazaa2Full Name
Kazaa is an online music subscription service that is based on second generationpeer-to-peer technology FastTracker
Description
httpwwwkazaacomaboutReference
L759Global ID
59ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1028
BGPKAZAA2
KERBEROSkerberosNameCLI Keyword
KerberosFull Name
Kerberos is a network authentication protocol The protocol is used to verifyidentities over the internet using a trusted third party Extensions of the protocolalso use the exchange of cryptographic certification of a public key Usually theprotocol uses TCPUDP ports 88749 as default
Description
httpwwwietforgrfcrfc4120txtReference
L488Global ID
21ID
Known Mappings
88749UDP Port
88749TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 29
BGPKERBEROS
L2TPl2tpNameCLI Keyword
Layer 2 Tunneling ProtocolFull Name
Layer 2 Tunneling Protocol (L2TP) is a tunneling protocol used to support virtualprivate networks (VPNs) or as part of the delivery of services by ISPs It doesnot provide any encryption or confidentiality by itself it relies on an encryptionprotocol that it passes within the tunnel to provide privacy
Description
httptoolsietforghtmlrfc2661Reference
L4115Global ID
22ID
Known Mappings
1701UDP Port
1701TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1030
BGPL2TP
LDAPldapNameCLI Keyword
Lightweight Directory Access ProtocolFull Name
Lightweight Directory Access Protocol (LDAP) is a protocol designed to toaccess distributed directory services Typically it uses port 389 for TCP andUDP
Description
httptoolsietforghtmlrfc4510Reference
L4389Global ID
23ID
Known Mappings
389UDP Port
389TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 31
BGPLDAP
MGCPmgcpNameCLI Keyword
Media Gateway Control ProtocolFull Name
Media Gateway Control Protocol (MGCP) 10 is a protocol for the control ofVoice over IP (VoIP) calls by external call-control elements known as MediaGateway Controllers (MGCs) or Call Agents (CAs)
Description
httpwwwpacketizercomrfcrfc3435Reference
L762Global ID
62ID
Known Mappings
24272727UDP Port
242724282727TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1032
BGPMGCP
NETBIOSnetbiosNameCLI Keyword
Network Basic InputOutput SystemFull Name
Network Basic InputOutput System (NetBIOS) provides services related to thesession layer of the OSI model allowing applications on separate computers tocommunicate over a local area network As strictly an API NetBIOS is not anetworking protocol In modern networks NetBIOS normally runs over TCPIPvia the NetBIOS over TCPIP (NBT) protocol This results in each computer inthe network having both an IP address and a NetBIOS name corresponding to a(possibly different) host name
Description
httptoolsietforghtmlrfc1001Reference
L726Global ID
26ID
Known Mappings
137138UDP Port
137139TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 33
BGPNETBIOS
NETSHOWnetshowNameCLI Keyword
NetShowFull Name
Netshow is a Microsoft software designed to stream media over intranets andthe internet NetShow can transfer livemulticast and on-demand streamed audioillustrated audio and video Typically Netshow uses TCP port 1755 and UDPports between 1024-5000
Description
httpwwwmicrosoftcompresspasspress1997mar97nsbta2prmspxReference
L7426Global ID
53ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1034
BGPNETSHOW
NFSnfsNameCLI Keyword
Network File SystemFull Name
Network File System (NFS) is a distributed file system developed by SunMicrosystems Inc that allows users to access and modify files remotly as if itwas a local file The protocol is based on client server architecture and typicallyuses TCPUDP port 2049
Description
httpwwwietforgrfcrfc3530txtReference
L42049Global ID
27ID
Known Mappings
2049UDP Port
2049TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
NoUnderlying Protocols
NBAR2 Standard Protocol Pack 10 35
BGPNFS
NNTPnntpNameCLI Keyword
Network News Transfer ProtocolFull Name
Network News Transfer Protocol (NNTP) is an internet transfer protocol usedfor readingposting Usenet articles and transferring them between news serversUsually the TCP port is 119 while nntp over SSL TCPUDP port is 563
Description
httptoolsietforghtmlrfc3977Reference
L4119Global ID
28ID
Known Mappings
119UDP Port
119TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1036
BGPNNTP
NOTESnotesNameCLI Keyword
IBM Lotus NotesFull Name
IBM Lotus Notes is the client of a collaborative client-server platform IBMLotus Domino is the application server Lotus Notes provides integratedcollaboration functionality including email calendaring contacts managementto do tracking instant messaging an office productivity suite (IBM LotusSymphony) and access to other Lotus Domino applications and databases
Description
httpwww-01ibmcomsoftwarelotusnotesanddominoReference
L41352Global ID
30ID
Known Mappings
1352UDP Port
1352TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 37
BGPNOTES
NTPntpNameCLI Keyword
Network Time ProtocolFull Name
The Network Time Protocol is a protocol for synchronizing the system clocksof distributed computer systems over packet-switched variable-latency datanetworks Usually the UDP port used is 123
Description
httpwwweecisudeledu~millsntphtmlindexhtmlReference
L4123Global ID
31ID
Known Mappings
123UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1038
BGPNTP
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
LDAP 31
MGCP 32
NETBIOS 33
NETSHOW 34
NFS 35
NNTP 36
NOTES 37
NTP 38
OSPF 39
POP3 40
PPTP 41
PRINTER 42
RIP 43
RTCP 44
RTP 45
RTSP 46
SAP 47
SECURE-FTP 48
SECURE-HTTP 49
SECURE-IMAP 50
SECURE-IRC 51
SECURE-LDAP 52
SECURE-NNTP 53
SECURE-POP3 54
SECURE-TELNET 55
SIP 56
SKINNY 57
SKYPE 58
SMTP 59
SNMP 60
SOCKS 61
SQLNET 62
SQLSERVER 63
SSH 64
STREAMWORK 65
NBAR2 Standard Protocol Pack 10iv
Contents
SUNRPC 66
SYSLOG 67
TELNET 68
TFTP 69
VDOLIVE 70
WINMX 71
NBAR2 Standard Protocol Pack 10 v
Contents
NBAR2 Standard Protocol Pack 10vi
Contents
C H A P T E R 1Release Notes for NBAR2 Standard ProtocolPack 10
NBAR2 Standard Protocol Pack Overview
The Network Based Application Recognition (NBAR2) Standard Protocol Pack 10 is provided as the baseprotocol pack with an unlicensed Cisco image on a device The NBAR2 Standard Protocol Pack has limitedfeatures and functionality
Supported Platform
The NBAR2 Standard Protocol Pack 10 is supported on Cisco ASR 1000 Series Aggregation ServicesRouters
Additional References
Document TitleRelated Topic
Application Visibility and Control ConfigurationGuide
Application Visibility and Control
Classifying Network Traffic Using NBAR moduleClassifying Network Traffic Using NBAR
NBAR Protocol Pack moduleNBAR Protocol Pack
QoS NBAR Configuration GuideQoS NBAR Configuration Guide
NBAR2 Standard Protocol Pack 10 1
NBAR2 Standard Protocol Pack 102
Release Notes for NBAR2 Standard Protocol Pack 10
C H A P T E R 2BGP
bgpNameCLI Keyword
Border Gateway ProtocolFull Name
Border Gateway Protocol (BGP) is a protocol designed to share networkinformation (for example network reachability) between autonomous systems(AS) According to the information the BGP routers buildmodify their routingtables The protocol was designed to replace the Exterior Gateway Protocol(EGP) Usually the protocol uses TCPUDP ports 179 as default
Description
httptoolsietforghtmlrfc4274Reference
L4179Global ID
11ID
Known Mappings
179UDP Port
179TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NBAR2 Standard Protocol Pack 10 3
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
bull BITTORRENT page 6
bull CITRIX page 7
bull DHCP page 8
bull DIRECTCONNECT page 9
bull DNS page 10
bull EDONKEY page 11
bull EGP page 12
bull EIGRP page 13
bull EXCHANGE page 14
bull FASTTRACK page 15
bull FINGER page 16
bull FTP page 17
bull GNUTELLA page 18
bull GOPHER page 19
bull GRE page 20
bull H323 page 21
bull HTTP page 22
bull ICMP page 23
bull IMAP page 24
bull IPINIP page 25
bull IPV6-ICMP page 26
bull IRC page 27
bull KAZAA2 page 28
bull KERBEROS page 29
bull L2TP page 30
bull LDAP page 31
bull MGCP page 32
NBAR2 Standard Protocol Pack 104
BGP
bull NETBIOS page 33
bull NETSHOW page 34
bull NFS page 35
bull NNTP page 36
bull NOTES page 37
bull NTP page 38
bull OSPF page 39
bull POP3 page 40
bull PPTP page 41
bull PRINTER page 42
bull RIP page 43
bull RTCP page 44
bull RTP page 45
bull RTSP page 46
bull SAP page 47
bull SECURE-FTP page 48
bull SECURE-HTTP page 49
bull SECURE-IMAP page 50
bull SECURE-IRC page 51
bull SECURE-LDAP page 52
bull SECURE-NNTP page 53
bull SECURE-POP3 page 54
bull SECURE-TELNET page 55
bull SIP page 56
bull SKINNY page 57
bull SKYPE page 58
bull SMTP page 59
bull SNMP page 60
bull SOCKS page 61
bull SQLNET page 62
bull SQLSERVER page 63
bull SSH page 64
bull STREAMWORK page 65
NBAR2 Standard Protocol Pack 10 5
BGP
bull SUNRPC page 66
bull SYSLOG page 67
bull TELNET page 68
bull TFTP page 69
bull VDOLIVE page 70
bull WINMX page 71
BITTORRENTbittorrentNameCLI Keyword
BitTorrentFull Name
BitTorrent is a p2p file sharing protocol used for distributing files over theinternet It identifies content by URL and is designed to integrate seamlesslywith the web The BitTorrent protocol is based on a BitTorrent tracker (server)that initializes the connections between the clients (peers)
Description
httpjonasnitrodkbittorrentbittorrent-rfchtmlReference
L769Global ID
69ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NBAR2 Standard Protocol Pack 106
BGPBITTORRENT
NoEncrypted
NoTunnel
socksUnderlying Protocols
CITRIXcitrixNameCLI Keyword
CitrixFull Name
Citrix is an application that mediates users remotely to their corporate applicationsICA Independed Computing Architecture is a designated protocol for applicationserver system it is used for transferring data between clients and serversCGPCGP is a tunneling protocol the latest addition to the family of Citrix protocolAsof today it encapsulates ICA protocol but will be extended to other Citrix protocolsuch as RDP HTTPHTTPSIMA used for server-server communicationServer-Browser Used mainly a control connection which has PublishedApplication Name and triggers an ICA connection
Description
httpwwwcitrixcomsiteresourcesdynamicadditionalICA_Acceleration_0709apdf
Reference
L756Global ID
56ID
Known Mappings
1604UDP Port
1494251225132598TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NBAR2 Standard Protocol Pack 10 7
BGPCITRIX
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
DHCPdhcpNameCLI Keyword
Dynamic Host Configuration ProtocolFull Name
The Dynamic Host Configuration Protocol (DHCP) provides a framework forpassing configuration information to hosts on a TCPIP network The informationgiven by designated DHCP servers include IP address subnet mask and defaultgateway ADHCP server usually listens on UDP port 67 and DHCP client usuallylistens on UDP 68
Description
httpwwwietforgrfcrfc2131txtReference
L713Global ID
13ID
Known Mappings
6768UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NBAR2 Standard Protocol Pack 108
BGPDHCP
NoEncrypted
NoTunnel
-Underlying Protocols
DIRECTCONNECTdirectconnectNameCLI Keyword
Direct ConnectFull Name
Direct connect is a peer-to-peer file sharing protocol Clients connect to a mainhub that mediates them to other clients in order to download files The hubs holda database of clients and files and mediate the clients Once clients are connectedin a P2P manner they can download files and chat with one another
Description
httpwwwmetroactivecompapersmetro071201work-0128htmlReference
L770Global ID
70ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NBAR2 Standard Protocol Pack 10 9
BGPDIRECTCONNECT
NoTunnel
-Underlying Protocols
DNSdnsNameCLI Keyword
Domain Name SystemFull Name
Domain Name Server is a server that translates URLs into IP addresses basedon client queries It is based on client-server architecture
Description
httpswww1ietforgrfcrfc1035txtReference
L453Global ID
72ID
Known Mappings
53UDP Port
53TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1010
BGPDNS
EDONKEYedonkeyNameCLI Keyword
eDonkeyFull Name
eDonkey is a peer-to-peer file sharing addopted to share large files The networkis based on multiple decentralized servers each client must be connected to aserver to enter the network edonkey-static and eMule are also required to fullydetect or prevent this application traffic
Description
httpwebarchiveorgweb20010213200827wwwedonkey2000comoverviewhtml
Reference
L767Global ID
67ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 11
BGPEDONKEY
EGPegpNameCLI Keyword
Exterior Gateway ProtocolFull Name
Exterior Gateway Protocol (EGP) is a protocol used to convey networkinformation between neighboring gateways or Autonomic systems This waythe gateways acquire neighbors monitor neighbor reachability and exchangenet-reachability information in the form of Update messages EGP is IP protocolnumber 8
Description
httptoolsietforghtmlrfc904Reference
L38Global ID
4ID
Known Mappings
-UDP Port
-TCP Port
8IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1012
BGPEGP
EIGRPeigrpNameCLI Keyword
Interior Gateway Routing ProtocolFull Name
Enhanced Interior Gateway Routing Protocol (EIGRP) is an interior gatewayprotocol It is an advanced distance-vector routing protocol with optimizationsto minimize both the routing instability incurred after topology changes as wellas the use of bandwidth and processing power in the router The protocol isusually known as IP protocol 88 as default
Description
httpwwwciscocomenUStechtk365technologies_white_paper09186a0080094cb7shtml
Reference
L388Global ID
7ID
Known Mappings
-UDP Port
-TCP Port
88IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 13
BGPEIGRP
EXCHANGEexchangeNameCLI Keyword
Microsoft ExchangeFull Name
Exchange is a protocol that allows users to synchronize and connect to theirexchange server when the client is outside the organizations firewall Theunderlying protocol is RPC over HTTP
Description
httpsupportmicrosoftcomkb262986Reference
L749Global ID
49ID
Known Mappings
-UDP Port
135TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1014
BGPEXCHANGE
FASTTRACKfasttrackNameCLI Keyword
FastTrackFull Name
FastTrack is a file sharing client software that is based on peer-to-peer connectionFastTrack is used by multiple file sharing applications such as Kazaa GroksteriMesh andMorpheus Initialization Initial the connection with FastTrack serverover HTTP Search Searching for files in FastTrack server Download Downloadrequest from FastTracker server
Description
httpdeveloperberliosdeprojectsgift-fasttrackReference
L757Global ID
57ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 15
BGPFASTTRACK
FINGERfingerNameCLI Keyword
Finger ProtocolFull Name
The FingerName protocol provides an interface to the Name and Finger programsat several network sites These programs return a friendly human-oriented statusreport on either the system at the moment or a particular person in depth
Description
httpwwwietforgrfcrfc1288txtReference
L479Global ID
14ID
Known Mappings
79UDP Port
79TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1016
BGPFINGER
FTPftpNameCLI Keyword
File Transfer ProtocolFull Name
File Transfer Protocol (FTP) is used to transfer files between hosts over TCPnetworks and is based on client-server architecture An FTP server usually listenson port 21
Description
httpwwwietforgrfcrfc959txtReference
L421Global ID
2ID
Known Mappings
-UDP Port
21TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 17
BGPFTP
GNUTELLAgnutellaNameCLI Keyword
GnutellaFull Name
Gnutella ver2 is decentralized and open-source peer-to-peer file sharing protocolused by various clients such as BearShare Shareeza Morpheus etc Using aGnutella client files can be shared located and downloaded by another Gnutellaclient
Description
httprfc-gnutellasourceforgenetReference
L758Global ID
58ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1018
BGPGNUTELLA
GOPHERgopherNameCLI Keyword
GopherFull Name
Internet Gopher protocol is a protocol is a TCPIP application layer protocoldesigned for distributing searching and retrieving documents over the InternetThe protocol is based on a client-server architecture and usually uses TCP port70 as default
Description
httptoolsietforghtmlrfc1436Reference
L470Global ID
15ID
Known Mappings
70UDP Port
70TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 19
BGPGOPHER
GREgreNameCLI Keyword
Generic Route EncapsulationFull Name
Generic Routing Encapsulation (GRE) is a protocol used for encapsulation of anetwork layer over another The protocol encapsulates the packet and saves theprotocol type of the payload packet so the receivers know what network layerwas encapsulated and digests the packet respectively Usually the protocol usesIP port 47
Description
httptoolsietforghtmlrfc2784Reference
L347Global ID
5ID
Known Mappings
-UDP Port
-TCP Port
47IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1020
BGPGRE
H323h323NameCLI Keyword
H323Full Name
H323 is a recommendation from the ITU Telecommunication StandardizationSector (ITU-T) that defines the protocols to provide audio-visual communicationsessions on any packet network The H323 standard addresses call signaling andcontrol multimedia transport and control and bandwidth control for point-to-pointand multi-point conferences
Description
httpwwwh323forumorgReference
L764Global ID
64ID
Known Mappings
-UDP Port
110001100111002110031100411005110061100711008110091101011011110121101311TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 21
BGPH323
HTTPhttpNameCLI Keyword
HyperText Transfer ProtocolFull Name
Hypertext Transfer Protocol (HTTP) is a standard for communication betweenweb browsers and servers over the World Wide Web The protocol works in arequest-responsemanner over a client server computingmodel The server usuallylistens on port 80
Description
httpwwww3orgProtocolsrfc2616rfc2616htmlReference
L480Global ID
3ID
Known Mappings
-UDP Port
80TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1022
BGPHTTP
ICMPicmpNameCLI Keyword
Internet Control Message ProtocolFull Name
Internet Control Message Protocol (ICMP) messages are typically generated inresponse to errors in IP datagrams or for diagnostic or routing purposes ICMPerrors are always reported to the original source IP address of the originatingdatagram ICMP is IP protocol number 1 Traffic is classified only if its identifiedas ICMP but was not recognized as any other more granular classification suchas Ping
Description
httptoolsietforghtmlrfc792Reference
L31Global ID
6ID
Known Mappings
-UDP Port
-TCP Port
1IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 23
BGPICMP
IMAPimapNameCLI Keyword
Internet Message Access Protocol version 4Full Name
The Internet Message Acceess protocol allows users to acess their email serversand to receivesend emails The protocol simulates a local use when in-fact it isa connection to a server An IMAP server usually listens on port 143
Description
httptoolsietforghtmlrfc3501Reference
L4143Global ID
17ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1024
BGPIMAP
IPINIPipinipNameCLI Keyword
IP in IPFull Name
IP in IP tunneling is a protocol used to encapsulate IP headers to a different IPheader to share information between endpoints in different internet-networks(for example forwarding traffic from one intranet to another)
Description
httptoolsietforghtmlrfc1853Reference
L34Global ID
8ID
Known Mappings
-UDP Port
-TCP Port
4IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 25
BGPIPINIP
IPV6-ICMPipv6-icmpNameCLI Keyword
ICMP for IPv6Full Name
Internet Control Message Protocol version 6 (ICMPv6) is the implementation ofthe Internet Control Message Protocol (ICMP) for Internet Protocol version 6(IPv6) ICMPv6 is an integral part of IPv6 and performs error reporting diagnosticfunctions (eg ping) and a framework for extensions to implement futurechanges
Description
httptoolsietforghtmlrfc4443Reference
L358Global ID
812ID
Known Mappings
-UDP Port
-TCP Port
58IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1026
BGPIPV6-ICMP
IRCircNameCLI Keyword
Internet Relay ChatFull Name
Internet Relay Chat (IRC) protocol is used for chat messaging in real time It canbe used for conferencing or one-on-one chatting The protocol works onclient-server architecture with a distributed manner An IRC server usually listenson TCP port 194
Description
httpwwwirchelporgirchelprfcrfchtmlReference
L4194Global ID
19ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
httpUnderlying Protocols
NBAR2 Standard Protocol Pack 10 27
BGPIRC
KAZAA2kazaa2NameCLI Keyword
Kazaa2Full Name
Kazaa is an online music subscription service that is based on second generationpeer-to-peer technology FastTracker
Description
httpwwwkazaacomaboutReference
L759Global ID
59ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1028
BGPKAZAA2
KERBEROSkerberosNameCLI Keyword
KerberosFull Name
Kerberos is a network authentication protocol The protocol is used to verifyidentities over the internet using a trusted third party Extensions of the protocolalso use the exchange of cryptographic certification of a public key Usually theprotocol uses TCPUDP ports 88749 as default
Description
httpwwwietforgrfcrfc4120txtReference
L488Global ID
21ID
Known Mappings
88749UDP Port
88749TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 29
BGPKERBEROS
L2TPl2tpNameCLI Keyword
Layer 2 Tunneling ProtocolFull Name
Layer 2 Tunneling Protocol (L2TP) is a tunneling protocol used to support virtualprivate networks (VPNs) or as part of the delivery of services by ISPs It doesnot provide any encryption or confidentiality by itself it relies on an encryptionprotocol that it passes within the tunnel to provide privacy
Description
httptoolsietforghtmlrfc2661Reference
L4115Global ID
22ID
Known Mappings
1701UDP Port
1701TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1030
BGPL2TP
LDAPldapNameCLI Keyword
Lightweight Directory Access ProtocolFull Name
Lightweight Directory Access Protocol (LDAP) is a protocol designed to toaccess distributed directory services Typically it uses port 389 for TCP andUDP
Description
httptoolsietforghtmlrfc4510Reference
L4389Global ID
23ID
Known Mappings
389UDP Port
389TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 31
BGPLDAP
MGCPmgcpNameCLI Keyword
Media Gateway Control ProtocolFull Name
Media Gateway Control Protocol (MGCP) 10 is a protocol for the control ofVoice over IP (VoIP) calls by external call-control elements known as MediaGateway Controllers (MGCs) or Call Agents (CAs)
Description
httpwwwpacketizercomrfcrfc3435Reference
L762Global ID
62ID
Known Mappings
24272727UDP Port
242724282727TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1032
BGPMGCP
NETBIOSnetbiosNameCLI Keyword
Network Basic InputOutput SystemFull Name
Network Basic InputOutput System (NetBIOS) provides services related to thesession layer of the OSI model allowing applications on separate computers tocommunicate over a local area network As strictly an API NetBIOS is not anetworking protocol In modern networks NetBIOS normally runs over TCPIPvia the NetBIOS over TCPIP (NBT) protocol This results in each computer inthe network having both an IP address and a NetBIOS name corresponding to a(possibly different) host name
Description
httptoolsietforghtmlrfc1001Reference
L726Global ID
26ID
Known Mappings
137138UDP Port
137139TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 33
BGPNETBIOS
NETSHOWnetshowNameCLI Keyword
NetShowFull Name
Netshow is a Microsoft software designed to stream media over intranets andthe internet NetShow can transfer livemulticast and on-demand streamed audioillustrated audio and video Typically Netshow uses TCP port 1755 and UDPports between 1024-5000
Description
httpwwwmicrosoftcompresspasspress1997mar97nsbta2prmspxReference
L7426Global ID
53ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1034
BGPNETSHOW
NFSnfsNameCLI Keyword
Network File SystemFull Name
Network File System (NFS) is a distributed file system developed by SunMicrosystems Inc that allows users to access and modify files remotly as if itwas a local file The protocol is based on client server architecture and typicallyuses TCPUDP port 2049
Description
httpwwwietforgrfcrfc3530txtReference
L42049Global ID
27ID
Known Mappings
2049UDP Port
2049TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
NoUnderlying Protocols
NBAR2 Standard Protocol Pack 10 35
BGPNFS
NNTPnntpNameCLI Keyword
Network News Transfer ProtocolFull Name
Network News Transfer Protocol (NNTP) is an internet transfer protocol usedfor readingposting Usenet articles and transferring them between news serversUsually the TCP port is 119 while nntp over SSL TCPUDP port is 563
Description
httptoolsietforghtmlrfc3977Reference
L4119Global ID
28ID
Known Mappings
119UDP Port
119TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1036
BGPNNTP
NOTESnotesNameCLI Keyword
IBM Lotus NotesFull Name
IBM Lotus Notes is the client of a collaborative client-server platform IBMLotus Domino is the application server Lotus Notes provides integratedcollaboration functionality including email calendaring contacts managementto do tracking instant messaging an office productivity suite (IBM LotusSymphony) and access to other Lotus Domino applications and databases
Description
httpwww-01ibmcomsoftwarelotusnotesanddominoReference
L41352Global ID
30ID
Known Mappings
1352UDP Port
1352TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 37
BGPNOTES
NTPntpNameCLI Keyword
Network Time ProtocolFull Name
The Network Time Protocol is a protocol for synchronizing the system clocksof distributed computer systems over packet-switched variable-latency datanetworks Usually the UDP port used is 123
Description
httpwwweecisudeledu~millsntphtmlindexhtmlReference
L4123Global ID
31ID
Known Mappings
123UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1038
BGPNTP
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
SUNRPC 66
SYSLOG 67
TELNET 68
TFTP 69
VDOLIVE 70
WINMX 71
NBAR2 Standard Protocol Pack 10 v
Contents
NBAR2 Standard Protocol Pack 10vi
Contents
C H A P T E R 1Release Notes for NBAR2 Standard ProtocolPack 10
NBAR2 Standard Protocol Pack Overview
The Network Based Application Recognition (NBAR2) Standard Protocol Pack 10 is provided as the baseprotocol pack with an unlicensed Cisco image on a device The NBAR2 Standard Protocol Pack has limitedfeatures and functionality
Supported Platform
The NBAR2 Standard Protocol Pack 10 is supported on Cisco ASR 1000 Series Aggregation ServicesRouters
Additional References
Document TitleRelated Topic
Application Visibility and Control ConfigurationGuide
Application Visibility and Control
Classifying Network Traffic Using NBAR moduleClassifying Network Traffic Using NBAR
NBAR Protocol Pack moduleNBAR Protocol Pack
QoS NBAR Configuration GuideQoS NBAR Configuration Guide
NBAR2 Standard Protocol Pack 10 1
NBAR2 Standard Protocol Pack 102
Release Notes for NBAR2 Standard Protocol Pack 10
C H A P T E R 2BGP
bgpNameCLI Keyword
Border Gateway ProtocolFull Name
Border Gateway Protocol (BGP) is a protocol designed to share networkinformation (for example network reachability) between autonomous systems(AS) According to the information the BGP routers buildmodify their routingtables The protocol was designed to replace the Exterior Gateway Protocol(EGP) Usually the protocol uses TCPUDP ports 179 as default
Description
httptoolsietforghtmlrfc4274Reference
L4179Global ID
11ID
Known Mappings
179UDP Port
179TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NBAR2 Standard Protocol Pack 10 3
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
bull BITTORRENT page 6
bull CITRIX page 7
bull DHCP page 8
bull DIRECTCONNECT page 9
bull DNS page 10
bull EDONKEY page 11
bull EGP page 12
bull EIGRP page 13
bull EXCHANGE page 14
bull FASTTRACK page 15
bull FINGER page 16
bull FTP page 17
bull GNUTELLA page 18
bull GOPHER page 19
bull GRE page 20
bull H323 page 21
bull HTTP page 22
bull ICMP page 23
bull IMAP page 24
bull IPINIP page 25
bull IPV6-ICMP page 26
bull IRC page 27
bull KAZAA2 page 28
bull KERBEROS page 29
bull L2TP page 30
bull LDAP page 31
bull MGCP page 32
NBAR2 Standard Protocol Pack 104
BGP
bull NETBIOS page 33
bull NETSHOW page 34
bull NFS page 35
bull NNTP page 36
bull NOTES page 37
bull NTP page 38
bull OSPF page 39
bull POP3 page 40
bull PPTP page 41
bull PRINTER page 42
bull RIP page 43
bull RTCP page 44
bull RTP page 45
bull RTSP page 46
bull SAP page 47
bull SECURE-FTP page 48
bull SECURE-HTTP page 49
bull SECURE-IMAP page 50
bull SECURE-IRC page 51
bull SECURE-LDAP page 52
bull SECURE-NNTP page 53
bull SECURE-POP3 page 54
bull SECURE-TELNET page 55
bull SIP page 56
bull SKINNY page 57
bull SKYPE page 58
bull SMTP page 59
bull SNMP page 60
bull SOCKS page 61
bull SQLNET page 62
bull SQLSERVER page 63
bull SSH page 64
bull STREAMWORK page 65
NBAR2 Standard Protocol Pack 10 5
BGP
bull SUNRPC page 66
bull SYSLOG page 67
bull TELNET page 68
bull TFTP page 69
bull VDOLIVE page 70
bull WINMX page 71
BITTORRENTbittorrentNameCLI Keyword
BitTorrentFull Name
BitTorrent is a p2p file sharing protocol used for distributing files over theinternet It identifies content by URL and is designed to integrate seamlesslywith the web The BitTorrent protocol is based on a BitTorrent tracker (server)that initializes the connections between the clients (peers)
Description
httpjonasnitrodkbittorrentbittorrent-rfchtmlReference
L769Global ID
69ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NBAR2 Standard Protocol Pack 106
BGPBITTORRENT
NoEncrypted
NoTunnel
socksUnderlying Protocols
CITRIXcitrixNameCLI Keyword
CitrixFull Name
Citrix is an application that mediates users remotely to their corporate applicationsICA Independed Computing Architecture is a designated protocol for applicationserver system it is used for transferring data between clients and serversCGPCGP is a tunneling protocol the latest addition to the family of Citrix protocolAsof today it encapsulates ICA protocol but will be extended to other Citrix protocolsuch as RDP HTTPHTTPSIMA used for server-server communicationServer-Browser Used mainly a control connection which has PublishedApplication Name and triggers an ICA connection
Description
httpwwwcitrixcomsiteresourcesdynamicadditionalICA_Acceleration_0709apdf
Reference
L756Global ID
56ID
Known Mappings
1604UDP Port
1494251225132598TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NBAR2 Standard Protocol Pack 10 7
BGPCITRIX
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
DHCPdhcpNameCLI Keyword
Dynamic Host Configuration ProtocolFull Name
The Dynamic Host Configuration Protocol (DHCP) provides a framework forpassing configuration information to hosts on a TCPIP network The informationgiven by designated DHCP servers include IP address subnet mask and defaultgateway ADHCP server usually listens on UDP port 67 and DHCP client usuallylistens on UDP 68
Description
httpwwwietforgrfcrfc2131txtReference
L713Global ID
13ID
Known Mappings
6768UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NBAR2 Standard Protocol Pack 108
BGPDHCP
NoEncrypted
NoTunnel
-Underlying Protocols
DIRECTCONNECTdirectconnectNameCLI Keyword
Direct ConnectFull Name
Direct connect is a peer-to-peer file sharing protocol Clients connect to a mainhub that mediates them to other clients in order to download files The hubs holda database of clients and files and mediate the clients Once clients are connectedin a P2P manner they can download files and chat with one another
Description
httpwwwmetroactivecompapersmetro071201work-0128htmlReference
L770Global ID
70ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NBAR2 Standard Protocol Pack 10 9
BGPDIRECTCONNECT
NoTunnel
-Underlying Protocols
DNSdnsNameCLI Keyword
Domain Name SystemFull Name
Domain Name Server is a server that translates URLs into IP addresses basedon client queries It is based on client-server architecture
Description
httpswww1ietforgrfcrfc1035txtReference
L453Global ID
72ID
Known Mappings
53UDP Port
53TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1010
BGPDNS
EDONKEYedonkeyNameCLI Keyword
eDonkeyFull Name
eDonkey is a peer-to-peer file sharing addopted to share large files The networkis based on multiple decentralized servers each client must be connected to aserver to enter the network edonkey-static and eMule are also required to fullydetect or prevent this application traffic
Description
httpwebarchiveorgweb20010213200827wwwedonkey2000comoverviewhtml
Reference
L767Global ID
67ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 11
BGPEDONKEY
EGPegpNameCLI Keyword
Exterior Gateway ProtocolFull Name
Exterior Gateway Protocol (EGP) is a protocol used to convey networkinformation between neighboring gateways or Autonomic systems This waythe gateways acquire neighbors monitor neighbor reachability and exchangenet-reachability information in the form of Update messages EGP is IP protocolnumber 8
Description
httptoolsietforghtmlrfc904Reference
L38Global ID
4ID
Known Mappings
-UDP Port
-TCP Port
8IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1012
BGPEGP
EIGRPeigrpNameCLI Keyword
Interior Gateway Routing ProtocolFull Name
Enhanced Interior Gateway Routing Protocol (EIGRP) is an interior gatewayprotocol It is an advanced distance-vector routing protocol with optimizationsto minimize both the routing instability incurred after topology changes as wellas the use of bandwidth and processing power in the router The protocol isusually known as IP protocol 88 as default
Description
httpwwwciscocomenUStechtk365technologies_white_paper09186a0080094cb7shtml
Reference
L388Global ID
7ID
Known Mappings
-UDP Port
-TCP Port
88IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 13
BGPEIGRP
EXCHANGEexchangeNameCLI Keyword
Microsoft ExchangeFull Name
Exchange is a protocol that allows users to synchronize and connect to theirexchange server when the client is outside the organizations firewall Theunderlying protocol is RPC over HTTP
Description
httpsupportmicrosoftcomkb262986Reference
L749Global ID
49ID
Known Mappings
-UDP Port
135TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1014
BGPEXCHANGE
FASTTRACKfasttrackNameCLI Keyword
FastTrackFull Name
FastTrack is a file sharing client software that is based on peer-to-peer connectionFastTrack is used by multiple file sharing applications such as Kazaa GroksteriMesh andMorpheus Initialization Initial the connection with FastTrack serverover HTTP Search Searching for files in FastTrack server Download Downloadrequest from FastTracker server
Description
httpdeveloperberliosdeprojectsgift-fasttrackReference
L757Global ID
57ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 15
BGPFASTTRACK
FINGERfingerNameCLI Keyword
Finger ProtocolFull Name
The FingerName protocol provides an interface to the Name and Finger programsat several network sites These programs return a friendly human-oriented statusreport on either the system at the moment or a particular person in depth
Description
httpwwwietforgrfcrfc1288txtReference
L479Global ID
14ID
Known Mappings
79UDP Port
79TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1016
BGPFINGER
FTPftpNameCLI Keyword
File Transfer ProtocolFull Name
File Transfer Protocol (FTP) is used to transfer files between hosts over TCPnetworks and is based on client-server architecture An FTP server usually listenson port 21
Description
httpwwwietforgrfcrfc959txtReference
L421Global ID
2ID
Known Mappings
-UDP Port
21TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 17
BGPFTP
GNUTELLAgnutellaNameCLI Keyword
GnutellaFull Name
Gnutella ver2 is decentralized and open-source peer-to-peer file sharing protocolused by various clients such as BearShare Shareeza Morpheus etc Using aGnutella client files can be shared located and downloaded by another Gnutellaclient
Description
httprfc-gnutellasourceforgenetReference
L758Global ID
58ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1018
BGPGNUTELLA
GOPHERgopherNameCLI Keyword
GopherFull Name
Internet Gopher protocol is a protocol is a TCPIP application layer protocoldesigned for distributing searching and retrieving documents over the InternetThe protocol is based on a client-server architecture and usually uses TCP port70 as default
Description
httptoolsietforghtmlrfc1436Reference
L470Global ID
15ID
Known Mappings
70UDP Port
70TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 19
BGPGOPHER
GREgreNameCLI Keyword
Generic Route EncapsulationFull Name
Generic Routing Encapsulation (GRE) is a protocol used for encapsulation of anetwork layer over another The protocol encapsulates the packet and saves theprotocol type of the payload packet so the receivers know what network layerwas encapsulated and digests the packet respectively Usually the protocol usesIP port 47
Description
httptoolsietforghtmlrfc2784Reference
L347Global ID
5ID
Known Mappings
-UDP Port
-TCP Port
47IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1020
BGPGRE
H323h323NameCLI Keyword
H323Full Name
H323 is a recommendation from the ITU Telecommunication StandardizationSector (ITU-T) that defines the protocols to provide audio-visual communicationsessions on any packet network The H323 standard addresses call signaling andcontrol multimedia transport and control and bandwidth control for point-to-pointand multi-point conferences
Description
httpwwwh323forumorgReference
L764Global ID
64ID
Known Mappings
-UDP Port
110001100111002110031100411005110061100711008110091101011011110121101311TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 21
BGPH323
HTTPhttpNameCLI Keyword
HyperText Transfer ProtocolFull Name
Hypertext Transfer Protocol (HTTP) is a standard for communication betweenweb browsers and servers over the World Wide Web The protocol works in arequest-responsemanner over a client server computingmodel The server usuallylistens on port 80
Description
httpwwww3orgProtocolsrfc2616rfc2616htmlReference
L480Global ID
3ID
Known Mappings
-UDP Port
80TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1022
BGPHTTP
ICMPicmpNameCLI Keyword
Internet Control Message ProtocolFull Name
Internet Control Message Protocol (ICMP) messages are typically generated inresponse to errors in IP datagrams or for diagnostic or routing purposes ICMPerrors are always reported to the original source IP address of the originatingdatagram ICMP is IP protocol number 1 Traffic is classified only if its identifiedas ICMP but was not recognized as any other more granular classification suchas Ping
Description
httptoolsietforghtmlrfc792Reference
L31Global ID
6ID
Known Mappings
-UDP Port
-TCP Port
1IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 23
BGPICMP
IMAPimapNameCLI Keyword
Internet Message Access Protocol version 4Full Name
The Internet Message Acceess protocol allows users to acess their email serversand to receivesend emails The protocol simulates a local use when in-fact it isa connection to a server An IMAP server usually listens on port 143
Description
httptoolsietforghtmlrfc3501Reference
L4143Global ID
17ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1024
BGPIMAP
IPINIPipinipNameCLI Keyword
IP in IPFull Name
IP in IP tunneling is a protocol used to encapsulate IP headers to a different IPheader to share information between endpoints in different internet-networks(for example forwarding traffic from one intranet to another)
Description
httptoolsietforghtmlrfc1853Reference
L34Global ID
8ID
Known Mappings
-UDP Port
-TCP Port
4IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 25
BGPIPINIP
IPV6-ICMPipv6-icmpNameCLI Keyword
ICMP for IPv6Full Name
Internet Control Message Protocol version 6 (ICMPv6) is the implementation ofthe Internet Control Message Protocol (ICMP) for Internet Protocol version 6(IPv6) ICMPv6 is an integral part of IPv6 and performs error reporting diagnosticfunctions (eg ping) and a framework for extensions to implement futurechanges
Description
httptoolsietforghtmlrfc4443Reference
L358Global ID
812ID
Known Mappings
-UDP Port
-TCP Port
58IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1026
BGPIPV6-ICMP
IRCircNameCLI Keyword
Internet Relay ChatFull Name
Internet Relay Chat (IRC) protocol is used for chat messaging in real time It canbe used for conferencing or one-on-one chatting The protocol works onclient-server architecture with a distributed manner An IRC server usually listenson TCP port 194
Description
httpwwwirchelporgirchelprfcrfchtmlReference
L4194Global ID
19ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
httpUnderlying Protocols
NBAR2 Standard Protocol Pack 10 27
BGPIRC
KAZAA2kazaa2NameCLI Keyword
Kazaa2Full Name
Kazaa is an online music subscription service that is based on second generationpeer-to-peer technology FastTracker
Description
httpwwwkazaacomaboutReference
L759Global ID
59ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1028
BGPKAZAA2
KERBEROSkerberosNameCLI Keyword
KerberosFull Name
Kerberos is a network authentication protocol The protocol is used to verifyidentities over the internet using a trusted third party Extensions of the protocolalso use the exchange of cryptographic certification of a public key Usually theprotocol uses TCPUDP ports 88749 as default
Description
httpwwwietforgrfcrfc4120txtReference
L488Global ID
21ID
Known Mappings
88749UDP Port
88749TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 29
BGPKERBEROS
L2TPl2tpNameCLI Keyword
Layer 2 Tunneling ProtocolFull Name
Layer 2 Tunneling Protocol (L2TP) is a tunneling protocol used to support virtualprivate networks (VPNs) or as part of the delivery of services by ISPs It doesnot provide any encryption or confidentiality by itself it relies on an encryptionprotocol that it passes within the tunnel to provide privacy
Description
httptoolsietforghtmlrfc2661Reference
L4115Global ID
22ID
Known Mappings
1701UDP Port
1701TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1030
BGPL2TP
LDAPldapNameCLI Keyword
Lightweight Directory Access ProtocolFull Name
Lightweight Directory Access Protocol (LDAP) is a protocol designed to toaccess distributed directory services Typically it uses port 389 for TCP andUDP
Description
httptoolsietforghtmlrfc4510Reference
L4389Global ID
23ID
Known Mappings
389UDP Port
389TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 31
BGPLDAP
MGCPmgcpNameCLI Keyword
Media Gateway Control ProtocolFull Name
Media Gateway Control Protocol (MGCP) 10 is a protocol for the control ofVoice over IP (VoIP) calls by external call-control elements known as MediaGateway Controllers (MGCs) or Call Agents (CAs)
Description
httpwwwpacketizercomrfcrfc3435Reference
L762Global ID
62ID
Known Mappings
24272727UDP Port
242724282727TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1032
BGPMGCP
NETBIOSnetbiosNameCLI Keyword
Network Basic InputOutput SystemFull Name
Network Basic InputOutput System (NetBIOS) provides services related to thesession layer of the OSI model allowing applications on separate computers tocommunicate over a local area network As strictly an API NetBIOS is not anetworking protocol In modern networks NetBIOS normally runs over TCPIPvia the NetBIOS over TCPIP (NBT) protocol This results in each computer inthe network having both an IP address and a NetBIOS name corresponding to a(possibly different) host name
Description
httptoolsietforghtmlrfc1001Reference
L726Global ID
26ID
Known Mappings
137138UDP Port
137139TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 33
BGPNETBIOS
NETSHOWnetshowNameCLI Keyword
NetShowFull Name
Netshow is a Microsoft software designed to stream media over intranets andthe internet NetShow can transfer livemulticast and on-demand streamed audioillustrated audio and video Typically Netshow uses TCP port 1755 and UDPports between 1024-5000
Description
httpwwwmicrosoftcompresspasspress1997mar97nsbta2prmspxReference
L7426Global ID
53ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1034
BGPNETSHOW
NFSnfsNameCLI Keyword
Network File SystemFull Name
Network File System (NFS) is a distributed file system developed by SunMicrosystems Inc that allows users to access and modify files remotly as if itwas a local file The protocol is based on client server architecture and typicallyuses TCPUDP port 2049
Description
httpwwwietforgrfcrfc3530txtReference
L42049Global ID
27ID
Known Mappings
2049UDP Port
2049TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
NoUnderlying Protocols
NBAR2 Standard Protocol Pack 10 35
BGPNFS
NNTPnntpNameCLI Keyword
Network News Transfer ProtocolFull Name
Network News Transfer Protocol (NNTP) is an internet transfer protocol usedfor readingposting Usenet articles and transferring them between news serversUsually the TCP port is 119 while nntp over SSL TCPUDP port is 563
Description
httptoolsietforghtmlrfc3977Reference
L4119Global ID
28ID
Known Mappings
119UDP Port
119TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1036
BGPNNTP
NOTESnotesNameCLI Keyword
IBM Lotus NotesFull Name
IBM Lotus Notes is the client of a collaborative client-server platform IBMLotus Domino is the application server Lotus Notes provides integratedcollaboration functionality including email calendaring contacts managementto do tracking instant messaging an office productivity suite (IBM LotusSymphony) and access to other Lotus Domino applications and databases
Description
httpwww-01ibmcomsoftwarelotusnotesanddominoReference
L41352Global ID
30ID
Known Mappings
1352UDP Port
1352TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 37
BGPNOTES
NTPntpNameCLI Keyword
Network Time ProtocolFull Name
The Network Time Protocol is a protocol for synchronizing the system clocksof distributed computer systems over packet-switched variable-latency datanetworks Usually the UDP port used is 123
Description
httpwwweecisudeledu~millsntphtmlindexhtmlReference
L4123Global ID
31ID
Known Mappings
123UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1038
BGPNTP
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
NBAR2 Standard Protocol Pack 10vi
Contents
C H A P T E R 1Release Notes for NBAR2 Standard ProtocolPack 10
NBAR2 Standard Protocol Pack Overview
The Network Based Application Recognition (NBAR2) Standard Protocol Pack 10 is provided as the baseprotocol pack with an unlicensed Cisco image on a device The NBAR2 Standard Protocol Pack has limitedfeatures and functionality
Supported Platform
The NBAR2 Standard Protocol Pack 10 is supported on Cisco ASR 1000 Series Aggregation ServicesRouters
Additional References
Document TitleRelated Topic
Application Visibility and Control ConfigurationGuide
Application Visibility and Control
Classifying Network Traffic Using NBAR moduleClassifying Network Traffic Using NBAR
NBAR Protocol Pack moduleNBAR Protocol Pack
QoS NBAR Configuration GuideQoS NBAR Configuration Guide
NBAR2 Standard Protocol Pack 10 1
NBAR2 Standard Protocol Pack 102
Release Notes for NBAR2 Standard Protocol Pack 10
C H A P T E R 2BGP
bgpNameCLI Keyword
Border Gateway ProtocolFull Name
Border Gateway Protocol (BGP) is a protocol designed to share networkinformation (for example network reachability) between autonomous systems(AS) According to the information the BGP routers buildmodify their routingtables The protocol was designed to replace the Exterior Gateway Protocol(EGP) Usually the protocol uses TCPUDP ports 179 as default
Description
httptoolsietforghtmlrfc4274Reference
L4179Global ID
11ID
Known Mappings
179UDP Port
179TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NBAR2 Standard Protocol Pack 10 3
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
bull BITTORRENT page 6
bull CITRIX page 7
bull DHCP page 8
bull DIRECTCONNECT page 9
bull DNS page 10
bull EDONKEY page 11
bull EGP page 12
bull EIGRP page 13
bull EXCHANGE page 14
bull FASTTRACK page 15
bull FINGER page 16
bull FTP page 17
bull GNUTELLA page 18
bull GOPHER page 19
bull GRE page 20
bull H323 page 21
bull HTTP page 22
bull ICMP page 23
bull IMAP page 24
bull IPINIP page 25
bull IPV6-ICMP page 26
bull IRC page 27
bull KAZAA2 page 28
bull KERBEROS page 29
bull L2TP page 30
bull LDAP page 31
bull MGCP page 32
NBAR2 Standard Protocol Pack 104
BGP
bull NETBIOS page 33
bull NETSHOW page 34
bull NFS page 35
bull NNTP page 36
bull NOTES page 37
bull NTP page 38
bull OSPF page 39
bull POP3 page 40
bull PPTP page 41
bull PRINTER page 42
bull RIP page 43
bull RTCP page 44
bull RTP page 45
bull RTSP page 46
bull SAP page 47
bull SECURE-FTP page 48
bull SECURE-HTTP page 49
bull SECURE-IMAP page 50
bull SECURE-IRC page 51
bull SECURE-LDAP page 52
bull SECURE-NNTP page 53
bull SECURE-POP3 page 54
bull SECURE-TELNET page 55
bull SIP page 56
bull SKINNY page 57
bull SKYPE page 58
bull SMTP page 59
bull SNMP page 60
bull SOCKS page 61
bull SQLNET page 62
bull SQLSERVER page 63
bull SSH page 64
bull STREAMWORK page 65
NBAR2 Standard Protocol Pack 10 5
BGP
bull SUNRPC page 66
bull SYSLOG page 67
bull TELNET page 68
bull TFTP page 69
bull VDOLIVE page 70
bull WINMX page 71
BITTORRENTbittorrentNameCLI Keyword
BitTorrentFull Name
BitTorrent is a p2p file sharing protocol used for distributing files over theinternet It identifies content by URL and is designed to integrate seamlesslywith the web The BitTorrent protocol is based on a BitTorrent tracker (server)that initializes the connections between the clients (peers)
Description
httpjonasnitrodkbittorrentbittorrent-rfchtmlReference
L769Global ID
69ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NBAR2 Standard Protocol Pack 106
BGPBITTORRENT
NoEncrypted
NoTunnel
socksUnderlying Protocols
CITRIXcitrixNameCLI Keyword
CitrixFull Name
Citrix is an application that mediates users remotely to their corporate applicationsICA Independed Computing Architecture is a designated protocol for applicationserver system it is used for transferring data between clients and serversCGPCGP is a tunneling protocol the latest addition to the family of Citrix protocolAsof today it encapsulates ICA protocol but will be extended to other Citrix protocolsuch as RDP HTTPHTTPSIMA used for server-server communicationServer-Browser Used mainly a control connection which has PublishedApplication Name and triggers an ICA connection
Description
httpwwwcitrixcomsiteresourcesdynamicadditionalICA_Acceleration_0709apdf
Reference
L756Global ID
56ID
Known Mappings
1604UDP Port
1494251225132598TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NBAR2 Standard Protocol Pack 10 7
BGPCITRIX
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
DHCPdhcpNameCLI Keyword
Dynamic Host Configuration ProtocolFull Name
The Dynamic Host Configuration Protocol (DHCP) provides a framework forpassing configuration information to hosts on a TCPIP network The informationgiven by designated DHCP servers include IP address subnet mask and defaultgateway ADHCP server usually listens on UDP port 67 and DHCP client usuallylistens on UDP 68
Description
httpwwwietforgrfcrfc2131txtReference
L713Global ID
13ID
Known Mappings
6768UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NBAR2 Standard Protocol Pack 108
BGPDHCP
NoEncrypted
NoTunnel
-Underlying Protocols
DIRECTCONNECTdirectconnectNameCLI Keyword
Direct ConnectFull Name
Direct connect is a peer-to-peer file sharing protocol Clients connect to a mainhub that mediates them to other clients in order to download files The hubs holda database of clients and files and mediate the clients Once clients are connectedin a P2P manner they can download files and chat with one another
Description
httpwwwmetroactivecompapersmetro071201work-0128htmlReference
L770Global ID
70ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NBAR2 Standard Protocol Pack 10 9
BGPDIRECTCONNECT
NoTunnel
-Underlying Protocols
DNSdnsNameCLI Keyword
Domain Name SystemFull Name
Domain Name Server is a server that translates URLs into IP addresses basedon client queries It is based on client-server architecture
Description
httpswww1ietforgrfcrfc1035txtReference
L453Global ID
72ID
Known Mappings
53UDP Port
53TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1010
BGPDNS
EDONKEYedonkeyNameCLI Keyword
eDonkeyFull Name
eDonkey is a peer-to-peer file sharing addopted to share large files The networkis based on multiple decentralized servers each client must be connected to aserver to enter the network edonkey-static and eMule are also required to fullydetect or prevent this application traffic
Description
httpwebarchiveorgweb20010213200827wwwedonkey2000comoverviewhtml
Reference
L767Global ID
67ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 11
BGPEDONKEY
EGPegpNameCLI Keyword
Exterior Gateway ProtocolFull Name
Exterior Gateway Protocol (EGP) is a protocol used to convey networkinformation between neighboring gateways or Autonomic systems This waythe gateways acquire neighbors monitor neighbor reachability and exchangenet-reachability information in the form of Update messages EGP is IP protocolnumber 8
Description
httptoolsietforghtmlrfc904Reference
L38Global ID
4ID
Known Mappings
-UDP Port
-TCP Port
8IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1012
BGPEGP
EIGRPeigrpNameCLI Keyword
Interior Gateway Routing ProtocolFull Name
Enhanced Interior Gateway Routing Protocol (EIGRP) is an interior gatewayprotocol It is an advanced distance-vector routing protocol with optimizationsto minimize both the routing instability incurred after topology changes as wellas the use of bandwidth and processing power in the router The protocol isusually known as IP protocol 88 as default
Description
httpwwwciscocomenUStechtk365technologies_white_paper09186a0080094cb7shtml
Reference
L388Global ID
7ID
Known Mappings
-UDP Port
-TCP Port
88IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 13
BGPEIGRP
EXCHANGEexchangeNameCLI Keyword
Microsoft ExchangeFull Name
Exchange is a protocol that allows users to synchronize and connect to theirexchange server when the client is outside the organizations firewall Theunderlying protocol is RPC over HTTP
Description
httpsupportmicrosoftcomkb262986Reference
L749Global ID
49ID
Known Mappings
-UDP Port
135TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1014
BGPEXCHANGE
FASTTRACKfasttrackNameCLI Keyword
FastTrackFull Name
FastTrack is a file sharing client software that is based on peer-to-peer connectionFastTrack is used by multiple file sharing applications such as Kazaa GroksteriMesh andMorpheus Initialization Initial the connection with FastTrack serverover HTTP Search Searching for files in FastTrack server Download Downloadrequest from FastTracker server
Description
httpdeveloperberliosdeprojectsgift-fasttrackReference
L757Global ID
57ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 15
BGPFASTTRACK
FINGERfingerNameCLI Keyword
Finger ProtocolFull Name
The FingerName protocol provides an interface to the Name and Finger programsat several network sites These programs return a friendly human-oriented statusreport on either the system at the moment or a particular person in depth
Description
httpwwwietforgrfcrfc1288txtReference
L479Global ID
14ID
Known Mappings
79UDP Port
79TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1016
BGPFINGER
FTPftpNameCLI Keyword
File Transfer ProtocolFull Name
File Transfer Protocol (FTP) is used to transfer files between hosts over TCPnetworks and is based on client-server architecture An FTP server usually listenson port 21
Description
httpwwwietforgrfcrfc959txtReference
L421Global ID
2ID
Known Mappings
-UDP Port
21TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 17
BGPFTP
GNUTELLAgnutellaNameCLI Keyword
GnutellaFull Name
Gnutella ver2 is decentralized and open-source peer-to-peer file sharing protocolused by various clients such as BearShare Shareeza Morpheus etc Using aGnutella client files can be shared located and downloaded by another Gnutellaclient
Description
httprfc-gnutellasourceforgenetReference
L758Global ID
58ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1018
BGPGNUTELLA
GOPHERgopherNameCLI Keyword
GopherFull Name
Internet Gopher protocol is a protocol is a TCPIP application layer protocoldesigned for distributing searching and retrieving documents over the InternetThe protocol is based on a client-server architecture and usually uses TCP port70 as default
Description
httptoolsietforghtmlrfc1436Reference
L470Global ID
15ID
Known Mappings
70UDP Port
70TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 19
BGPGOPHER
GREgreNameCLI Keyword
Generic Route EncapsulationFull Name
Generic Routing Encapsulation (GRE) is a protocol used for encapsulation of anetwork layer over another The protocol encapsulates the packet and saves theprotocol type of the payload packet so the receivers know what network layerwas encapsulated and digests the packet respectively Usually the protocol usesIP port 47
Description
httptoolsietforghtmlrfc2784Reference
L347Global ID
5ID
Known Mappings
-UDP Port
-TCP Port
47IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1020
BGPGRE
H323h323NameCLI Keyword
H323Full Name
H323 is a recommendation from the ITU Telecommunication StandardizationSector (ITU-T) that defines the protocols to provide audio-visual communicationsessions on any packet network The H323 standard addresses call signaling andcontrol multimedia transport and control and bandwidth control for point-to-pointand multi-point conferences
Description
httpwwwh323forumorgReference
L764Global ID
64ID
Known Mappings
-UDP Port
110001100111002110031100411005110061100711008110091101011011110121101311TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 21
BGPH323
HTTPhttpNameCLI Keyword
HyperText Transfer ProtocolFull Name
Hypertext Transfer Protocol (HTTP) is a standard for communication betweenweb browsers and servers over the World Wide Web The protocol works in arequest-responsemanner over a client server computingmodel The server usuallylistens on port 80
Description
httpwwww3orgProtocolsrfc2616rfc2616htmlReference
L480Global ID
3ID
Known Mappings
-UDP Port
80TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1022
BGPHTTP
ICMPicmpNameCLI Keyword
Internet Control Message ProtocolFull Name
Internet Control Message Protocol (ICMP) messages are typically generated inresponse to errors in IP datagrams or for diagnostic or routing purposes ICMPerrors are always reported to the original source IP address of the originatingdatagram ICMP is IP protocol number 1 Traffic is classified only if its identifiedas ICMP but was not recognized as any other more granular classification suchas Ping
Description
httptoolsietforghtmlrfc792Reference
L31Global ID
6ID
Known Mappings
-UDP Port
-TCP Port
1IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 23
BGPICMP
IMAPimapNameCLI Keyword
Internet Message Access Protocol version 4Full Name
The Internet Message Acceess protocol allows users to acess their email serversand to receivesend emails The protocol simulates a local use when in-fact it isa connection to a server An IMAP server usually listens on port 143
Description
httptoolsietforghtmlrfc3501Reference
L4143Global ID
17ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1024
BGPIMAP
IPINIPipinipNameCLI Keyword
IP in IPFull Name
IP in IP tunneling is a protocol used to encapsulate IP headers to a different IPheader to share information between endpoints in different internet-networks(for example forwarding traffic from one intranet to another)
Description
httptoolsietforghtmlrfc1853Reference
L34Global ID
8ID
Known Mappings
-UDP Port
-TCP Port
4IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 25
BGPIPINIP
IPV6-ICMPipv6-icmpNameCLI Keyword
ICMP for IPv6Full Name
Internet Control Message Protocol version 6 (ICMPv6) is the implementation ofthe Internet Control Message Protocol (ICMP) for Internet Protocol version 6(IPv6) ICMPv6 is an integral part of IPv6 and performs error reporting diagnosticfunctions (eg ping) and a framework for extensions to implement futurechanges
Description
httptoolsietforghtmlrfc4443Reference
L358Global ID
812ID
Known Mappings
-UDP Port
-TCP Port
58IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1026
BGPIPV6-ICMP
IRCircNameCLI Keyword
Internet Relay ChatFull Name
Internet Relay Chat (IRC) protocol is used for chat messaging in real time It canbe used for conferencing or one-on-one chatting The protocol works onclient-server architecture with a distributed manner An IRC server usually listenson TCP port 194
Description
httpwwwirchelporgirchelprfcrfchtmlReference
L4194Global ID
19ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
httpUnderlying Protocols
NBAR2 Standard Protocol Pack 10 27
BGPIRC
KAZAA2kazaa2NameCLI Keyword
Kazaa2Full Name
Kazaa is an online music subscription service that is based on second generationpeer-to-peer technology FastTracker
Description
httpwwwkazaacomaboutReference
L759Global ID
59ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1028
BGPKAZAA2
KERBEROSkerberosNameCLI Keyword
KerberosFull Name
Kerberos is a network authentication protocol The protocol is used to verifyidentities over the internet using a trusted third party Extensions of the protocolalso use the exchange of cryptographic certification of a public key Usually theprotocol uses TCPUDP ports 88749 as default
Description
httpwwwietforgrfcrfc4120txtReference
L488Global ID
21ID
Known Mappings
88749UDP Port
88749TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 29
BGPKERBEROS
L2TPl2tpNameCLI Keyword
Layer 2 Tunneling ProtocolFull Name
Layer 2 Tunneling Protocol (L2TP) is a tunneling protocol used to support virtualprivate networks (VPNs) or as part of the delivery of services by ISPs It doesnot provide any encryption or confidentiality by itself it relies on an encryptionprotocol that it passes within the tunnel to provide privacy
Description
httptoolsietforghtmlrfc2661Reference
L4115Global ID
22ID
Known Mappings
1701UDP Port
1701TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1030
BGPL2TP
LDAPldapNameCLI Keyword
Lightweight Directory Access ProtocolFull Name
Lightweight Directory Access Protocol (LDAP) is a protocol designed to toaccess distributed directory services Typically it uses port 389 for TCP andUDP
Description
httptoolsietforghtmlrfc4510Reference
L4389Global ID
23ID
Known Mappings
389UDP Port
389TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 31
BGPLDAP
MGCPmgcpNameCLI Keyword
Media Gateway Control ProtocolFull Name
Media Gateway Control Protocol (MGCP) 10 is a protocol for the control ofVoice over IP (VoIP) calls by external call-control elements known as MediaGateway Controllers (MGCs) or Call Agents (CAs)
Description
httpwwwpacketizercomrfcrfc3435Reference
L762Global ID
62ID
Known Mappings
24272727UDP Port
242724282727TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1032
BGPMGCP
NETBIOSnetbiosNameCLI Keyword
Network Basic InputOutput SystemFull Name
Network Basic InputOutput System (NetBIOS) provides services related to thesession layer of the OSI model allowing applications on separate computers tocommunicate over a local area network As strictly an API NetBIOS is not anetworking protocol In modern networks NetBIOS normally runs over TCPIPvia the NetBIOS over TCPIP (NBT) protocol This results in each computer inthe network having both an IP address and a NetBIOS name corresponding to a(possibly different) host name
Description
httptoolsietforghtmlrfc1001Reference
L726Global ID
26ID
Known Mappings
137138UDP Port
137139TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 33
BGPNETBIOS
NETSHOWnetshowNameCLI Keyword
NetShowFull Name
Netshow is a Microsoft software designed to stream media over intranets andthe internet NetShow can transfer livemulticast and on-demand streamed audioillustrated audio and video Typically Netshow uses TCP port 1755 and UDPports between 1024-5000
Description
httpwwwmicrosoftcompresspasspress1997mar97nsbta2prmspxReference
L7426Global ID
53ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1034
BGPNETSHOW
NFSnfsNameCLI Keyword
Network File SystemFull Name
Network File System (NFS) is a distributed file system developed by SunMicrosystems Inc that allows users to access and modify files remotly as if itwas a local file The protocol is based on client server architecture and typicallyuses TCPUDP port 2049
Description
httpwwwietforgrfcrfc3530txtReference
L42049Global ID
27ID
Known Mappings
2049UDP Port
2049TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
NoUnderlying Protocols
NBAR2 Standard Protocol Pack 10 35
BGPNFS
NNTPnntpNameCLI Keyword
Network News Transfer ProtocolFull Name
Network News Transfer Protocol (NNTP) is an internet transfer protocol usedfor readingposting Usenet articles and transferring them between news serversUsually the TCP port is 119 while nntp over SSL TCPUDP port is 563
Description
httptoolsietforghtmlrfc3977Reference
L4119Global ID
28ID
Known Mappings
119UDP Port
119TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1036
BGPNNTP
NOTESnotesNameCLI Keyword
IBM Lotus NotesFull Name
IBM Lotus Notes is the client of a collaborative client-server platform IBMLotus Domino is the application server Lotus Notes provides integratedcollaboration functionality including email calendaring contacts managementto do tracking instant messaging an office productivity suite (IBM LotusSymphony) and access to other Lotus Domino applications and databases
Description
httpwww-01ibmcomsoftwarelotusnotesanddominoReference
L41352Global ID
30ID
Known Mappings
1352UDP Port
1352TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 37
BGPNOTES
NTPntpNameCLI Keyword
Network Time ProtocolFull Name
The Network Time Protocol is a protocol for synchronizing the system clocksof distributed computer systems over packet-switched variable-latency datanetworks Usually the UDP port used is 123
Description
httpwwweecisudeledu~millsntphtmlindexhtmlReference
L4123Global ID
31ID
Known Mappings
123UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1038
BGPNTP
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
C H A P T E R 1Release Notes for NBAR2 Standard ProtocolPack 10
NBAR2 Standard Protocol Pack Overview
The Network Based Application Recognition (NBAR2) Standard Protocol Pack 10 is provided as the baseprotocol pack with an unlicensed Cisco image on a device The NBAR2 Standard Protocol Pack has limitedfeatures and functionality
Supported Platform
The NBAR2 Standard Protocol Pack 10 is supported on Cisco ASR 1000 Series Aggregation ServicesRouters
Additional References
Document TitleRelated Topic
Application Visibility and Control ConfigurationGuide
Application Visibility and Control
Classifying Network Traffic Using NBAR moduleClassifying Network Traffic Using NBAR
NBAR Protocol Pack moduleNBAR Protocol Pack
QoS NBAR Configuration GuideQoS NBAR Configuration Guide
NBAR2 Standard Protocol Pack 10 1
NBAR2 Standard Protocol Pack 102
Release Notes for NBAR2 Standard Protocol Pack 10
C H A P T E R 2BGP
bgpNameCLI Keyword
Border Gateway ProtocolFull Name
Border Gateway Protocol (BGP) is a protocol designed to share networkinformation (for example network reachability) between autonomous systems(AS) According to the information the BGP routers buildmodify their routingtables The protocol was designed to replace the Exterior Gateway Protocol(EGP) Usually the protocol uses TCPUDP ports 179 as default
Description
httptoolsietforghtmlrfc4274Reference
L4179Global ID
11ID
Known Mappings
179UDP Port
179TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NBAR2 Standard Protocol Pack 10 3
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
bull BITTORRENT page 6
bull CITRIX page 7
bull DHCP page 8
bull DIRECTCONNECT page 9
bull DNS page 10
bull EDONKEY page 11
bull EGP page 12
bull EIGRP page 13
bull EXCHANGE page 14
bull FASTTRACK page 15
bull FINGER page 16
bull FTP page 17
bull GNUTELLA page 18
bull GOPHER page 19
bull GRE page 20
bull H323 page 21
bull HTTP page 22
bull ICMP page 23
bull IMAP page 24
bull IPINIP page 25
bull IPV6-ICMP page 26
bull IRC page 27
bull KAZAA2 page 28
bull KERBEROS page 29
bull L2TP page 30
bull LDAP page 31
bull MGCP page 32
NBAR2 Standard Protocol Pack 104
BGP
bull NETBIOS page 33
bull NETSHOW page 34
bull NFS page 35
bull NNTP page 36
bull NOTES page 37
bull NTP page 38
bull OSPF page 39
bull POP3 page 40
bull PPTP page 41
bull PRINTER page 42
bull RIP page 43
bull RTCP page 44
bull RTP page 45
bull RTSP page 46
bull SAP page 47
bull SECURE-FTP page 48
bull SECURE-HTTP page 49
bull SECURE-IMAP page 50
bull SECURE-IRC page 51
bull SECURE-LDAP page 52
bull SECURE-NNTP page 53
bull SECURE-POP3 page 54
bull SECURE-TELNET page 55
bull SIP page 56
bull SKINNY page 57
bull SKYPE page 58
bull SMTP page 59
bull SNMP page 60
bull SOCKS page 61
bull SQLNET page 62
bull SQLSERVER page 63
bull SSH page 64
bull STREAMWORK page 65
NBAR2 Standard Protocol Pack 10 5
BGP
bull SUNRPC page 66
bull SYSLOG page 67
bull TELNET page 68
bull TFTP page 69
bull VDOLIVE page 70
bull WINMX page 71
BITTORRENTbittorrentNameCLI Keyword
BitTorrentFull Name
BitTorrent is a p2p file sharing protocol used for distributing files over theinternet It identifies content by URL and is designed to integrate seamlesslywith the web The BitTorrent protocol is based on a BitTorrent tracker (server)that initializes the connections between the clients (peers)
Description
httpjonasnitrodkbittorrentbittorrent-rfchtmlReference
L769Global ID
69ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NBAR2 Standard Protocol Pack 106
BGPBITTORRENT
NoEncrypted
NoTunnel
socksUnderlying Protocols
CITRIXcitrixNameCLI Keyword
CitrixFull Name
Citrix is an application that mediates users remotely to their corporate applicationsICA Independed Computing Architecture is a designated protocol for applicationserver system it is used for transferring data between clients and serversCGPCGP is a tunneling protocol the latest addition to the family of Citrix protocolAsof today it encapsulates ICA protocol but will be extended to other Citrix protocolsuch as RDP HTTPHTTPSIMA used for server-server communicationServer-Browser Used mainly a control connection which has PublishedApplication Name and triggers an ICA connection
Description
httpwwwcitrixcomsiteresourcesdynamicadditionalICA_Acceleration_0709apdf
Reference
L756Global ID
56ID
Known Mappings
1604UDP Port
1494251225132598TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NBAR2 Standard Protocol Pack 10 7
BGPCITRIX
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
DHCPdhcpNameCLI Keyword
Dynamic Host Configuration ProtocolFull Name
The Dynamic Host Configuration Protocol (DHCP) provides a framework forpassing configuration information to hosts on a TCPIP network The informationgiven by designated DHCP servers include IP address subnet mask and defaultgateway ADHCP server usually listens on UDP port 67 and DHCP client usuallylistens on UDP 68
Description
httpwwwietforgrfcrfc2131txtReference
L713Global ID
13ID
Known Mappings
6768UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NBAR2 Standard Protocol Pack 108
BGPDHCP
NoEncrypted
NoTunnel
-Underlying Protocols
DIRECTCONNECTdirectconnectNameCLI Keyword
Direct ConnectFull Name
Direct connect is a peer-to-peer file sharing protocol Clients connect to a mainhub that mediates them to other clients in order to download files The hubs holda database of clients and files and mediate the clients Once clients are connectedin a P2P manner they can download files and chat with one another
Description
httpwwwmetroactivecompapersmetro071201work-0128htmlReference
L770Global ID
70ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NBAR2 Standard Protocol Pack 10 9
BGPDIRECTCONNECT
NoTunnel
-Underlying Protocols
DNSdnsNameCLI Keyword
Domain Name SystemFull Name
Domain Name Server is a server that translates URLs into IP addresses basedon client queries It is based on client-server architecture
Description
httpswww1ietforgrfcrfc1035txtReference
L453Global ID
72ID
Known Mappings
53UDP Port
53TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1010
BGPDNS
EDONKEYedonkeyNameCLI Keyword
eDonkeyFull Name
eDonkey is a peer-to-peer file sharing addopted to share large files The networkis based on multiple decentralized servers each client must be connected to aserver to enter the network edonkey-static and eMule are also required to fullydetect or prevent this application traffic
Description
httpwebarchiveorgweb20010213200827wwwedonkey2000comoverviewhtml
Reference
L767Global ID
67ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 11
BGPEDONKEY
EGPegpNameCLI Keyword
Exterior Gateway ProtocolFull Name
Exterior Gateway Protocol (EGP) is a protocol used to convey networkinformation between neighboring gateways or Autonomic systems This waythe gateways acquire neighbors monitor neighbor reachability and exchangenet-reachability information in the form of Update messages EGP is IP protocolnumber 8
Description
httptoolsietforghtmlrfc904Reference
L38Global ID
4ID
Known Mappings
-UDP Port
-TCP Port
8IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1012
BGPEGP
EIGRPeigrpNameCLI Keyword
Interior Gateway Routing ProtocolFull Name
Enhanced Interior Gateway Routing Protocol (EIGRP) is an interior gatewayprotocol It is an advanced distance-vector routing protocol with optimizationsto minimize both the routing instability incurred after topology changes as wellas the use of bandwidth and processing power in the router The protocol isusually known as IP protocol 88 as default
Description
httpwwwciscocomenUStechtk365technologies_white_paper09186a0080094cb7shtml
Reference
L388Global ID
7ID
Known Mappings
-UDP Port
-TCP Port
88IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 13
BGPEIGRP
EXCHANGEexchangeNameCLI Keyword
Microsoft ExchangeFull Name
Exchange is a protocol that allows users to synchronize and connect to theirexchange server when the client is outside the organizations firewall Theunderlying protocol is RPC over HTTP
Description
httpsupportmicrosoftcomkb262986Reference
L749Global ID
49ID
Known Mappings
-UDP Port
135TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1014
BGPEXCHANGE
FASTTRACKfasttrackNameCLI Keyword
FastTrackFull Name
FastTrack is a file sharing client software that is based on peer-to-peer connectionFastTrack is used by multiple file sharing applications such as Kazaa GroksteriMesh andMorpheus Initialization Initial the connection with FastTrack serverover HTTP Search Searching for files in FastTrack server Download Downloadrequest from FastTracker server
Description
httpdeveloperberliosdeprojectsgift-fasttrackReference
L757Global ID
57ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 15
BGPFASTTRACK
FINGERfingerNameCLI Keyword
Finger ProtocolFull Name
The FingerName protocol provides an interface to the Name and Finger programsat several network sites These programs return a friendly human-oriented statusreport on either the system at the moment or a particular person in depth
Description
httpwwwietforgrfcrfc1288txtReference
L479Global ID
14ID
Known Mappings
79UDP Port
79TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1016
BGPFINGER
FTPftpNameCLI Keyword
File Transfer ProtocolFull Name
File Transfer Protocol (FTP) is used to transfer files between hosts over TCPnetworks and is based on client-server architecture An FTP server usually listenson port 21
Description
httpwwwietforgrfcrfc959txtReference
L421Global ID
2ID
Known Mappings
-UDP Port
21TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 17
BGPFTP
GNUTELLAgnutellaNameCLI Keyword
GnutellaFull Name
Gnutella ver2 is decentralized and open-source peer-to-peer file sharing protocolused by various clients such as BearShare Shareeza Morpheus etc Using aGnutella client files can be shared located and downloaded by another Gnutellaclient
Description
httprfc-gnutellasourceforgenetReference
L758Global ID
58ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1018
BGPGNUTELLA
GOPHERgopherNameCLI Keyword
GopherFull Name
Internet Gopher protocol is a protocol is a TCPIP application layer protocoldesigned for distributing searching and retrieving documents over the InternetThe protocol is based on a client-server architecture and usually uses TCP port70 as default
Description
httptoolsietforghtmlrfc1436Reference
L470Global ID
15ID
Known Mappings
70UDP Port
70TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 19
BGPGOPHER
GREgreNameCLI Keyword
Generic Route EncapsulationFull Name
Generic Routing Encapsulation (GRE) is a protocol used for encapsulation of anetwork layer over another The protocol encapsulates the packet and saves theprotocol type of the payload packet so the receivers know what network layerwas encapsulated and digests the packet respectively Usually the protocol usesIP port 47
Description
httptoolsietforghtmlrfc2784Reference
L347Global ID
5ID
Known Mappings
-UDP Port
-TCP Port
47IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1020
BGPGRE
H323h323NameCLI Keyword
H323Full Name
H323 is a recommendation from the ITU Telecommunication StandardizationSector (ITU-T) that defines the protocols to provide audio-visual communicationsessions on any packet network The H323 standard addresses call signaling andcontrol multimedia transport and control and bandwidth control for point-to-pointand multi-point conferences
Description
httpwwwh323forumorgReference
L764Global ID
64ID
Known Mappings
-UDP Port
110001100111002110031100411005110061100711008110091101011011110121101311TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 21
BGPH323
HTTPhttpNameCLI Keyword
HyperText Transfer ProtocolFull Name
Hypertext Transfer Protocol (HTTP) is a standard for communication betweenweb browsers and servers over the World Wide Web The protocol works in arequest-responsemanner over a client server computingmodel The server usuallylistens on port 80
Description
httpwwww3orgProtocolsrfc2616rfc2616htmlReference
L480Global ID
3ID
Known Mappings
-UDP Port
80TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1022
BGPHTTP
ICMPicmpNameCLI Keyword
Internet Control Message ProtocolFull Name
Internet Control Message Protocol (ICMP) messages are typically generated inresponse to errors in IP datagrams or for diagnostic or routing purposes ICMPerrors are always reported to the original source IP address of the originatingdatagram ICMP is IP protocol number 1 Traffic is classified only if its identifiedas ICMP but was not recognized as any other more granular classification suchas Ping
Description
httptoolsietforghtmlrfc792Reference
L31Global ID
6ID
Known Mappings
-UDP Port
-TCP Port
1IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 23
BGPICMP
IMAPimapNameCLI Keyword
Internet Message Access Protocol version 4Full Name
The Internet Message Acceess protocol allows users to acess their email serversand to receivesend emails The protocol simulates a local use when in-fact it isa connection to a server An IMAP server usually listens on port 143
Description
httptoolsietforghtmlrfc3501Reference
L4143Global ID
17ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1024
BGPIMAP
IPINIPipinipNameCLI Keyword
IP in IPFull Name
IP in IP tunneling is a protocol used to encapsulate IP headers to a different IPheader to share information between endpoints in different internet-networks(for example forwarding traffic from one intranet to another)
Description
httptoolsietforghtmlrfc1853Reference
L34Global ID
8ID
Known Mappings
-UDP Port
-TCP Port
4IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 25
BGPIPINIP
IPV6-ICMPipv6-icmpNameCLI Keyword
ICMP for IPv6Full Name
Internet Control Message Protocol version 6 (ICMPv6) is the implementation ofthe Internet Control Message Protocol (ICMP) for Internet Protocol version 6(IPv6) ICMPv6 is an integral part of IPv6 and performs error reporting diagnosticfunctions (eg ping) and a framework for extensions to implement futurechanges
Description
httptoolsietforghtmlrfc4443Reference
L358Global ID
812ID
Known Mappings
-UDP Port
-TCP Port
58IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1026
BGPIPV6-ICMP
IRCircNameCLI Keyword
Internet Relay ChatFull Name
Internet Relay Chat (IRC) protocol is used for chat messaging in real time It canbe used for conferencing or one-on-one chatting The protocol works onclient-server architecture with a distributed manner An IRC server usually listenson TCP port 194
Description
httpwwwirchelporgirchelprfcrfchtmlReference
L4194Global ID
19ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
httpUnderlying Protocols
NBAR2 Standard Protocol Pack 10 27
BGPIRC
KAZAA2kazaa2NameCLI Keyword
Kazaa2Full Name
Kazaa is an online music subscription service that is based on second generationpeer-to-peer technology FastTracker
Description
httpwwwkazaacomaboutReference
L759Global ID
59ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1028
BGPKAZAA2
KERBEROSkerberosNameCLI Keyword
KerberosFull Name
Kerberos is a network authentication protocol The protocol is used to verifyidentities over the internet using a trusted third party Extensions of the protocolalso use the exchange of cryptographic certification of a public key Usually theprotocol uses TCPUDP ports 88749 as default
Description
httpwwwietforgrfcrfc4120txtReference
L488Global ID
21ID
Known Mappings
88749UDP Port
88749TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 29
BGPKERBEROS
L2TPl2tpNameCLI Keyword
Layer 2 Tunneling ProtocolFull Name
Layer 2 Tunneling Protocol (L2TP) is a tunneling protocol used to support virtualprivate networks (VPNs) or as part of the delivery of services by ISPs It doesnot provide any encryption or confidentiality by itself it relies on an encryptionprotocol that it passes within the tunnel to provide privacy
Description
httptoolsietforghtmlrfc2661Reference
L4115Global ID
22ID
Known Mappings
1701UDP Port
1701TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1030
BGPL2TP
LDAPldapNameCLI Keyword
Lightweight Directory Access ProtocolFull Name
Lightweight Directory Access Protocol (LDAP) is a protocol designed to toaccess distributed directory services Typically it uses port 389 for TCP andUDP
Description
httptoolsietforghtmlrfc4510Reference
L4389Global ID
23ID
Known Mappings
389UDP Port
389TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 31
BGPLDAP
MGCPmgcpNameCLI Keyword
Media Gateway Control ProtocolFull Name
Media Gateway Control Protocol (MGCP) 10 is a protocol for the control ofVoice over IP (VoIP) calls by external call-control elements known as MediaGateway Controllers (MGCs) or Call Agents (CAs)
Description
httpwwwpacketizercomrfcrfc3435Reference
L762Global ID
62ID
Known Mappings
24272727UDP Port
242724282727TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1032
BGPMGCP
NETBIOSnetbiosNameCLI Keyword
Network Basic InputOutput SystemFull Name
Network Basic InputOutput System (NetBIOS) provides services related to thesession layer of the OSI model allowing applications on separate computers tocommunicate over a local area network As strictly an API NetBIOS is not anetworking protocol In modern networks NetBIOS normally runs over TCPIPvia the NetBIOS over TCPIP (NBT) protocol This results in each computer inthe network having both an IP address and a NetBIOS name corresponding to a(possibly different) host name
Description
httptoolsietforghtmlrfc1001Reference
L726Global ID
26ID
Known Mappings
137138UDP Port
137139TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 33
BGPNETBIOS
NETSHOWnetshowNameCLI Keyword
NetShowFull Name
Netshow is a Microsoft software designed to stream media over intranets andthe internet NetShow can transfer livemulticast and on-demand streamed audioillustrated audio and video Typically Netshow uses TCP port 1755 and UDPports between 1024-5000
Description
httpwwwmicrosoftcompresspasspress1997mar97nsbta2prmspxReference
L7426Global ID
53ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1034
BGPNETSHOW
NFSnfsNameCLI Keyword
Network File SystemFull Name
Network File System (NFS) is a distributed file system developed by SunMicrosystems Inc that allows users to access and modify files remotly as if itwas a local file The protocol is based on client server architecture and typicallyuses TCPUDP port 2049
Description
httpwwwietforgrfcrfc3530txtReference
L42049Global ID
27ID
Known Mappings
2049UDP Port
2049TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
NoUnderlying Protocols
NBAR2 Standard Protocol Pack 10 35
BGPNFS
NNTPnntpNameCLI Keyword
Network News Transfer ProtocolFull Name
Network News Transfer Protocol (NNTP) is an internet transfer protocol usedfor readingposting Usenet articles and transferring them between news serversUsually the TCP port is 119 while nntp over SSL TCPUDP port is 563
Description
httptoolsietforghtmlrfc3977Reference
L4119Global ID
28ID
Known Mappings
119UDP Port
119TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1036
BGPNNTP
NOTESnotesNameCLI Keyword
IBM Lotus NotesFull Name
IBM Lotus Notes is the client of a collaborative client-server platform IBMLotus Domino is the application server Lotus Notes provides integratedcollaboration functionality including email calendaring contacts managementto do tracking instant messaging an office productivity suite (IBM LotusSymphony) and access to other Lotus Domino applications and databases
Description
httpwww-01ibmcomsoftwarelotusnotesanddominoReference
L41352Global ID
30ID
Known Mappings
1352UDP Port
1352TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 37
BGPNOTES
NTPntpNameCLI Keyword
Network Time ProtocolFull Name
The Network Time Protocol is a protocol for synchronizing the system clocksof distributed computer systems over packet-switched variable-latency datanetworks Usually the UDP port used is 123
Description
httpwwweecisudeledu~millsntphtmlindexhtmlReference
L4123Global ID
31ID
Known Mappings
123UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1038
BGPNTP
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
NBAR2 Standard Protocol Pack 102
Release Notes for NBAR2 Standard Protocol Pack 10
C H A P T E R 2BGP
bgpNameCLI Keyword
Border Gateway ProtocolFull Name
Border Gateway Protocol (BGP) is a protocol designed to share networkinformation (for example network reachability) between autonomous systems(AS) According to the information the BGP routers buildmodify their routingtables The protocol was designed to replace the Exterior Gateway Protocol(EGP) Usually the protocol uses TCPUDP ports 179 as default
Description
httptoolsietforghtmlrfc4274Reference
L4179Global ID
11ID
Known Mappings
179UDP Port
179TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NBAR2 Standard Protocol Pack 10 3
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
bull BITTORRENT page 6
bull CITRIX page 7
bull DHCP page 8
bull DIRECTCONNECT page 9
bull DNS page 10
bull EDONKEY page 11
bull EGP page 12
bull EIGRP page 13
bull EXCHANGE page 14
bull FASTTRACK page 15
bull FINGER page 16
bull FTP page 17
bull GNUTELLA page 18
bull GOPHER page 19
bull GRE page 20
bull H323 page 21
bull HTTP page 22
bull ICMP page 23
bull IMAP page 24
bull IPINIP page 25
bull IPV6-ICMP page 26
bull IRC page 27
bull KAZAA2 page 28
bull KERBEROS page 29
bull L2TP page 30
bull LDAP page 31
bull MGCP page 32
NBAR2 Standard Protocol Pack 104
BGP
bull NETBIOS page 33
bull NETSHOW page 34
bull NFS page 35
bull NNTP page 36
bull NOTES page 37
bull NTP page 38
bull OSPF page 39
bull POP3 page 40
bull PPTP page 41
bull PRINTER page 42
bull RIP page 43
bull RTCP page 44
bull RTP page 45
bull RTSP page 46
bull SAP page 47
bull SECURE-FTP page 48
bull SECURE-HTTP page 49
bull SECURE-IMAP page 50
bull SECURE-IRC page 51
bull SECURE-LDAP page 52
bull SECURE-NNTP page 53
bull SECURE-POP3 page 54
bull SECURE-TELNET page 55
bull SIP page 56
bull SKINNY page 57
bull SKYPE page 58
bull SMTP page 59
bull SNMP page 60
bull SOCKS page 61
bull SQLNET page 62
bull SQLSERVER page 63
bull SSH page 64
bull STREAMWORK page 65
NBAR2 Standard Protocol Pack 10 5
BGP
bull SUNRPC page 66
bull SYSLOG page 67
bull TELNET page 68
bull TFTP page 69
bull VDOLIVE page 70
bull WINMX page 71
BITTORRENTbittorrentNameCLI Keyword
BitTorrentFull Name
BitTorrent is a p2p file sharing protocol used for distributing files over theinternet It identifies content by URL and is designed to integrate seamlesslywith the web The BitTorrent protocol is based on a BitTorrent tracker (server)that initializes the connections between the clients (peers)
Description
httpjonasnitrodkbittorrentbittorrent-rfchtmlReference
L769Global ID
69ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NBAR2 Standard Protocol Pack 106
BGPBITTORRENT
NoEncrypted
NoTunnel
socksUnderlying Protocols
CITRIXcitrixNameCLI Keyword
CitrixFull Name
Citrix is an application that mediates users remotely to their corporate applicationsICA Independed Computing Architecture is a designated protocol for applicationserver system it is used for transferring data between clients and serversCGPCGP is a tunneling protocol the latest addition to the family of Citrix protocolAsof today it encapsulates ICA protocol but will be extended to other Citrix protocolsuch as RDP HTTPHTTPSIMA used for server-server communicationServer-Browser Used mainly a control connection which has PublishedApplication Name and triggers an ICA connection
Description
httpwwwcitrixcomsiteresourcesdynamicadditionalICA_Acceleration_0709apdf
Reference
L756Global ID
56ID
Known Mappings
1604UDP Port
1494251225132598TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NBAR2 Standard Protocol Pack 10 7
BGPCITRIX
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
DHCPdhcpNameCLI Keyword
Dynamic Host Configuration ProtocolFull Name
The Dynamic Host Configuration Protocol (DHCP) provides a framework forpassing configuration information to hosts on a TCPIP network The informationgiven by designated DHCP servers include IP address subnet mask and defaultgateway ADHCP server usually listens on UDP port 67 and DHCP client usuallylistens on UDP 68
Description
httpwwwietforgrfcrfc2131txtReference
L713Global ID
13ID
Known Mappings
6768UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NBAR2 Standard Protocol Pack 108
BGPDHCP
NoEncrypted
NoTunnel
-Underlying Protocols
DIRECTCONNECTdirectconnectNameCLI Keyword
Direct ConnectFull Name
Direct connect is a peer-to-peer file sharing protocol Clients connect to a mainhub that mediates them to other clients in order to download files The hubs holda database of clients and files and mediate the clients Once clients are connectedin a P2P manner they can download files and chat with one another
Description
httpwwwmetroactivecompapersmetro071201work-0128htmlReference
L770Global ID
70ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NBAR2 Standard Protocol Pack 10 9
BGPDIRECTCONNECT
NoTunnel
-Underlying Protocols
DNSdnsNameCLI Keyword
Domain Name SystemFull Name
Domain Name Server is a server that translates URLs into IP addresses basedon client queries It is based on client-server architecture
Description
httpswww1ietforgrfcrfc1035txtReference
L453Global ID
72ID
Known Mappings
53UDP Port
53TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1010
BGPDNS
EDONKEYedonkeyNameCLI Keyword
eDonkeyFull Name
eDonkey is a peer-to-peer file sharing addopted to share large files The networkis based on multiple decentralized servers each client must be connected to aserver to enter the network edonkey-static and eMule are also required to fullydetect or prevent this application traffic
Description
httpwebarchiveorgweb20010213200827wwwedonkey2000comoverviewhtml
Reference
L767Global ID
67ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 11
BGPEDONKEY
EGPegpNameCLI Keyword
Exterior Gateway ProtocolFull Name
Exterior Gateway Protocol (EGP) is a protocol used to convey networkinformation between neighboring gateways or Autonomic systems This waythe gateways acquire neighbors monitor neighbor reachability and exchangenet-reachability information in the form of Update messages EGP is IP protocolnumber 8
Description
httptoolsietforghtmlrfc904Reference
L38Global ID
4ID
Known Mappings
-UDP Port
-TCP Port
8IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1012
BGPEGP
EIGRPeigrpNameCLI Keyword
Interior Gateway Routing ProtocolFull Name
Enhanced Interior Gateway Routing Protocol (EIGRP) is an interior gatewayprotocol It is an advanced distance-vector routing protocol with optimizationsto minimize both the routing instability incurred after topology changes as wellas the use of bandwidth and processing power in the router The protocol isusually known as IP protocol 88 as default
Description
httpwwwciscocomenUStechtk365technologies_white_paper09186a0080094cb7shtml
Reference
L388Global ID
7ID
Known Mappings
-UDP Port
-TCP Port
88IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 13
BGPEIGRP
EXCHANGEexchangeNameCLI Keyword
Microsoft ExchangeFull Name
Exchange is a protocol that allows users to synchronize and connect to theirexchange server when the client is outside the organizations firewall Theunderlying protocol is RPC over HTTP
Description
httpsupportmicrosoftcomkb262986Reference
L749Global ID
49ID
Known Mappings
-UDP Port
135TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1014
BGPEXCHANGE
FASTTRACKfasttrackNameCLI Keyword
FastTrackFull Name
FastTrack is a file sharing client software that is based on peer-to-peer connectionFastTrack is used by multiple file sharing applications such as Kazaa GroksteriMesh andMorpheus Initialization Initial the connection with FastTrack serverover HTTP Search Searching for files in FastTrack server Download Downloadrequest from FastTracker server
Description
httpdeveloperberliosdeprojectsgift-fasttrackReference
L757Global ID
57ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 15
BGPFASTTRACK
FINGERfingerNameCLI Keyword
Finger ProtocolFull Name
The FingerName protocol provides an interface to the Name and Finger programsat several network sites These programs return a friendly human-oriented statusreport on either the system at the moment or a particular person in depth
Description
httpwwwietforgrfcrfc1288txtReference
L479Global ID
14ID
Known Mappings
79UDP Port
79TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1016
BGPFINGER
FTPftpNameCLI Keyword
File Transfer ProtocolFull Name
File Transfer Protocol (FTP) is used to transfer files between hosts over TCPnetworks and is based on client-server architecture An FTP server usually listenson port 21
Description
httpwwwietforgrfcrfc959txtReference
L421Global ID
2ID
Known Mappings
-UDP Port
21TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 17
BGPFTP
GNUTELLAgnutellaNameCLI Keyword
GnutellaFull Name
Gnutella ver2 is decentralized and open-source peer-to-peer file sharing protocolused by various clients such as BearShare Shareeza Morpheus etc Using aGnutella client files can be shared located and downloaded by another Gnutellaclient
Description
httprfc-gnutellasourceforgenetReference
L758Global ID
58ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1018
BGPGNUTELLA
GOPHERgopherNameCLI Keyword
GopherFull Name
Internet Gopher protocol is a protocol is a TCPIP application layer protocoldesigned for distributing searching and retrieving documents over the InternetThe protocol is based on a client-server architecture and usually uses TCP port70 as default
Description
httptoolsietforghtmlrfc1436Reference
L470Global ID
15ID
Known Mappings
70UDP Port
70TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 19
BGPGOPHER
GREgreNameCLI Keyword
Generic Route EncapsulationFull Name
Generic Routing Encapsulation (GRE) is a protocol used for encapsulation of anetwork layer over another The protocol encapsulates the packet and saves theprotocol type of the payload packet so the receivers know what network layerwas encapsulated and digests the packet respectively Usually the protocol usesIP port 47
Description
httptoolsietforghtmlrfc2784Reference
L347Global ID
5ID
Known Mappings
-UDP Port
-TCP Port
47IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1020
BGPGRE
H323h323NameCLI Keyword
H323Full Name
H323 is a recommendation from the ITU Telecommunication StandardizationSector (ITU-T) that defines the protocols to provide audio-visual communicationsessions on any packet network The H323 standard addresses call signaling andcontrol multimedia transport and control and bandwidth control for point-to-pointand multi-point conferences
Description
httpwwwh323forumorgReference
L764Global ID
64ID
Known Mappings
-UDP Port
110001100111002110031100411005110061100711008110091101011011110121101311TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 21
BGPH323
HTTPhttpNameCLI Keyword
HyperText Transfer ProtocolFull Name
Hypertext Transfer Protocol (HTTP) is a standard for communication betweenweb browsers and servers over the World Wide Web The protocol works in arequest-responsemanner over a client server computingmodel The server usuallylistens on port 80
Description
httpwwww3orgProtocolsrfc2616rfc2616htmlReference
L480Global ID
3ID
Known Mappings
-UDP Port
80TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1022
BGPHTTP
ICMPicmpNameCLI Keyword
Internet Control Message ProtocolFull Name
Internet Control Message Protocol (ICMP) messages are typically generated inresponse to errors in IP datagrams or for diagnostic or routing purposes ICMPerrors are always reported to the original source IP address of the originatingdatagram ICMP is IP protocol number 1 Traffic is classified only if its identifiedas ICMP but was not recognized as any other more granular classification suchas Ping
Description
httptoolsietforghtmlrfc792Reference
L31Global ID
6ID
Known Mappings
-UDP Port
-TCP Port
1IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 23
BGPICMP
IMAPimapNameCLI Keyword
Internet Message Access Protocol version 4Full Name
The Internet Message Acceess protocol allows users to acess their email serversand to receivesend emails The protocol simulates a local use when in-fact it isa connection to a server An IMAP server usually listens on port 143
Description
httptoolsietforghtmlrfc3501Reference
L4143Global ID
17ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1024
BGPIMAP
IPINIPipinipNameCLI Keyword
IP in IPFull Name
IP in IP tunneling is a protocol used to encapsulate IP headers to a different IPheader to share information between endpoints in different internet-networks(for example forwarding traffic from one intranet to another)
Description
httptoolsietforghtmlrfc1853Reference
L34Global ID
8ID
Known Mappings
-UDP Port
-TCP Port
4IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 25
BGPIPINIP
IPV6-ICMPipv6-icmpNameCLI Keyword
ICMP for IPv6Full Name
Internet Control Message Protocol version 6 (ICMPv6) is the implementation ofthe Internet Control Message Protocol (ICMP) for Internet Protocol version 6(IPv6) ICMPv6 is an integral part of IPv6 and performs error reporting diagnosticfunctions (eg ping) and a framework for extensions to implement futurechanges
Description
httptoolsietforghtmlrfc4443Reference
L358Global ID
812ID
Known Mappings
-UDP Port
-TCP Port
58IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1026
BGPIPV6-ICMP
IRCircNameCLI Keyword
Internet Relay ChatFull Name
Internet Relay Chat (IRC) protocol is used for chat messaging in real time It canbe used for conferencing or one-on-one chatting The protocol works onclient-server architecture with a distributed manner An IRC server usually listenson TCP port 194
Description
httpwwwirchelporgirchelprfcrfchtmlReference
L4194Global ID
19ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
httpUnderlying Protocols
NBAR2 Standard Protocol Pack 10 27
BGPIRC
KAZAA2kazaa2NameCLI Keyword
Kazaa2Full Name
Kazaa is an online music subscription service that is based on second generationpeer-to-peer technology FastTracker
Description
httpwwwkazaacomaboutReference
L759Global ID
59ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1028
BGPKAZAA2
KERBEROSkerberosNameCLI Keyword
KerberosFull Name
Kerberos is a network authentication protocol The protocol is used to verifyidentities over the internet using a trusted third party Extensions of the protocolalso use the exchange of cryptographic certification of a public key Usually theprotocol uses TCPUDP ports 88749 as default
Description
httpwwwietforgrfcrfc4120txtReference
L488Global ID
21ID
Known Mappings
88749UDP Port
88749TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 29
BGPKERBEROS
L2TPl2tpNameCLI Keyword
Layer 2 Tunneling ProtocolFull Name
Layer 2 Tunneling Protocol (L2TP) is a tunneling protocol used to support virtualprivate networks (VPNs) or as part of the delivery of services by ISPs It doesnot provide any encryption or confidentiality by itself it relies on an encryptionprotocol that it passes within the tunnel to provide privacy
Description
httptoolsietforghtmlrfc2661Reference
L4115Global ID
22ID
Known Mappings
1701UDP Port
1701TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1030
BGPL2TP
LDAPldapNameCLI Keyword
Lightweight Directory Access ProtocolFull Name
Lightweight Directory Access Protocol (LDAP) is a protocol designed to toaccess distributed directory services Typically it uses port 389 for TCP andUDP
Description
httptoolsietforghtmlrfc4510Reference
L4389Global ID
23ID
Known Mappings
389UDP Port
389TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 31
BGPLDAP
MGCPmgcpNameCLI Keyword
Media Gateway Control ProtocolFull Name
Media Gateway Control Protocol (MGCP) 10 is a protocol for the control ofVoice over IP (VoIP) calls by external call-control elements known as MediaGateway Controllers (MGCs) or Call Agents (CAs)
Description
httpwwwpacketizercomrfcrfc3435Reference
L762Global ID
62ID
Known Mappings
24272727UDP Port
242724282727TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1032
BGPMGCP
NETBIOSnetbiosNameCLI Keyword
Network Basic InputOutput SystemFull Name
Network Basic InputOutput System (NetBIOS) provides services related to thesession layer of the OSI model allowing applications on separate computers tocommunicate over a local area network As strictly an API NetBIOS is not anetworking protocol In modern networks NetBIOS normally runs over TCPIPvia the NetBIOS over TCPIP (NBT) protocol This results in each computer inthe network having both an IP address and a NetBIOS name corresponding to a(possibly different) host name
Description
httptoolsietforghtmlrfc1001Reference
L726Global ID
26ID
Known Mappings
137138UDP Port
137139TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 33
BGPNETBIOS
NETSHOWnetshowNameCLI Keyword
NetShowFull Name
Netshow is a Microsoft software designed to stream media over intranets andthe internet NetShow can transfer livemulticast and on-demand streamed audioillustrated audio and video Typically Netshow uses TCP port 1755 and UDPports between 1024-5000
Description
httpwwwmicrosoftcompresspasspress1997mar97nsbta2prmspxReference
L7426Global ID
53ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1034
BGPNETSHOW
NFSnfsNameCLI Keyword
Network File SystemFull Name
Network File System (NFS) is a distributed file system developed by SunMicrosystems Inc that allows users to access and modify files remotly as if itwas a local file The protocol is based on client server architecture and typicallyuses TCPUDP port 2049
Description
httpwwwietforgrfcrfc3530txtReference
L42049Global ID
27ID
Known Mappings
2049UDP Port
2049TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
NoUnderlying Protocols
NBAR2 Standard Protocol Pack 10 35
BGPNFS
NNTPnntpNameCLI Keyword
Network News Transfer ProtocolFull Name
Network News Transfer Protocol (NNTP) is an internet transfer protocol usedfor readingposting Usenet articles and transferring them between news serversUsually the TCP port is 119 while nntp over SSL TCPUDP port is 563
Description
httptoolsietforghtmlrfc3977Reference
L4119Global ID
28ID
Known Mappings
119UDP Port
119TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1036
BGPNNTP
NOTESnotesNameCLI Keyword
IBM Lotus NotesFull Name
IBM Lotus Notes is the client of a collaborative client-server platform IBMLotus Domino is the application server Lotus Notes provides integratedcollaboration functionality including email calendaring contacts managementto do tracking instant messaging an office productivity suite (IBM LotusSymphony) and access to other Lotus Domino applications and databases
Description
httpwww-01ibmcomsoftwarelotusnotesanddominoReference
L41352Global ID
30ID
Known Mappings
1352UDP Port
1352TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 37
BGPNOTES
NTPntpNameCLI Keyword
Network Time ProtocolFull Name
The Network Time Protocol is a protocol for synchronizing the system clocksof distributed computer systems over packet-switched variable-latency datanetworks Usually the UDP port used is 123
Description
httpwwweecisudeledu~millsntphtmlindexhtmlReference
L4123Global ID
31ID
Known Mappings
123UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1038
BGPNTP
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
C H A P T E R 2BGP
bgpNameCLI Keyword
Border Gateway ProtocolFull Name
Border Gateway Protocol (BGP) is a protocol designed to share networkinformation (for example network reachability) between autonomous systems(AS) According to the information the BGP routers buildmodify their routingtables The protocol was designed to replace the Exterior Gateway Protocol(EGP) Usually the protocol uses TCPUDP ports 179 as default
Description
httptoolsietforghtmlrfc4274Reference
L4179Global ID
11ID
Known Mappings
179UDP Port
179TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NBAR2 Standard Protocol Pack 10 3
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
bull BITTORRENT page 6
bull CITRIX page 7
bull DHCP page 8
bull DIRECTCONNECT page 9
bull DNS page 10
bull EDONKEY page 11
bull EGP page 12
bull EIGRP page 13
bull EXCHANGE page 14
bull FASTTRACK page 15
bull FINGER page 16
bull FTP page 17
bull GNUTELLA page 18
bull GOPHER page 19
bull GRE page 20
bull H323 page 21
bull HTTP page 22
bull ICMP page 23
bull IMAP page 24
bull IPINIP page 25
bull IPV6-ICMP page 26
bull IRC page 27
bull KAZAA2 page 28
bull KERBEROS page 29
bull L2TP page 30
bull LDAP page 31
bull MGCP page 32
NBAR2 Standard Protocol Pack 104
BGP
bull NETBIOS page 33
bull NETSHOW page 34
bull NFS page 35
bull NNTP page 36
bull NOTES page 37
bull NTP page 38
bull OSPF page 39
bull POP3 page 40
bull PPTP page 41
bull PRINTER page 42
bull RIP page 43
bull RTCP page 44
bull RTP page 45
bull RTSP page 46
bull SAP page 47
bull SECURE-FTP page 48
bull SECURE-HTTP page 49
bull SECURE-IMAP page 50
bull SECURE-IRC page 51
bull SECURE-LDAP page 52
bull SECURE-NNTP page 53
bull SECURE-POP3 page 54
bull SECURE-TELNET page 55
bull SIP page 56
bull SKINNY page 57
bull SKYPE page 58
bull SMTP page 59
bull SNMP page 60
bull SOCKS page 61
bull SQLNET page 62
bull SQLSERVER page 63
bull SSH page 64
bull STREAMWORK page 65
NBAR2 Standard Protocol Pack 10 5
BGP
bull SUNRPC page 66
bull SYSLOG page 67
bull TELNET page 68
bull TFTP page 69
bull VDOLIVE page 70
bull WINMX page 71
BITTORRENTbittorrentNameCLI Keyword
BitTorrentFull Name
BitTorrent is a p2p file sharing protocol used for distributing files over theinternet It identifies content by URL and is designed to integrate seamlesslywith the web The BitTorrent protocol is based on a BitTorrent tracker (server)that initializes the connections between the clients (peers)
Description
httpjonasnitrodkbittorrentbittorrent-rfchtmlReference
L769Global ID
69ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NBAR2 Standard Protocol Pack 106
BGPBITTORRENT
NoEncrypted
NoTunnel
socksUnderlying Protocols
CITRIXcitrixNameCLI Keyword
CitrixFull Name
Citrix is an application that mediates users remotely to their corporate applicationsICA Independed Computing Architecture is a designated protocol for applicationserver system it is used for transferring data between clients and serversCGPCGP is a tunneling protocol the latest addition to the family of Citrix protocolAsof today it encapsulates ICA protocol but will be extended to other Citrix protocolsuch as RDP HTTPHTTPSIMA used for server-server communicationServer-Browser Used mainly a control connection which has PublishedApplication Name and triggers an ICA connection
Description
httpwwwcitrixcomsiteresourcesdynamicadditionalICA_Acceleration_0709apdf
Reference
L756Global ID
56ID
Known Mappings
1604UDP Port
1494251225132598TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NBAR2 Standard Protocol Pack 10 7
BGPCITRIX
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
DHCPdhcpNameCLI Keyword
Dynamic Host Configuration ProtocolFull Name
The Dynamic Host Configuration Protocol (DHCP) provides a framework forpassing configuration information to hosts on a TCPIP network The informationgiven by designated DHCP servers include IP address subnet mask and defaultgateway ADHCP server usually listens on UDP port 67 and DHCP client usuallylistens on UDP 68
Description
httpwwwietforgrfcrfc2131txtReference
L713Global ID
13ID
Known Mappings
6768UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NBAR2 Standard Protocol Pack 108
BGPDHCP
NoEncrypted
NoTunnel
-Underlying Protocols
DIRECTCONNECTdirectconnectNameCLI Keyword
Direct ConnectFull Name
Direct connect is a peer-to-peer file sharing protocol Clients connect to a mainhub that mediates them to other clients in order to download files The hubs holda database of clients and files and mediate the clients Once clients are connectedin a P2P manner they can download files and chat with one another
Description
httpwwwmetroactivecompapersmetro071201work-0128htmlReference
L770Global ID
70ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NBAR2 Standard Protocol Pack 10 9
BGPDIRECTCONNECT
NoTunnel
-Underlying Protocols
DNSdnsNameCLI Keyword
Domain Name SystemFull Name
Domain Name Server is a server that translates URLs into IP addresses basedon client queries It is based on client-server architecture
Description
httpswww1ietforgrfcrfc1035txtReference
L453Global ID
72ID
Known Mappings
53UDP Port
53TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1010
BGPDNS
EDONKEYedonkeyNameCLI Keyword
eDonkeyFull Name
eDonkey is a peer-to-peer file sharing addopted to share large files The networkis based on multiple decentralized servers each client must be connected to aserver to enter the network edonkey-static and eMule are also required to fullydetect or prevent this application traffic
Description
httpwebarchiveorgweb20010213200827wwwedonkey2000comoverviewhtml
Reference
L767Global ID
67ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 11
BGPEDONKEY
EGPegpNameCLI Keyword
Exterior Gateway ProtocolFull Name
Exterior Gateway Protocol (EGP) is a protocol used to convey networkinformation between neighboring gateways or Autonomic systems This waythe gateways acquire neighbors monitor neighbor reachability and exchangenet-reachability information in the form of Update messages EGP is IP protocolnumber 8
Description
httptoolsietforghtmlrfc904Reference
L38Global ID
4ID
Known Mappings
-UDP Port
-TCP Port
8IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1012
BGPEGP
EIGRPeigrpNameCLI Keyword
Interior Gateway Routing ProtocolFull Name
Enhanced Interior Gateway Routing Protocol (EIGRP) is an interior gatewayprotocol It is an advanced distance-vector routing protocol with optimizationsto minimize both the routing instability incurred after topology changes as wellas the use of bandwidth and processing power in the router The protocol isusually known as IP protocol 88 as default
Description
httpwwwciscocomenUStechtk365technologies_white_paper09186a0080094cb7shtml
Reference
L388Global ID
7ID
Known Mappings
-UDP Port
-TCP Port
88IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 13
BGPEIGRP
EXCHANGEexchangeNameCLI Keyword
Microsoft ExchangeFull Name
Exchange is a protocol that allows users to synchronize and connect to theirexchange server when the client is outside the organizations firewall Theunderlying protocol is RPC over HTTP
Description
httpsupportmicrosoftcomkb262986Reference
L749Global ID
49ID
Known Mappings
-UDP Port
135TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1014
BGPEXCHANGE
FASTTRACKfasttrackNameCLI Keyword
FastTrackFull Name
FastTrack is a file sharing client software that is based on peer-to-peer connectionFastTrack is used by multiple file sharing applications such as Kazaa GroksteriMesh andMorpheus Initialization Initial the connection with FastTrack serverover HTTP Search Searching for files in FastTrack server Download Downloadrequest from FastTracker server
Description
httpdeveloperberliosdeprojectsgift-fasttrackReference
L757Global ID
57ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 15
BGPFASTTRACK
FINGERfingerNameCLI Keyword
Finger ProtocolFull Name
The FingerName protocol provides an interface to the Name and Finger programsat several network sites These programs return a friendly human-oriented statusreport on either the system at the moment or a particular person in depth
Description
httpwwwietforgrfcrfc1288txtReference
L479Global ID
14ID
Known Mappings
79UDP Port
79TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1016
BGPFINGER
FTPftpNameCLI Keyword
File Transfer ProtocolFull Name
File Transfer Protocol (FTP) is used to transfer files between hosts over TCPnetworks and is based on client-server architecture An FTP server usually listenson port 21
Description
httpwwwietforgrfcrfc959txtReference
L421Global ID
2ID
Known Mappings
-UDP Port
21TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 17
BGPFTP
GNUTELLAgnutellaNameCLI Keyword
GnutellaFull Name
Gnutella ver2 is decentralized and open-source peer-to-peer file sharing protocolused by various clients such as BearShare Shareeza Morpheus etc Using aGnutella client files can be shared located and downloaded by another Gnutellaclient
Description
httprfc-gnutellasourceforgenetReference
L758Global ID
58ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1018
BGPGNUTELLA
GOPHERgopherNameCLI Keyword
GopherFull Name
Internet Gopher protocol is a protocol is a TCPIP application layer protocoldesigned for distributing searching and retrieving documents over the InternetThe protocol is based on a client-server architecture and usually uses TCP port70 as default
Description
httptoolsietforghtmlrfc1436Reference
L470Global ID
15ID
Known Mappings
70UDP Port
70TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 19
BGPGOPHER
GREgreNameCLI Keyword
Generic Route EncapsulationFull Name
Generic Routing Encapsulation (GRE) is a protocol used for encapsulation of anetwork layer over another The protocol encapsulates the packet and saves theprotocol type of the payload packet so the receivers know what network layerwas encapsulated and digests the packet respectively Usually the protocol usesIP port 47
Description
httptoolsietforghtmlrfc2784Reference
L347Global ID
5ID
Known Mappings
-UDP Port
-TCP Port
47IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1020
BGPGRE
H323h323NameCLI Keyword
H323Full Name
H323 is a recommendation from the ITU Telecommunication StandardizationSector (ITU-T) that defines the protocols to provide audio-visual communicationsessions on any packet network The H323 standard addresses call signaling andcontrol multimedia transport and control and bandwidth control for point-to-pointand multi-point conferences
Description
httpwwwh323forumorgReference
L764Global ID
64ID
Known Mappings
-UDP Port
110001100111002110031100411005110061100711008110091101011011110121101311TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 21
BGPH323
HTTPhttpNameCLI Keyword
HyperText Transfer ProtocolFull Name
Hypertext Transfer Protocol (HTTP) is a standard for communication betweenweb browsers and servers over the World Wide Web The protocol works in arequest-responsemanner over a client server computingmodel The server usuallylistens on port 80
Description
httpwwww3orgProtocolsrfc2616rfc2616htmlReference
L480Global ID
3ID
Known Mappings
-UDP Port
80TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1022
BGPHTTP
ICMPicmpNameCLI Keyword
Internet Control Message ProtocolFull Name
Internet Control Message Protocol (ICMP) messages are typically generated inresponse to errors in IP datagrams or for diagnostic or routing purposes ICMPerrors are always reported to the original source IP address of the originatingdatagram ICMP is IP protocol number 1 Traffic is classified only if its identifiedas ICMP but was not recognized as any other more granular classification suchas Ping
Description
httptoolsietforghtmlrfc792Reference
L31Global ID
6ID
Known Mappings
-UDP Port
-TCP Port
1IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 23
BGPICMP
IMAPimapNameCLI Keyword
Internet Message Access Protocol version 4Full Name
The Internet Message Acceess protocol allows users to acess their email serversand to receivesend emails The protocol simulates a local use when in-fact it isa connection to a server An IMAP server usually listens on port 143
Description
httptoolsietforghtmlrfc3501Reference
L4143Global ID
17ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1024
BGPIMAP
IPINIPipinipNameCLI Keyword
IP in IPFull Name
IP in IP tunneling is a protocol used to encapsulate IP headers to a different IPheader to share information between endpoints in different internet-networks(for example forwarding traffic from one intranet to another)
Description
httptoolsietforghtmlrfc1853Reference
L34Global ID
8ID
Known Mappings
-UDP Port
-TCP Port
4IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 25
BGPIPINIP
IPV6-ICMPipv6-icmpNameCLI Keyword
ICMP for IPv6Full Name
Internet Control Message Protocol version 6 (ICMPv6) is the implementation ofthe Internet Control Message Protocol (ICMP) for Internet Protocol version 6(IPv6) ICMPv6 is an integral part of IPv6 and performs error reporting diagnosticfunctions (eg ping) and a framework for extensions to implement futurechanges
Description
httptoolsietforghtmlrfc4443Reference
L358Global ID
812ID
Known Mappings
-UDP Port
-TCP Port
58IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1026
BGPIPV6-ICMP
IRCircNameCLI Keyword
Internet Relay ChatFull Name
Internet Relay Chat (IRC) protocol is used for chat messaging in real time It canbe used for conferencing or one-on-one chatting The protocol works onclient-server architecture with a distributed manner An IRC server usually listenson TCP port 194
Description
httpwwwirchelporgirchelprfcrfchtmlReference
L4194Global ID
19ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
httpUnderlying Protocols
NBAR2 Standard Protocol Pack 10 27
BGPIRC
KAZAA2kazaa2NameCLI Keyword
Kazaa2Full Name
Kazaa is an online music subscription service that is based on second generationpeer-to-peer technology FastTracker
Description
httpwwwkazaacomaboutReference
L759Global ID
59ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1028
BGPKAZAA2
KERBEROSkerberosNameCLI Keyword
KerberosFull Name
Kerberos is a network authentication protocol The protocol is used to verifyidentities over the internet using a trusted third party Extensions of the protocolalso use the exchange of cryptographic certification of a public key Usually theprotocol uses TCPUDP ports 88749 as default
Description
httpwwwietforgrfcrfc4120txtReference
L488Global ID
21ID
Known Mappings
88749UDP Port
88749TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 29
BGPKERBEROS
L2TPl2tpNameCLI Keyword
Layer 2 Tunneling ProtocolFull Name
Layer 2 Tunneling Protocol (L2TP) is a tunneling protocol used to support virtualprivate networks (VPNs) or as part of the delivery of services by ISPs It doesnot provide any encryption or confidentiality by itself it relies on an encryptionprotocol that it passes within the tunnel to provide privacy
Description
httptoolsietforghtmlrfc2661Reference
L4115Global ID
22ID
Known Mappings
1701UDP Port
1701TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1030
BGPL2TP
LDAPldapNameCLI Keyword
Lightweight Directory Access ProtocolFull Name
Lightweight Directory Access Protocol (LDAP) is a protocol designed to toaccess distributed directory services Typically it uses port 389 for TCP andUDP
Description
httptoolsietforghtmlrfc4510Reference
L4389Global ID
23ID
Known Mappings
389UDP Port
389TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 31
BGPLDAP
MGCPmgcpNameCLI Keyword
Media Gateway Control ProtocolFull Name
Media Gateway Control Protocol (MGCP) 10 is a protocol for the control ofVoice over IP (VoIP) calls by external call-control elements known as MediaGateway Controllers (MGCs) or Call Agents (CAs)
Description
httpwwwpacketizercomrfcrfc3435Reference
L762Global ID
62ID
Known Mappings
24272727UDP Port
242724282727TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1032
BGPMGCP
NETBIOSnetbiosNameCLI Keyword
Network Basic InputOutput SystemFull Name
Network Basic InputOutput System (NetBIOS) provides services related to thesession layer of the OSI model allowing applications on separate computers tocommunicate over a local area network As strictly an API NetBIOS is not anetworking protocol In modern networks NetBIOS normally runs over TCPIPvia the NetBIOS over TCPIP (NBT) protocol This results in each computer inthe network having both an IP address and a NetBIOS name corresponding to a(possibly different) host name
Description
httptoolsietforghtmlrfc1001Reference
L726Global ID
26ID
Known Mappings
137138UDP Port
137139TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 33
BGPNETBIOS
NETSHOWnetshowNameCLI Keyword
NetShowFull Name
Netshow is a Microsoft software designed to stream media over intranets andthe internet NetShow can transfer livemulticast and on-demand streamed audioillustrated audio and video Typically Netshow uses TCP port 1755 and UDPports between 1024-5000
Description
httpwwwmicrosoftcompresspasspress1997mar97nsbta2prmspxReference
L7426Global ID
53ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1034
BGPNETSHOW
NFSnfsNameCLI Keyword
Network File SystemFull Name
Network File System (NFS) is a distributed file system developed by SunMicrosystems Inc that allows users to access and modify files remotly as if itwas a local file The protocol is based on client server architecture and typicallyuses TCPUDP port 2049
Description
httpwwwietforgrfcrfc3530txtReference
L42049Global ID
27ID
Known Mappings
2049UDP Port
2049TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
NoUnderlying Protocols
NBAR2 Standard Protocol Pack 10 35
BGPNFS
NNTPnntpNameCLI Keyword
Network News Transfer ProtocolFull Name
Network News Transfer Protocol (NNTP) is an internet transfer protocol usedfor readingposting Usenet articles and transferring them between news serversUsually the TCP port is 119 while nntp over SSL TCPUDP port is 563
Description
httptoolsietforghtmlrfc3977Reference
L4119Global ID
28ID
Known Mappings
119UDP Port
119TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1036
BGPNNTP
NOTESnotesNameCLI Keyword
IBM Lotus NotesFull Name
IBM Lotus Notes is the client of a collaborative client-server platform IBMLotus Domino is the application server Lotus Notes provides integratedcollaboration functionality including email calendaring contacts managementto do tracking instant messaging an office productivity suite (IBM LotusSymphony) and access to other Lotus Domino applications and databases
Description
httpwww-01ibmcomsoftwarelotusnotesanddominoReference
L41352Global ID
30ID
Known Mappings
1352UDP Port
1352TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 37
BGPNOTES
NTPntpNameCLI Keyword
Network Time ProtocolFull Name
The Network Time Protocol is a protocol for synchronizing the system clocksof distributed computer systems over packet-switched variable-latency datanetworks Usually the UDP port used is 123
Description
httpwwweecisudeledu~millsntphtmlindexhtmlReference
L4123Global ID
31ID
Known Mappings
123UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1038
BGPNTP
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
bull BITTORRENT page 6
bull CITRIX page 7
bull DHCP page 8
bull DIRECTCONNECT page 9
bull DNS page 10
bull EDONKEY page 11
bull EGP page 12
bull EIGRP page 13
bull EXCHANGE page 14
bull FASTTRACK page 15
bull FINGER page 16
bull FTP page 17
bull GNUTELLA page 18
bull GOPHER page 19
bull GRE page 20
bull H323 page 21
bull HTTP page 22
bull ICMP page 23
bull IMAP page 24
bull IPINIP page 25
bull IPV6-ICMP page 26
bull IRC page 27
bull KAZAA2 page 28
bull KERBEROS page 29
bull L2TP page 30
bull LDAP page 31
bull MGCP page 32
NBAR2 Standard Protocol Pack 104
BGP
bull NETBIOS page 33
bull NETSHOW page 34
bull NFS page 35
bull NNTP page 36
bull NOTES page 37
bull NTP page 38
bull OSPF page 39
bull POP3 page 40
bull PPTP page 41
bull PRINTER page 42
bull RIP page 43
bull RTCP page 44
bull RTP page 45
bull RTSP page 46
bull SAP page 47
bull SECURE-FTP page 48
bull SECURE-HTTP page 49
bull SECURE-IMAP page 50
bull SECURE-IRC page 51
bull SECURE-LDAP page 52
bull SECURE-NNTP page 53
bull SECURE-POP3 page 54
bull SECURE-TELNET page 55
bull SIP page 56
bull SKINNY page 57
bull SKYPE page 58
bull SMTP page 59
bull SNMP page 60
bull SOCKS page 61
bull SQLNET page 62
bull SQLSERVER page 63
bull SSH page 64
bull STREAMWORK page 65
NBAR2 Standard Protocol Pack 10 5
BGP
bull SUNRPC page 66
bull SYSLOG page 67
bull TELNET page 68
bull TFTP page 69
bull VDOLIVE page 70
bull WINMX page 71
BITTORRENTbittorrentNameCLI Keyword
BitTorrentFull Name
BitTorrent is a p2p file sharing protocol used for distributing files over theinternet It identifies content by URL and is designed to integrate seamlesslywith the web The BitTorrent protocol is based on a BitTorrent tracker (server)that initializes the connections between the clients (peers)
Description
httpjonasnitrodkbittorrentbittorrent-rfchtmlReference
L769Global ID
69ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NBAR2 Standard Protocol Pack 106
BGPBITTORRENT
NoEncrypted
NoTunnel
socksUnderlying Protocols
CITRIXcitrixNameCLI Keyword
CitrixFull Name
Citrix is an application that mediates users remotely to their corporate applicationsICA Independed Computing Architecture is a designated protocol for applicationserver system it is used for transferring data between clients and serversCGPCGP is a tunneling protocol the latest addition to the family of Citrix protocolAsof today it encapsulates ICA protocol but will be extended to other Citrix protocolsuch as RDP HTTPHTTPSIMA used for server-server communicationServer-Browser Used mainly a control connection which has PublishedApplication Name and triggers an ICA connection
Description
httpwwwcitrixcomsiteresourcesdynamicadditionalICA_Acceleration_0709apdf
Reference
L756Global ID
56ID
Known Mappings
1604UDP Port
1494251225132598TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NBAR2 Standard Protocol Pack 10 7
BGPCITRIX
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
DHCPdhcpNameCLI Keyword
Dynamic Host Configuration ProtocolFull Name
The Dynamic Host Configuration Protocol (DHCP) provides a framework forpassing configuration information to hosts on a TCPIP network The informationgiven by designated DHCP servers include IP address subnet mask and defaultgateway ADHCP server usually listens on UDP port 67 and DHCP client usuallylistens on UDP 68
Description
httpwwwietforgrfcrfc2131txtReference
L713Global ID
13ID
Known Mappings
6768UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NBAR2 Standard Protocol Pack 108
BGPDHCP
NoEncrypted
NoTunnel
-Underlying Protocols
DIRECTCONNECTdirectconnectNameCLI Keyword
Direct ConnectFull Name
Direct connect is a peer-to-peer file sharing protocol Clients connect to a mainhub that mediates them to other clients in order to download files The hubs holda database of clients and files and mediate the clients Once clients are connectedin a P2P manner they can download files and chat with one another
Description
httpwwwmetroactivecompapersmetro071201work-0128htmlReference
L770Global ID
70ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NBAR2 Standard Protocol Pack 10 9
BGPDIRECTCONNECT
NoTunnel
-Underlying Protocols
DNSdnsNameCLI Keyword
Domain Name SystemFull Name
Domain Name Server is a server that translates URLs into IP addresses basedon client queries It is based on client-server architecture
Description
httpswww1ietforgrfcrfc1035txtReference
L453Global ID
72ID
Known Mappings
53UDP Port
53TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1010
BGPDNS
EDONKEYedonkeyNameCLI Keyword
eDonkeyFull Name
eDonkey is a peer-to-peer file sharing addopted to share large files The networkis based on multiple decentralized servers each client must be connected to aserver to enter the network edonkey-static and eMule are also required to fullydetect or prevent this application traffic
Description
httpwebarchiveorgweb20010213200827wwwedonkey2000comoverviewhtml
Reference
L767Global ID
67ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 11
BGPEDONKEY
EGPegpNameCLI Keyword
Exterior Gateway ProtocolFull Name
Exterior Gateway Protocol (EGP) is a protocol used to convey networkinformation between neighboring gateways or Autonomic systems This waythe gateways acquire neighbors monitor neighbor reachability and exchangenet-reachability information in the form of Update messages EGP is IP protocolnumber 8
Description
httptoolsietforghtmlrfc904Reference
L38Global ID
4ID
Known Mappings
-UDP Port
-TCP Port
8IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1012
BGPEGP
EIGRPeigrpNameCLI Keyword
Interior Gateway Routing ProtocolFull Name
Enhanced Interior Gateway Routing Protocol (EIGRP) is an interior gatewayprotocol It is an advanced distance-vector routing protocol with optimizationsto minimize both the routing instability incurred after topology changes as wellas the use of bandwidth and processing power in the router The protocol isusually known as IP protocol 88 as default
Description
httpwwwciscocomenUStechtk365technologies_white_paper09186a0080094cb7shtml
Reference
L388Global ID
7ID
Known Mappings
-UDP Port
-TCP Port
88IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 13
BGPEIGRP
EXCHANGEexchangeNameCLI Keyword
Microsoft ExchangeFull Name
Exchange is a protocol that allows users to synchronize and connect to theirexchange server when the client is outside the organizations firewall Theunderlying protocol is RPC over HTTP
Description
httpsupportmicrosoftcomkb262986Reference
L749Global ID
49ID
Known Mappings
-UDP Port
135TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1014
BGPEXCHANGE
FASTTRACKfasttrackNameCLI Keyword
FastTrackFull Name
FastTrack is a file sharing client software that is based on peer-to-peer connectionFastTrack is used by multiple file sharing applications such as Kazaa GroksteriMesh andMorpheus Initialization Initial the connection with FastTrack serverover HTTP Search Searching for files in FastTrack server Download Downloadrequest from FastTracker server
Description
httpdeveloperberliosdeprojectsgift-fasttrackReference
L757Global ID
57ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 15
BGPFASTTRACK
FINGERfingerNameCLI Keyword
Finger ProtocolFull Name
The FingerName protocol provides an interface to the Name and Finger programsat several network sites These programs return a friendly human-oriented statusreport on either the system at the moment or a particular person in depth
Description
httpwwwietforgrfcrfc1288txtReference
L479Global ID
14ID
Known Mappings
79UDP Port
79TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1016
BGPFINGER
FTPftpNameCLI Keyword
File Transfer ProtocolFull Name
File Transfer Protocol (FTP) is used to transfer files between hosts over TCPnetworks and is based on client-server architecture An FTP server usually listenson port 21
Description
httpwwwietforgrfcrfc959txtReference
L421Global ID
2ID
Known Mappings
-UDP Port
21TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 17
BGPFTP
GNUTELLAgnutellaNameCLI Keyword
GnutellaFull Name
Gnutella ver2 is decentralized and open-source peer-to-peer file sharing protocolused by various clients such as BearShare Shareeza Morpheus etc Using aGnutella client files can be shared located and downloaded by another Gnutellaclient
Description
httprfc-gnutellasourceforgenetReference
L758Global ID
58ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1018
BGPGNUTELLA
GOPHERgopherNameCLI Keyword
GopherFull Name
Internet Gopher protocol is a protocol is a TCPIP application layer protocoldesigned for distributing searching and retrieving documents over the InternetThe protocol is based on a client-server architecture and usually uses TCP port70 as default
Description
httptoolsietforghtmlrfc1436Reference
L470Global ID
15ID
Known Mappings
70UDP Port
70TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 19
BGPGOPHER
GREgreNameCLI Keyword
Generic Route EncapsulationFull Name
Generic Routing Encapsulation (GRE) is a protocol used for encapsulation of anetwork layer over another The protocol encapsulates the packet and saves theprotocol type of the payload packet so the receivers know what network layerwas encapsulated and digests the packet respectively Usually the protocol usesIP port 47
Description
httptoolsietforghtmlrfc2784Reference
L347Global ID
5ID
Known Mappings
-UDP Port
-TCP Port
47IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1020
BGPGRE
H323h323NameCLI Keyword
H323Full Name
H323 is a recommendation from the ITU Telecommunication StandardizationSector (ITU-T) that defines the protocols to provide audio-visual communicationsessions on any packet network The H323 standard addresses call signaling andcontrol multimedia transport and control and bandwidth control for point-to-pointand multi-point conferences
Description
httpwwwh323forumorgReference
L764Global ID
64ID
Known Mappings
-UDP Port
110001100111002110031100411005110061100711008110091101011011110121101311TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 21
BGPH323
HTTPhttpNameCLI Keyword
HyperText Transfer ProtocolFull Name
Hypertext Transfer Protocol (HTTP) is a standard for communication betweenweb browsers and servers over the World Wide Web The protocol works in arequest-responsemanner over a client server computingmodel The server usuallylistens on port 80
Description
httpwwww3orgProtocolsrfc2616rfc2616htmlReference
L480Global ID
3ID
Known Mappings
-UDP Port
80TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1022
BGPHTTP
ICMPicmpNameCLI Keyword
Internet Control Message ProtocolFull Name
Internet Control Message Protocol (ICMP) messages are typically generated inresponse to errors in IP datagrams or for diagnostic or routing purposes ICMPerrors are always reported to the original source IP address of the originatingdatagram ICMP is IP protocol number 1 Traffic is classified only if its identifiedas ICMP but was not recognized as any other more granular classification suchas Ping
Description
httptoolsietforghtmlrfc792Reference
L31Global ID
6ID
Known Mappings
-UDP Port
-TCP Port
1IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 23
BGPICMP
IMAPimapNameCLI Keyword
Internet Message Access Protocol version 4Full Name
The Internet Message Acceess protocol allows users to acess their email serversand to receivesend emails The protocol simulates a local use when in-fact it isa connection to a server An IMAP server usually listens on port 143
Description
httptoolsietforghtmlrfc3501Reference
L4143Global ID
17ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1024
BGPIMAP
IPINIPipinipNameCLI Keyword
IP in IPFull Name
IP in IP tunneling is a protocol used to encapsulate IP headers to a different IPheader to share information between endpoints in different internet-networks(for example forwarding traffic from one intranet to another)
Description
httptoolsietforghtmlrfc1853Reference
L34Global ID
8ID
Known Mappings
-UDP Port
-TCP Port
4IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 25
BGPIPINIP
IPV6-ICMPipv6-icmpNameCLI Keyword
ICMP for IPv6Full Name
Internet Control Message Protocol version 6 (ICMPv6) is the implementation ofthe Internet Control Message Protocol (ICMP) for Internet Protocol version 6(IPv6) ICMPv6 is an integral part of IPv6 and performs error reporting diagnosticfunctions (eg ping) and a framework for extensions to implement futurechanges
Description
httptoolsietforghtmlrfc4443Reference
L358Global ID
812ID
Known Mappings
-UDP Port
-TCP Port
58IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1026
BGPIPV6-ICMP
IRCircNameCLI Keyword
Internet Relay ChatFull Name
Internet Relay Chat (IRC) protocol is used for chat messaging in real time It canbe used for conferencing or one-on-one chatting The protocol works onclient-server architecture with a distributed manner An IRC server usually listenson TCP port 194
Description
httpwwwirchelporgirchelprfcrfchtmlReference
L4194Global ID
19ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
httpUnderlying Protocols
NBAR2 Standard Protocol Pack 10 27
BGPIRC
KAZAA2kazaa2NameCLI Keyword
Kazaa2Full Name
Kazaa is an online music subscription service that is based on second generationpeer-to-peer technology FastTracker
Description
httpwwwkazaacomaboutReference
L759Global ID
59ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1028
BGPKAZAA2
KERBEROSkerberosNameCLI Keyword
KerberosFull Name
Kerberos is a network authentication protocol The protocol is used to verifyidentities over the internet using a trusted third party Extensions of the protocolalso use the exchange of cryptographic certification of a public key Usually theprotocol uses TCPUDP ports 88749 as default
Description
httpwwwietforgrfcrfc4120txtReference
L488Global ID
21ID
Known Mappings
88749UDP Port
88749TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 29
BGPKERBEROS
L2TPl2tpNameCLI Keyword
Layer 2 Tunneling ProtocolFull Name
Layer 2 Tunneling Protocol (L2TP) is a tunneling protocol used to support virtualprivate networks (VPNs) or as part of the delivery of services by ISPs It doesnot provide any encryption or confidentiality by itself it relies on an encryptionprotocol that it passes within the tunnel to provide privacy
Description
httptoolsietforghtmlrfc2661Reference
L4115Global ID
22ID
Known Mappings
1701UDP Port
1701TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1030
BGPL2TP
LDAPldapNameCLI Keyword
Lightweight Directory Access ProtocolFull Name
Lightweight Directory Access Protocol (LDAP) is a protocol designed to toaccess distributed directory services Typically it uses port 389 for TCP andUDP
Description
httptoolsietforghtmlrfc4510Reference
L4389Global ID
23ID
Known Mappings
389UDP Port
389TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 31
BGPLDAP
MGCPmgcpNameCLI Keyword
Media Gateway Control ProtocolFull Name
Media Gateway Control Protocol (MGCP) 10 is a protocol for the control ofVoice over IP (VoIP) calls by external call-control elements known as MediaGateway Controllers (MGCs) or Call Agents (CAs)
Description
httpwwwpacketizercomrfcrfc3435Reference
L762Global ID
62ID
Known Mappings
24272727UDP Port
242724282727TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1032
BGPMGCP
NETBIOSnetbiosNameCLI Keyword
Network Basic InputOutput SystemFull Name
Network Basic InputOutput System (NetBIOS) provides services related to thesession layer of the OSI model allowing applications on separate computers tocommunicate over a local area network As strictly an API NetBIOS is not anetworking protocol In modern networks NetBIOS normally runs over TCPIPvia the NetBIOS over TCPIP (NBT) protocol This results in each computer inthe network having both an IP address and a NetBIOS name corresponding to a(possibly different) host name
Description
httptoolsietforghtmlrfc1001Reference
L726Global ID
26ID
Known Mappings
137138UDP Port
137139TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 33
BGPNETBIOS
NETSHOWnetshowNameCLI Keyword
NetShowFull Name
Netshow is a Microsoft software designed to stream media over intranets andthe internet NetShow can transfer livemulticast and on-demand streamed audioillustrated audio and video Typically Netshow uses TCP port 1755 and UDPports between 1024-5000
Description
httpwwwmicrosoftcompresspasspress1997mar97nsbta2prmspxReference
L7426Global ID
53ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1034
BGPNETSHOW
NFSnfsNameCLI Keyword
Network File SystemFull Name
Network File System (NFS) is a distributed file system developed by SunMicrosystems Inc that allows users to access and modify files remotly as if itwas a local file The protocol is based on client server architecture and typicallyuses TCPUDP port 2049
Description
httpwwwietforgrfcrfc3530txtReference
L42049Global ID
27ID
Known Mappings
2049UDP Port
2049TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
NoUnderlying Protocols
NBAR2 Standard Protocol Pack 10 35
BGPNFS
NNTPnntpNameCLI Keyword
Network News Transfer ProtocolFull Name
Network News Transfer Protocol (NNTP) is an internet transfer protocol usedfor readingposting Usenet articles and transferring them between news serversUsually the TCP port is 119 while nntp over SSL TCPUDP port is 563
Description
httptoolsietforghtmlrfc3977Reference
L4119Global ID
28ID
Known Mappings
119UDP Port
119TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1036
BGPNNTP
NOTESnotesNameCLI Keyword
IBM Lotus NotesFull Name
IBM Lotus Notes is the client of a collaborative client-server platform IBMLotus Domino is the application server Lotus Notes provides integratedcollaboration functionality including email calendaring contacts managementto do tracking instant messaging an office productivity suite (IBM LotusSymphony) and access to other Lotus Domino applications and databases
Description
httpwww-01ibmcomsoftwarelotusnotesanddominoReference
L41352Global ID
30ID
Known Mappings
1352UDP Port
1352TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 37
BGPNOTES
NTPntpNameCLI Keyword
Network Time ProtocolFull Name
The Network Time Protocol is a protocol for synchronizing the system clocksof distributed computer systems over packet-switched variable-latency datanetworks Usually the UDP port used is 123
Description
httpwwweecisudeledu~millsntphtmlindexhtmlReference
L4123Global ID
31ID
Known Mappings
123UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1038
BGPNTP
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
bull NETBIOS page 33
bull NETSHOW page 34
bull NFS page 35
bull NNTP page 36
bull NOTES page 37
bull NTP page 38
bull OSPF page 39
bull POP3 page 40
bull PPTP page 41
bull PRINTER page 42
bull RIP page 43
bull RTCP page 44
bull RTP page 45
bull RTSP page 46
bull SAP page 47
bull SECURE-FTP page 48
bull SECURE-HTTP page 49
bull SECURE-IMAP page 50
bull SECURE-IRC page 51
bull SECURE-LDAP page 52
bull SECURE-NNTP page 53
bull SECURE-POP3 page 54
bull SECURE-TELNET page 55
bull SIP page 56
bull SKINNY page 57
bull SKYPE page 58
bull SMTP page 59
bull SNMP page 60
bull SOCKS page 61
bull SQLNET page 62
bull SQLSERVER page 63
bull SSH page 64
bull STREAMWORK page 65
NBAR2 Standard Protocol Pack 10 5
BGP
bull SUNRPC page 66
bull SYSLOG page 67
bull TELNET page 68
bull TFTP page 69
bull VDOLIVE page 70
bull WINMX page 71
BITTORRENTbittorrentNameCLI Keyword
BitTorrentFull Name
BitTorrent is a p2p file sharing protocol used for distributing files over theinternet It identifies content by URL and is designed to integrate seamlesslywith the web The BitTorrent protocol is based on a BitTorrent tracker (server)that initializes the connections between the clients (peers)
Description
httpjonasnitrodkbittorrentbittorrent-rfchtmlReference
L769Global ID
69ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NBAR2 Standard Protocol Pack 106
BGPBITTORRENT
NoEncrypted
NoTunnel
socksUnderlying Protocols
CITRIXcitrixNameCLI Keyword
CitrixFull Name
Citrix is an application that mediates users remotely to their corporate applicationsICA Independed Computing Architecture is a designated protocol for applicationserver system it is used for transferring data between clients and serversCGPCGP is a tunneling protocol the latest addition to the family of Citrix protocolAsof today it encapsulates ICA protocol but will be extended to other Citrix protocolsuch as RDP HTTPHTTPSIMA used for server-server communicationServer-Browser Used mainly a control connection which has PublishedApplication Name and triggers an ICA connection
Description
httpwwwcitrixcomsiteresourcesdynamicadditionalICA_Acceleration_0709apdf
Reference
L756Global ID
56ID
Known Mappings
1604UDP Port
1494251225132598TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NBAR2 Standard Protocol Pack 10 7
BGPCITRIX
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
DHCPdhcpNameCLI Keyword
Dynamic Host Configuration ProtocolFull Name
The Dynamic Host Configuration Protocol (DHCP) provides a framework forpassing configuration information to hosts on a TCPIP network The informationgiven by designated DHCP servers include IP address subnet mask and defaultgateway ADHCP server usually listens on UDP port 67 and DHCP client usuallylistens on UDP 68
Description
httpwwwietforgrfcrfc2131txtReference
L713Global ID
13ID
Known Mappings
6768UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NBAR2 Standard Protocol Pack 108
BGPDHCP
NoEncrypted
NoTunnel
-Underlying Protocols
DIRECTCONNECTdirectconnectNameCLI Keyword
Direct ConnectFull Name
Direct connect is a peer-to-peer file sharing protocol Clients connect to a mainhub that mediates them to other clients in order to download files The hubs holda database of clients and files and mediate the clients Once clients are connectedin a P2P manner they can download files and chat with one another
Description
httpwwwmetroactivecompapersmetro071201work-0128htmlReference
L770Global ID
70ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NBAR2 Standard Protocol Pack 10 9
BGPDIRECTCONNECT
NoTunnel
-Underlying Protocols
DNSdnsNameCLI Keyword
Domain Name SystemFull Name
Domain Name Server is a server that translates URLs into IP addresses basedon client queries It is based on client-server architecture
Description
httpswww1ietforgrfcrfc1035txtReference
L453Global ID
72ID
Known Mappings
53UDP Port
53TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1010
BGPDNS
EDONKEYedonkeyNameCLI Keyword
eDonkeyFull Name
eDonkey is a peer-to-peer file sharing addopted to share large files The networkis based on multiple decentralized servers each client must be connected to aserver to enter the network edonkey-static and eMule are also required to fullydetect or prevent this application traffic
Description
httpwebarchiveorgweb20010213200827wwwedonkey2000comoverviewhtml
Reference
L767Global ID
67ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 11
BGPEDONKEY
EGPegpNameCLI Keyword
Exterior Gateway ProtocolFull Name
Exterior Gateway Protocol (EGP) is a protocol used to convey networkinformation between neighboring gateways or Autonomic systems This waythe gateways acquire neighbors monitor neighbor reachability and exchangenet-reachability information in the form of Update messages EGP is IP protocolnumber 8
Description
httptoolsietforghtmlrfc904Reference
L38Global ID
4ID
Known Mappings
-UDP Port
-TCP Port
8IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1012
BGPEGP
EIGRPeigrpNameCLI Keyword
Interior Gateway Routing ProtocolFull Name
Enhanced Interior Gateway Routing Protocol (EIGRP) is an interior gatewayprotocol It is an advanced distance-vector routing protocol with optimizationsto minimize both the routing instability incurred after topology changes as wellas the use of bandwidth and processing power in the router The protocol isusually known as IP protocol 88 as default
Description
httpwwwciscocomenUStechtk365technologies_white_paper09186a0080094cb7shtml
Reference
L388Global ID
7ID
Known Mappings
-UDP Port
-TCP Port
88IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 13
BGPEIGRP
EXCHANGEexchangeNameCLI Keyword
Microsoft ExchangeFull Name
Exchange is a protocol that allows users to synchronize and connect to theirexchange server when the client is outside the organizations firewall Theunderlying protocol is RPC over HTTP
Description
httpsupportmicrosoftcomkb262986Reference
L749Global ID
49ID
Known Mappings
-UDP Port
135TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1014
BGPEXCHANGE
FASTTRACKfasttrackNameCLI Keyword
FastTrackFull Name
FastTrack is a file sharing client software that is based on peer-to-peer connectionFastTrack is used by multiple file sharing applications such as Kazaa GroksteriMesh andMorpheus Initialization Initial the connection with FastTrack serverover HTTP Search Searching for files in FastTrack server Download Downloadrequest from FastTracker server
Description
httpdeveloperberliosdeprojectsgift-fasttrackReference
L757Global ID
57ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 15
BGPFASTTRACK
FINGERfingerNameCLI Keyword
Finger ProtocolFull Name
The FingerName protocol provides an interface to the Name and Finger programsat several network sites These programs return a friendly human-oriented statusreport on either the system at the moment or a particular person in depth
Description
httpwwwietforgrfcrfc1288txtReference
L479Global ID
14ID
Known Mappings
79UDP Port
79TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1016
BGPFINGER
FTPftpNameCLI Keyword
File Transfer ProtocolFull Name
File Transfer Protocol (FTP) is used to transfer files between hosts over TCPnetworks and is based on client-server architecture An FTP server usually listenson port 21
Description
httpwwwietforgrfcrfc959txtReference
L421Global ID
2ID
Known Mappings
-UDP Port
21TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 17
BGPFTP
GNUTELLAgnutellaNameCLI Keyword
GnutellaFull Name
Gnutella ver2 is decentralized and open-source peer-to-peer file sharing protocolused by various clients such as BearShare Shareeza Morpheus etc Using aGnutella client files can be shared located and downloaded by another Gnutellaclient
Description
httprfc-gnutellasourceforgenetReference
L758Global ID
58ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1018
BGPGNUTELLA
GOPHERgopherNameCLI Keyword
GopherFull Name
Internet Gopher protocol is a protocol is a TCPIP application layer protocoldesigned for distributing searching and retrieving documents over the InternetThe protocol is based on a client-server architecture and usually uses TCP port70 as default
Description
httptoolsietforghtmlrfc1436Reference
L470Global ID
15ID
Known Mappings
70UDP Port
70TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 19
BGPGOPHER
GREgreNameCLI Keyword
Generic Route EncapsulationFull Name
Generic Routing Encapsulation (GRE) is a protocol used for encapsulation of anetwork layer over another The protocol encapsulates the packet and saves theprotocol type of the payload packet so the receivers know what network layerwas encapsulated and digests the packet respectively Usually the protocol usesIP port 47
Description
httptoolsietforghtmlrfc2784Reference
L347Global ID
5ID
Known Mappings
-UDP Port
-TCP Port
47IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1020
BGPGRE
H323h323NameCLI Keyword
H323Full Name
H323 is a recommendation from the ITU Telecommunication StandardizationSector (ITU-T) that defines the protocols to provide audio-visual communicationsessions on any packet network The H323 standard addresses call signaling andcontrol multimedia transport and control and bandwidth control for point-to-pointand multi-point conferences
Description
httpwwwh323forumorgReference
L764Global ID
64ID
Known Mappings
-UDP Port
110001100111002110031100411005110061100711008110091101011011110121101311TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 21
BGPH323
HTTPhttpNameCLI Keyword
HyperText Transfer ProtocolFull Name
Hypertext Transfer Protocol (HTTP) is a standard for communication betweenweb browsers and servers over the World Wide Web The protocol works in arequest-responsemanner over a client server computingmodel The server usuallylistens on port 80
Description
httpwwww3orgProtocolsrfc2616rfc2616htmlReference
L480Global ID
3ID
Known Mappings
-UDP Port
80TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1022
BGPHTTP
ICMPicmpNameCLI Keyword
Internet Control Message ProtocolFull Name
Internet Control Message Protocol (ICMP) messages are typically generated inresponse to errors in IP datagrams or for diagnostic or routing purposes ICMPerrors are always reported to the original source IP address of the originatingdatagram ICMP is IP protocol number 1 Traffic is classified only if its identifiedas ICMP but was not recognized as any other more granular classification suchas Ping
Description
httptoolsietforghtmlrfc792Reference
L31Global ID
6ID
Known Mappings
-UDP Port
-TCP Port
1IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 23
BGPICMP
IMAPimapNameCLI Keyword
Internet Message Access Protocol version 4Full Name
The Internet Message Acceess protocol allows users to acess their email serversand to receivesend emails The protocol simulates a local use when in-fact it isa connection to a server An IMAP server usually listens on port 143
Description
httptoolsietforghtmlrfc3501Reference
L4143Global ID
17ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1024
BGPIMAP
IPINIPipinipNameCLI Keyword
IP in IPFull Name
IP in IP tunneling is a protocol used to encapsulate IP headers to a different IPheader to share information between endpoints in different internet-networks(for example forwarding traffic from one intranet to another)
Description
httptoolsietforghtmlrfc1853Reference
L34Global ID
8ID
Known Mappings
-UDP Port
-TCP Port
4IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 25
BGPIPINIP
IPV6-ICMPipv6-icmpNameCLI Keyword
ICMP for IPv6Full Name
Internet Control Message Protocol version 6 (ICMPv6) is the implementation ofthe Internet Control Message Protocol (ICMP) for Internet Protocol version 6(IPv6) ICMPv6 is an integral part of IPv6 and performs error reporting diagnosticfunctions (eg ping) and a framework for extensions to implement futurechanges
Description
httptoolsietforghtmlrfc4443Reference
L358Global ID
812ID
Known Mappings
-UDP Port
-TCP Port
58IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1026
BGPIPV6-ICMP
IRCircNameCLI Keyword
Internet Relay ChatFull Name
Internet Relay Chat (IRC) protocol is used for chat messaging in real time It canbe used for conferencing or one-on-one chatting The protocol works onclient-server architecture with a distributed manner An IRC server usually listenson TCP port 194
Description
httpwwwirchelporgirchelprfcrfchtmlReference
L4194Global ID
19ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
httpUnderlying Protocols
NBAR2 Standard Protocol Pack 10 27
BGPIRC
KAZAA2kazaa2NameCLI Keyword
Kazaa2Full Name
Kazaa is an online music subscription service that is based on second generationpeer-to-peer technology FastTracker
Description
httpwwwkazaacomaboutReference
L759Global ID
59ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1028
BGPKAZAA2
KERBEROSkerberosNameCLI Keyword
KerberosFull Name
Kerberos is a network authentication protocol The protocol is used to verifyidentities over the internet using a trusted third party Extensions of the protocolalso use the exchange of cryptographic certification of a public key Usually theprotocol uses TCPUDP ports 88749 as default
Description
httpwwwietforgrfcrfc4120txtReference
L488Global ID
21ID
Known Mappings
88749UDP Port
88749TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 29
BGPKERBEROS
L2TPl2tpNameCLI Keyword
Layer 2 Tunneling ProtocolFull Name
Layer 2 Tunneling Protocol (L2TP) is a tunneling protocol used to support virtualprivate networks (VPNs) or as part of the delivery of services by ISPs It doesnot provide any encryption or confidentiality by itself it relies on an encryptionprotocol that it passes within the tunnel to provide privacy
Description
httptoolsietforghtmlrfc2661Reference
L4115Global ID
22ID
Known Mappings
1701UDP Port
1701TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1030
BGPL2TP
LDAPldapNameCLI Keyword
Lightweight Directory Access ProtocolFull Name
Lightweight Directory Access Protocol (LDAP) is a protocol designed to toaccess distributed directory services Typically it uses port 389 for TCP andUDP
Description
httptoolsietforghtmlrfc4510Reference
L4389Global ID
23ID
Known Mappings
389UDP Port
389TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 31
BGPLDAP
MGCPmgcpNameCLI Keyword
Media Gateway Control ProtocolFull Name
Media Gateway Control Protocol (MGCP) 10 is a protocol for the control ofVoice over IP (VoIP) calls by external call-control elements known as MediaGateway Controllers (MGCs) or Call Agents (CAs)
Description
httpwwwpacketizercomrfcrfc3435Reference
L762Global ID
62ID
Known Mappings
24272727UDP Port
242724282727TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1032
BGPMGCP
NETBIOSnetbiosNameCLI Keyword
Network Basic InputOutput SystemFull Name
Network Basic InputOutput System (NetBIOS) provides services related to thesession layer of the OSI model allowing applications on separate computers tocommunicate over a local area network As strictly an API NetBIOS is not anetworking protocol In modern networks NetBIOS normally runs over TCPIPvia the NetBIOS over TCPIP (NBT) protocol This results in each computer inthe network having both an IP address and a NetBIOS name corresponding to a(possibly different) host name
Description
httptoolsietforghtmlrfc1001Reference
L726Global ID
26ID
Known Mappings
137138UDP Port
137139TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 33
BGPNETBIOS
NETSHOWnetshowNameCLI Keyword
NetShowFull Name
Netshow is a Microsoft software designed to stream media over intranets andthe internet NetShow can transfer livemulticast and on-demand streamed audioillustrated audio and video Typically Netshow uses TCP port 1755 and UDPports between 1024-5000
Description
httpwwwmicrosoftcompresspasspress1997mar97nsbta2prmspxReference
L7426Global ID
53ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1034
BGPNETSHOW
NFSnfsNameCLI Keyword
Network File SystemFull Name
Network File System (NFS) is a distributed file system developed by SunMicrosystems Inc that allows users to access and modify files remotly as if itwas a local file The protocol is based on client server architecture and typicallyuses TCPUDP port 2049
Description
httpwwwietforgrfcrfc3530txtReference
L42049Global ID
27ID
Known Mappings
2049UDP Port
2049TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
NoUnderlying Protocols
NBAR2 Standard Protocol Pack 10 35
BGPNFS
NNTPnntpNameCLI Keyword
Network News Transfer ProtocolFull Name
Network News Transfer Protocol (NNTP) is an internet transfer protocol usedfor readingposting Usenet articles and transferring them between news serversUsually the TCP port is 119 while nntp over SSL TCPUDP port is 563
Description
httptoolsietforghtmlrfc3977Reference
L4119Global ID
28ID
Known Mappings
119UDP Port
119TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1036
BGPNNTP
NOTESnotesNameCLI Keyword
IBM Lotus NotesFull Name
IBM Lotus Notes is the client of a collaborative client-server platform IBMLotus Domino is the application server Lotus Notes provides integratedcollaboration functionality including email calendaring contacts managementto do tracking instant messaging an office productivity suite (IBM LotusSymphony) and access to other Lotus Domino applications and databases
Description
httpwww-01ibmcomsoftwarelotusnotesanddominoReference
L41352Global ID
30ID
Known Mappings
1352UDP Port
1352TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 37
BGPNOTES
NTPntpNameCLI Keyword
Network Time ProtocolFull Name
The Network Time Protocol is a protocol for synchronizing the system clocksof distributed computer systems over packet-switched variable-latency datanetworks Usually the UDP port used is 123
Description
httpwwweecisudeledu~millsntphtmlindexhtmlReference
L4123Global ID
31ID
Known Mappings
123UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1038
BGPNTP
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
bull SUNRPC page 66
bull SYSLOG page 67
bull TELNET page 68
bull TFTP page 69
bull VDOLIVE page 70
bull WINMX page 71
BITTORRENTbittorrentNameCLI Keyword
BitTorrentFull Name
BitTorrent is a p2p file sharing protocol used for distributing files over theinternet It identifies content by URL and is designed to integrate seamlesslywith the web The BitTorrent protocol is based on a BitTorrent tracker (server)that initializes the connections between the clients (peers)
Description
httpjonasnitrodkbittorrentbittorrent-rfchtmlReference
L769Global ID
69ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NBAR2 Standard Protocol Pack 106
BGPBITTORRENT
NoEncrypted
NoTunnel
socksUnderlying Protocols
CITRIXcitrixNameCLI Keyword
CitrixFull Name
Citrix is an application that mediates users remotely to their corporate applicationsICA Independed Computing Architecture is a designated protocol for applicationserver system it is used for transferring data between clients and serversCGPCGP is a tunneling protocol the latest addition to the family of Citrix protocolAsof today it encapsulates ICA protocol but will be extended to other Citrix protocolsuch as RDP HTTPHTTPSIMA used for server-server communicationServer-Browser Used mainly a control connection which has PublishedApplication Name and triggers an ICA connection
Description
httpwwwcitrixcomsiteresourcesdynamicadditionalICA_Acceleration_0709apdf
Reference
L756Global ID
56ID
Known Mappings
1604UDP Port
1494251225132598TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NBAR2 Standard Protocol Pack 10 7
BGPCITRIX
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
DHCPdhcpNameCLI Keyword
Dynamic Host Configuration ProtocolFull Name
The Dynamic Host Configuration Protocol (DHCP) provides a framework forpassing configuration information to hosts on a TCPIP network The informationgiven by designated DHCP servers include IP address subnet mask and defaultgateway ADHCP server usually listens on UDP port 67 and DHCP client usuallylistens on UDP 68
Description
httpwwwietforgrfcrfc2131txtReference
L713Global ID
13ID
Known Mappings
6768UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NBAR2 Standard Protocol Pack 108
BGPDHCP
NoEncrypted
NoTunnel
-Underlying Protocols
DIRECTCONNECTdirectconnectNameCLI Keyword
Direct ConnectFull Name
Direct connect is a peer-to-peer file sharing protocol Clients connect to a mainhub that mediates them to other clients in order to download files The hubs holda database of clients and files and mediate the clients Once clients are connectedin a P2P manner they can download files and chat with one another
Description
httpwwwmetroactivecompapersmetro071201work-0128htmlReference
L770Global ID
70ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NBAR2 Standard Protocol Pack 10 9
BGPDIRECTCONNECT
NoTunnel
-Underlying Protocols
DNSdnsNameCLI Keyword
Domain Name SystemFull Name
Domain Name Server is a server that translates URLs into IP addresses basedon client queries It is based on client-server architecture
Description
httpswww1ietforgrfcrfc1035txtReference
L453Global ID
72ID
Known Mappings
53UDP Port
53TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1010
BGPDNS
EDONKEYedonkeyNameCLI Keyword
eDonkeyFull Name
eDonkey is a peer-to-peer file sharing addopted to share large files The networkis based on multiple decentralized servers each client must be connected to aserver to enter the network edonkey-static and eMule are also required to fullydetect or prevent this application traffic
Description
httpwebarchiveorgweb20010213200827wwwedonkey2000comoverviewhtml
Reference
L767Global ID
67ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 11
BGPEDONKEY
EGPegpNameCLI Keyword
Exterior Gateway ProtocolFull Name
Exterior Gateway Protocol (EGP) is a protocol used to convey networkinformation between neighboring gateways or Autonomic systems This waythe gateways acquire neighbors monitor neighbor reachability and exchangenet-reachability information in the form of Update messages EGP is IP protocolnumber 8
Description
httptoolsietforghtmlrfc904Reference
L38Global ID
4ID
Known Mappings
-UDP Port
-TCP Port
8IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1012
BGPEGP
EIGRPeigrpNameCLI Keyword
Interior Gateway Routing ProtocolFull Name
Enhanced Interior Gateway Routing Protocol (EIGRP) is an interior gatewayprotocol It is an advanced distance-vector routing protocol with optimizationsto minimize both the routing instability incurred after topology changes as wellas the use of bandwidth and processing power in the router The protocol isusually known as IP protocol 88 as default
Description
httpwwwciscocomenUStechtk365technologies_white_paper09186a0080094cb7shtml
Reference
L388Global ID
7ID
Known Mappings
-UDP Port
-TCP Port
88IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 13
BGPEIGRP
EXCHANGEexchangeNameCLI Keyword
Microsoft ExchangeFull Name
Exchange is a protocol that allows users to synchronize and connect to theirexchange server when the client is outside the organizations firewall Theunderlying protocol is RPC over HTTP
Description
httpsupportmicrosoftcomkb262986Reference
L749Global ID
49ID
Known Mappings
-UDP Port
135TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1014
BGPEXCHANGE
FASTTRACKfasttrackNameCLI Keyword
FastTrackFull Name
FastTrack is a file sharing client software that is based on peer-to-peer connectionFastTrack is used by multiple file sharing applications such as Kazaa GroksteriMesh andMorpheus Initialization Initial the connection with FastTrack serverover HTTP Search Searching for files in FastTrack server Download Downloadrequest from FastTracker server
Description
httpdeveloperberliosdeprojectsgift-fasttrackReference
L757Global ID
57ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 15
BGPFASTTRACK
FINGERfingerNameCLI Keyword
Finger ProtocolFull Name
The FingerName protocol provides an interface to the Name and Finger programsat several network sites These programs return a friendly human-oriented statusreport on either the system at the moment or a particular person in depth
Description
httpwwwietforgrfcrfc1288txtReference
L479Global ID
14ID
Known Mappings
79UDP Port
79TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1016
BGPFINGER
FTPftpNameCLI Keyword
File Transfer ProtocolFull Name
File Transfer Protocol (FTP) is used to transfer files between hosts over TCPnetworks and is based on client-server architecture An FTP server usually listenson port 21
Description
httpwwwietforgrfcrfc959txtReference
L421Global ID
2ID
Known Mappings
-UDP Port
21TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 17
BGPFTP
GNUTELLAgnutellaNameCLI Keyword
GnutellaFull Name
Gnutella ver2 is decentralized and open-source peer-to-peer file sharing protocolused by various clients such as BearShare Shareeza Morpheus etc Using aGnutella client files can be shared located and downloaded by another Gnutellaclient
Description
httprfc-gnutellasourceforgenetReference
L758Global ID
58ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1018
BGPGNUTELLA
GOPHERgopherNameCLI Keyword
GopherFull Name
Internet Gopher protocol is a protocol is a TCPIP application layer protocoldesigned for distributing searching and retrieving documents over the InternetThe protocol is based on a client-server architecture and usually uses TCP port70 as default
Description
httptoolsietforghtmlrfc1436Reference
L470Global ID
15ID
Known Mappings
70UDP Port
70TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 19
BGPGOPHER
GREgreNameCLI Keyword
Generic Route EncapsulationFull Name
Generic Routing Encapsulation (GRE) is a protocol used for encapsulation of anetwork layer over another The protocol encapsulates the packet and saves theprotocol type of the payload packet so the receivers know what network layerwas encapsulated and digests the packet respectively Usually the protocol usesIP port 47
Description
httptoolsietforghtmlrfc2784Reference
L347Global ID
5ID
Known Mappings
-UDP Port
-TCP Port
47IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1020
BGPGRE
H323h323NameCLI Keyword
H323Full Name
H323 is a recommendation from the ITU Telecommunication StandardizationSector (ITU-T) that defines the protocols to provide audio-visual communicationsessions on any packet network The H323 standard addresses call signaling andcontrol multimedia transport and control and bandwidth control for point-to-pointand multi-point conferences
Description
httpwwwh323forumorgReference
L764Global ID
64ID
Known Mappings
-UDP Port
110001100111002110031100411005110061100711008110091101011011110121101311TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 21
BGPH323
HTTPhttpNameCLI Keyword
HyperText Transfer ProtocolFull Name
Hypertext Transfer Protocol (HTTP) is a standard for communication betweenweb browsers and servers over the World Wide Web The protocol works in arequest-responsemanner over a client server computingmodel The server usuallylistens on port 80
Description
httpwwww3orgProtocolsrfc2616rfc2616htmlReference
L480Global ID
3ID
Known Mappings
-UDP Port
80TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1022
BGPHTTP
ICMPicmpNameCLI Keyword
Internet Control Message ProtocolFull Name
Internet Control Message Protocol (ICMP) messages are typically generated inresponse to errors in IP datagrams or for diagnostic or routing purposes ICMPerrors are always reported to the original source IP address of the originatingdatagram ICMP is IP protocol number 1 Traffic is classified only if its identifiedas ICMP but was not recognized as any other more granular classification suchas Ping
Description
httptoolsietforghtmlrfc792Reference
L31Global ID
6ID
Known Mappings
-UDP Port
-TCP Port
1IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 23
BGPICMP
IMAPimapNameCLI Keyword
Internet Message Access Protocol version 4Full Name
The Internet Message Acceess protocol allows users to acess their email serversand to receivesend emails The protocol simulates a local use when in-fact it isa connection to a server An IMAP server usually listens on port 143
Description
httptoolsietforghtmlrfc3501Reference
L4143Global ID
17ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1024
BGPIMAP
IPINIPipinipNameCLI Keyword
IP in IPFull Name
IP in IP tunneling is a protocol used to encapsulate IP headers to a different IPheader to share information between endpoints in different internet-networks(for example forwarding traffic from one intranet to another)
Description
httptoolsietforghtmlrfc1853Reference
L34Global ID
8ID
Known Mappings
-UDP Port
-TCP Port
4IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 25
BGPIPINIP
IPV6-ICMPipv6-icmpNameCLI Keyword
ICMP for IPv6Full Name
Internet Control Message Protocol version 6 (ICMPv6) is the implementation ofthe Internet Control Message Protocol (ICMP) for Internet Protocol version 6(IPv6) ICMPv6 is an integral part of IPv6 and performs error reporting diagnosticfunctions (eg ping) and a framework for extensions to implement futurechanges
Description
httptoolsietforghtmlrfc4443Reference
L358Global ID
812ID
Known Mappings
-UDP Port
-TCP Port
58IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1026
BGPIPV6-ICMP
IRCircNameCLI Keyword
Internet Relay ChatFull Name
Internet Relay Chat (IRC) protocol is used for chat messaging in real time It canbe used for conferencing or one-on-one chatting The protocol works onclient-server architecture with a distributed manner An IRC server usually listenson TCP port 194
Description
httpwwwirchelporgirchelprfcrfchtmlReference
L4194Global ID
19ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
httpUnderlying Protocols
NBAR2 Standard Protocol Pack 10 27
BGPIRC
KAZAA2kazaa2NameCLI Keyword
Kazaa2Full Name
Kazaa is an online music subscription service that is based on second generationpeer-to-peer technology FastTracker
Description
httpwwwkazaacomaboutReference
L759Global ID
59ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1028
BGPKAZAA2
KERBEROSkerberosNameCLI Keyword
KerberosFull Name
Kerberos is a network authentication protocol The protocol is used to verifyidentities over the internet using a trusted third party Extensions of the protocolalso use the exchange of cryptographic certification of a public key Usually theprotocol uses TCPUDP ports 88749 as default
Description
httpwwwietforgrfcrfc4120txtReference
L488Global ID
21ID
Known Mappings
88749UDP Port
88749TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 29
BGPKERBEROS
L2TPl2tpNameCLI Keyword
Layer 2 Tunneling ProtocolFull Name
Layer 2 Tunneling Protocol (L2TP) is a tunneling protocol used to support virtualprivate networks (VPNs) or as part of the delivery of services by ISPs It doesnot provide any encryption or confidentiality by itself it relies on an encryptionprotocol that it passes within the tunnel to provide privacy
Description
httptoolsietforghtmlrfc2661Reference
L4115Global ID
22ID
Known Mappings
1701UDP Port
1701TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1030
BGPL2TP
LDAPldapNameCLI Keyword
Lightweight Directory Access ProtocolFull Name
Lightweight Directory Access Protocol (LDAP) is a protocol designed to toaccess distributed directory services Typically it uses port 389 for TCP andUDP
Description
httptoolsietforghtmlrfc4510Reference
L4389Global ID
23ID
Known Mappings
389UDP Port
389TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 31
BGPLDAP
MGCPmgcpNameCLI Keyword
Media Gateway Control ProtocolFull Name
Media Gateway Control Protocol (MGCP) 10 is a protocol for the control ofVoice over IP (VoIP) calls by external call-control elements known as MediaGateway Controllers (MGCs) or Call Agents (CAs)
Description
httpwwwpacketizercomrfcrfc3435Reference
L762Global ID
62ID
Known Mappings
24272727UDP Port
242724282727TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1032
BGPMGCP
NETBIOSnetbiosNameCLI Keyword
Network Basic InputOutput SystemFull Name
Network Basic InputOutput System (NetBIOS) provides services related to thesession layer of the OSI model allowing applications on separate computers tocommunicate over a local area network As strictly an API NetBIOS is not anetworking protocol In modern networks NetBIOS normally runs over TCPIPvia the NetBIOS over TCPIP (NBT) protocol This results in each computer inthe network having both an IP address and a NetBIOS name corresponding to a(possibly different) host name
Description
httptoolsietforghtmlrfc1001Reference
L726Global ID
26ID
Known Mappings
137138UDP Port
137139TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 33
BGPNETBIOS
NETSHOWnetshowNameCLI Keyword
NetShowFull Name
Netshow is a Microsoft software designed to stream media over intranets andthe internet NetShow can transfer livemulticast and on-demand streamed audioillustrated audio and video Typically Netshow uses TCP port 1755 and UDPports between 1024-5000
Description
httpwwwmicrosoftcompresspasspress1997mar97nsbta2prmspxReference
L7426Global ID
53ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1034
BGPNETSHOW
NFSnfsNameCLI Keyword
Network File SystemFull Name
Network File System (NFS) is a distributed file system developed by SunMicrosystems Inc that allows users to access and modify files remotly as if itwas a local file The protocol is based on client server architecture and typicallyuses TCPUDP port 2049
Description
httpwwwietforgrfcrfc3530txtReference
L42049Global ID
27ID
Known Mappings
2049UDP Port
2049TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
NoUnderlying Protocols
NBAR2 Standard Protocol Pack 10 35
BGPNFS
NNTPnntpNameCLI Keyword
Network News Transfer ProtocolFull Name
Network News Transfer Protocol (NNTP) is an internet transfer protocol usedfor readingposting Usenet articles and transferring them between news serversUsually the TCP port is 119 while nntp over SSL TCPUDP port is 563
Description
httptoolsietforghtmlrfc3977Reference
L4119Global ID
28ID
Known Mappings
119UDP Port
119TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1036
BGPNNTP
NOTESnotesNameCLI Keyword
IBM Lotus NotesFull Name
IBM Lotus Notes is the client of a collaborative client-server platform IBMLotus Domino is the application server Lotus Notes provides integratedcollaboration functionality including email calendaring contacts managementto do tracking instant messaging an office productivity suite (IBM LotusSymphony) and access to other Lotus Domino applications and databases
Description
httpwww-01ibmcomsoftwarelotusnotesanddominoReference
L41352Global ID
30ID
Known Mappings
1352UDP Port
1352TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 37
BGPNOTES
NTPntpNameCLI Keyword
Network Time ProtocolFull Name
The Network Time Protocol is a protocol for synchronizing the system clocksof distributed computer systems over packet-switched variable-latency datanetworks Usually the UDP port used is 123
Description
httpwwweecisudeledu~millsntphtmlindexhtmlReference
L4123Global ID
31ID
Known Mappings
123UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1038
BGPNTP
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
NoEncrypted
NoTunnel
socksUnderlying Protocols
CITRIXcitrixNameCLI Keyword
CitrixFull Name
Citrix is an application that mediates users remotely to their corporate applicationsICA Independed Computing Architecture is a designated protocol for applicationserver system it is used for transferring data between clients and serversCGPCGP is a tunneling protocol the latest addition to the family of Citrix protocolAsof today it encapsulates ICA protocol but will be extended to other Citrix protocolsuch as RDP HTTPHTTPSIMA used for server-server communicationServer-Browser Used mainly a control connection which has PublishedApplication Name and triggers an ICA connection
Description
httpwwwcitrixcomsiteresourcesdynamicadditionalICA_Acceleration_0709apdf
Reference
L756Global ID
56ID
Known Mappings
1604UDP Port
1494251225132598TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NBAR2 Standard Protocol Pack 10 7
BGPCITRIX
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
DHCPdhcpNameCLI Keyword
Dynamic Host Configuration ProtocolFull Name
The Dynamic Host Configuration Protocol (DHCP) provides a framework forpassing configuration information to hosts on a TCPIP network The informationgiven by designated DHCP servers include IP address subnet mask and defaultgateway ADHCP server usually listens on UDP port 67 and DHCP client usuallylistens on UDP 68
Description
httpwwwietforgrfcrfc2131txtReference
L713Global ID
13ID
Known Mappings
6768UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NBAR2 Standard Protocol Pack 108
BGPDHCP
NoEncrypted
NoTunnel
-Underlying Protocols
DIRECTCONNECTdirectconnectNameCLI Keyword
Direct ConnectFull Name
Direct connect is a peer-to-peer file sharing protocol Clients connect to a mainhub that mediates them to other clients in order to download files The hubs holda database of clients and files and mediate the clients Once clients are connectedin a P2P manner they can download files and chat with one another
Description
httpwwwmetroactivecompapersmetro071201work-0128htmlReference
L770Global ID
70ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NBAR2 Standard Protocol Pack 10 9
BGPDIRECTCONNECT
NoTunnel
-Underlying Protocols
DNSdnsNameCLI Keyword
Domain Name SystemFull Name
Domain Name Server is a server that translates URLs into IP addresses basedon client queries It is based on client-server architecture
Description
httpswww1ietforgrfcrfc1035txtReference
L453Global ID
72ID
Known Mappings
53UDP Port
53TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1010
BGPDNS
EDONKEYedonkeyNameCLI Keyword
eDonkeyFull Name
eDonkey is a peer-to-peer file sharing addopted to share large files The networkis based on multiple decentralized servers each client must be connected to aserver to enter the network edonkey-static and eMule are also required to fullydetect or prevent this application traffic
Description
httpwebarchiveorgweb20010213200827wwwedonkey2000comoverviewhtml
Reference
L767Global ID
67ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 11
BGPEDONKEY
EGPegpNameCLI Keyword
Exterior Gateway ProtocolFull Name
Exterior Gateway Protocol (EGP) is a protocol used to convey networkinformation between neighboring gateways or Autonomic systems This waythe gateways acquire neighbors monitor neighbor reachability and exchangenet-reachability information in the form of Update messages EGP is IP protocolnumber 8
Description
httptoolsietforghtmlrfc904Reference
L38Global ID
4ID
Known Mappings
-UDP Port
-TCP Port
8IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1012
BGPEGP
EIGRPeigrpNameCLI Keyword
Interior Gateway Routing ProtocolFull Name
Enhanced Interior Gateway Routing Protocol (EIGRP) is an interior gatewayprotocol It is an advanced distance-vector routing protocol with optimizationsto minimize both the routing instability incurred after topology changes as wellas the use of bandwidth and processing power in the router The protocol isusually known as IP protocol 88 as default
Description
httpwwwciscocomenUStechtk365technologies_white_paper09186a0080094cb7shtml
Reference
L388Global ID
7ID
Known Mappings
-UDP Port
-TCP Port
88IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 13
BGPEIGRP
EXCHANGEexchangeNameCLI Keyword
Microsoft ExchangeFull Name
Exchange is a protocol that allows users to synchronize and connect to theirexchange server when the client is outside the organizations firewall Theunderlying protocol is RPC over HTTP
Description
httpsupportmicrosoftcomkb262986Reference
L749Global ID
49ID
Known Mappings
-UDP Port
135TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1014
BGPEXCHANGE
FASTTRACKfasttrackNameCLI Keyword
FastTrackFull Name
FastTrack is a file sharing client software that is based on peer-to-peer connectionFastTrack is used by multiple file sharing applications such as Kazaa GroksteriMesh andMorpheus Initialization Initial the connection with FastTrack serverover HTTP Search Searching for files in FastTrack server Download Downloadrequest from FastTracker server
Description
httpdeveloperberliosdeprojectsgift-fasttrackReference
L757Global ID
57ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 15
BGPFASTTRACK
FINGERfingerNameCLI Keyword
Finger ProtocolFull Name
The FingerName protocol provides an interface to the Name and Finger programsat several network sites These programs return a friendly human-oriented statusreport on either the system at the moment or a particular person in depth
Description
httpwwwietforgrfcrfc1288txtReference
L479Global ID
14ID
Known Mappings
79UDP Port
79TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1016
BGPFINGER
FTPftpNameCLI Keyword
File Transfer ProtocolFull Name
File Transfer Protocol (FTP) is used to transfer files between hosts over TCPnetworks and is based on client-server architecture An FTP server usually listenson port 21
Description
httpwwwietforgrfcrfc959txtReference
L421Global ID
2ID
Known Mappings
-UDP Port
21TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 17
BGPFTP
GNUTELLAgnutellaNameCLI Keyword
GnutellaFull Name
Gnutella ver2 is decentralized and open-source peer-to-peer file sharing protocolused by various clients such as BearShare Shareeza Morpheus etc Using aGnutella client files can be shared located and downloaded by another Gnutellaclient
Description
httprfc-gnutellasourceforgenetReference
L758Global ID
58ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1018
BGPGNUTELLA
GOPHERgopherNameCLI Keyword
GopherFull Name
Internet Gopher protocol is a protocol is a TCPIP application layer protocoldesigned for distributing searching and retrieving documents over the InternetThe protocol is based on a client-server architecture and usually uses TCP port70 as default
Description
httptoolsietforghtmlrfc1436Reference
L470Global ID
15ID
Known Mappings
70UDP Port
70TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 19
BGPGOPHER
GREgreNameCLI Keyword
Generic Route EncapsulationFull Name
Generic Routing Encapsulation (GRE) is a protocol used for encapsulation of anetwork layer over another The protocol encapsulates the packet and saves theprotocol type of the payload packet so the receivers know what network layerwas encapsulated and digests the packet respectively Usually the protocol usesIP port 47
Description
httptoolsietforghtmlrfc2784Reference
L347Global ID
5ID
Known Mappings
-UDP Port
-TCP Port
47IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1020
BGPGRE
H323h323NameCLI Keyword
H323Full Name
H323 is a recommendation from the ITU Telecommunication StandardizationSector (ITU-T) that defines the protocols to provide audio-visual communicationsessions on any packet network The H323 standard addresses call signaling andcontrol multimedia transport and control and bandwidth control for point-to-pointand multi-point conferences
Description
httpwwwh323forumorgReference
L764Global ID
64ID
Known Mappings
-UDP Port
110001100111002110031100411005110061100711008110091101011011110121101311TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 21
BGPH323
HTTPhttpNameCLI Keyword
HyperText Transfer ProtocolFull Name
Hypertext Transfer Protocol (HTTP) is a standard for communication betweenweb browsers and servers over the World Wide Web The protocol works in arequest-responsemanner over a client server computingmodel The server usuallylistens on port 80
Description
httpwwww3orgProtocolsrfc2616rfc2616htmlReference
L480Global ID
3ID
Known Mappings
-UDP Port
80TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1022
BGPHTTP
ICMPicmpNameCLI Keyword
Internet Control Message ProtocolFull Name
Internet Control Message Protocol (ICMP) messages are typically generated inresponse to errors in IP datagrams or for diagnostic or routing purposes ICMPerrors are always reported to the original source IP address of the originatingdatagram ICMP is IP protocol number 1 Traffic is classified only if its identifiedas ICMP but was not recognized as any other more granular classification suchas Ping
Description
httptoolsietforghtmlrfc792Reference
L31Global ID
6ID
Known Mappings
-UDP Port
-TCP Port
1IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 23
BGPICMP
IMAPimapNameCLI Keyword
Internet Message Access Protocol version 4Full Name
The Internet Message Acceess protocol allows users to acess their email serversand to receivesend emails The protocol simulates a local use when in-fact it isa connection to a server An IMAP server usually listens on port 143
Description
httptoolsietforghtmlrfc3501Reference
L4143Global ID
17ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1024
BGPIMAP
IPINIPipinipNameCLI Keyword
IP in IPFull Name
IP in IP tunneling is a protocol used to encapsulate IP headers to a different IPheader to share information between endpoints in different internet-networks(for example forwarding traffic from one intranet to another)
Description
httptoolsietforghtmlrfc1853Reference
L34Global ID
8ID
Known Mappings
-UDP Port
-TCP Port
4IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 25
BGPIPINIP
IPV6-ICMPipv6-icmpNameCLI Keyword
ICMP for IPv6Full Name
Internet Control Message Protocol version 6 (ICMPv6) is the implementation ofthe Internet Control Message Protocol (ICMP) for Internet Protocol version 6(IPv6) ICMPv6 is an integral part of IPv6 and performs error reporting diagnosticfunctions (eg ping) and a framework for extensions to implement futurechanges
Description
httptoolsietforghtmlrfc4443Reference
L358Global ID
812ID
Known Mappings
-UDP Port
-TCP Port
58IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1026
BGPIPV6-ICMP
IRCircNameCLI Keyword
Internet Relay ChatFull Name
Internet Relay Chat (IRC) protocol is used for chat messaging in real time It canbe used for conferencing or one-on-one chatting The protocol works onclient-server architecture with a distributed manner An IRC server usually listenson TCP port 194
Description
httpwwwirchelporgirchelprfcrfchtmlReference
L4194Global ID
19ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
httpUnderlying Protocols
NBAR2 Standard Protocol Pack 10 27
BGPIRC
KAZAA2kazaa2NameCLI Keyword
Kazaa2Full Name
Kazaa is an online music subscription service that is based on second generationpeer-to-peer technology FastTracker
Description
httpwwwkazaacomaboutReference
L759Global ID
59ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1028
BGPKAZAA2
KERBEROSkerberosNameCLI Keyword
KerberosFull Name
Kerberos is a network authentication protocol The protocol is used to verifyidentities over the internet using a trusted third party Extensions of the protocolalso use the exchange of cryptographic certification of a public key Usually theprotocol uses TCPUDP ports 88749 as default
Description
httpwwwietforgrfcrfc4120txtReference
L488Global ID
21ID
Known Mappings
88749UDP Port
88749TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 29
BGPKERBEROS
L2TPl2tpNameCLI Keyword
Layer 2 Tunneling ProtocolFull Name
Layer 2 Tunneling Protocol (L2TP) is a tunneling protocol used to support virtualprivate networks (VPNs) or as part of the delivery of services by ISPs It doesnot provide any encryption or confidentiality by itself it relies on an encryptionprotocol that it passes within the tunnel to provide privacy
Description
httptoolsietforghtmlrfc2661Reference
L4115Global ID
22ID
Known Mappings
1701UDP Port
1701TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1030
BGPL2TP
LDAPldapNameCLI Keyword
Lightweight Directory Access ProtocolFull Name
Lightweight Directory Access Protocol (LDAP) is a protocol designed to toaccess distributed directory services Typically it uses port 389 for TCP andUDP
Description
httptoolsietforghtmlrfc4510Reference
L4389Global ID
23ID
Known Mappings
389UDP Port
389TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 31
BGPLDAP
MGCPmgcpNameCLI Keyword
Media Gateway Control ProtocolFull Name
Media Gateway Control Protocol (MGCP) 10 is a protocol for the control ofVoice over IP (VoIP) calls by external call-control elements known as MediaGateway Controllers (MGCs) or Call Agents (CAs)
Description
httpwwwpacketizercomrfcrfc3435Reference
L762Global ID
62ID
Known Mappings
24272727UDP Port
242724282727TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1032
BGPMGCP
NETBIOSnetbiosNameCLI Keyword
Network Basic InputOutput SystemFull Name
Network Basic InputOutput System (NetBIOS) provides services related to thesession layer of the OSI model allowing applications on separate computers tocommunicate over a local area network As strictly an API NetBIOS is not anetworking protocol In modern networks NetBIOS normally runs over TCPIPvia the NetBIOS over TCPIP (NBT) protocol This results in each computer inthe network having both an IP address and a NetBIOS name corresponding to a(possibly different) host name
Description
httptoolsietforghtmlrfc1001Reference
L726Global ID
26ID
Known Mappings
137138UDP Port
137139TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 33
BGPNETBIOS
NETSHOWnetshowNameCLI Keyword
NetShowFull Name
Netshow is a Microsoft software designed to stream media over intranets andthe internet NetShow can transfer livemulticast and on-demand streamed audioillustrated audio and video Typically Netshow uses TCP port 1755 and UDPports between 1024-5000
Description
httpwwwmicrosoftcompresspasspress1997mar97nsbta2prmspxReference
L7426Global ID
53ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1034
BGPNETSHOW
NFSnfsNameCLI Keyword
Network File SystemFull Name
Network File System (NFS) is a distributed file system developed by SunMicrosystems Inc that allows users to access and modify files remotly as if itwas a local file The protocol is based on client server architecture and typicallyuses TCPUDP port 2049
Description
httpwwwietforgrfcrfc3530txtReference
L42049Global ID
27ID
Known Mappings
2049UDP Port
2049TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
NoUnderlying Protocols
NBAR2 Standard Protocol Pack 10 35
BGPNFS
NNTPnntpNameCLI Keyword
Network News Transfer ProtocolFull Name
Network News Transfer Protocol (NNTP) is an internet transfer protocol usedfor readingposting Usenet articles and transferring them between news serversUsually the TCP port is 119 while nntp over SSL TCPUDP port is 563
Description
httptoolsietforghtmlrfc3977Reference
L4119Global ID
28ID
Known Mappings
119UDP Port
119TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1036
BGPNNTP
NOTESnotesNameCLI Keyword
IBM Lotus NotesFull Name
IBM Lotus Notes is the client of a collaborative client-server platform IBMLotus Domino is the application server Lotus Notes provides integratedcollaboration functionality including email calendaring contacts managementto do tracking instant messaging an office productivity suite (IBM LotusSymphony) and access to other Lotus Domino applications and databases
Description
httpwww-01ibmcomsoftwarelotusnotesanddominoReference
L41352Global ID
30ID
Known Mappings
1352UDP Port
1352TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 37
BGPNOTES
NTPntpNameCLI Keyword
Network Time ProtocolFull Name
The Network Time Protocol is a protocol for synchronizing the system clocksof distributed computer systems over packet-switched variable-latency datanetworks Usually the UDP port used is 123
Description
httpwwweecisudeledu~millsntphtmlindexhtmlReference
L4123Global ID
31ID
Known Mappings
123UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1038
BGPNTP
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
DHCPdhcpNameCLI Keyword
Dynamic Host Configuration ProtocolFull Name
The Dynamic Host Configuration Protocol (DHCP) provides a framework forpassing configuration information to hosts on a TCPIP network The informationgiven by designated DHCP servers include IP address subnet mask and defaultgateway ADHCP server usually listens on UDP port 67 and DHCP client usuallylistens on UDP 68
Description
httpwwwietforgrfcrfc2131txtReference
L713Global ID
13ID
Known Mappings
6768UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NBAR2 Standard Protocol Pack 108
BGPDHCP
NoEncrypted
NoTunnel
-Underlying Protocols
DIRECTCONNECTdirectconnectNameCLI Keyword
Direct ConnectFull Name
Direct connect is a peer-to-peer file sharing protocol Clients connect to a mainhub that mediates them to other clients in order to download files The hubs holda database of clients and files and mediate the clients Once clients are connectedin a P2P manner they can download files and chat with one another
Description
httpwwwmetroactivecompapersmetro071201work-0128htmlReference
L770Global ID
70ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NBAR2 Standard Protocol Pack 10 9
BGPDIRECTCONNECT
NoTunnel
-Underlying Protocols
DNSdnsNameCLI Keyword
Domain Name SystemFull Name
Domain Name Server is a server that translates URLs into IP addresses basedon client queries It is based on client-server architecture
Description
httpswww1ietforgrfcrfc1035txtReference
L453Global ID
72ID
Known Mappings
53UDP Port
53TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1010
BGPDNS
EDONKEYedonkeyNameCLI Keyword
eDonkeyFull Name
eDonkey is a peer-to-peer file sharing addopted to share large files The networkis based on multiple decentralized servers each client must be connected to aserver to enter the network edonkey-static and eMule are also required to fullydetect or prevent this application traffic
Description
httpwebarchiveorgweb20010213200827wwwedonkey2000comoverviewhtml
Reference
L767Global ID
67ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 11
BGPEDONKEY
EGPegpNameCLI Keyword
Exterior Gateway ProtocolFull Name
Exterior Gateway Protocol (EGP) is a protocol used to convey networkinformation between neighboring gateways or Autonomic systems This waythe gateways acquire neighbors monitor neighbor reachability and exchangenet-reachability information in the form of Update messages EGP is IP protocolnumber 8
Description
httptoolsietforghtmlrfc904Reference
L38Global ID
4ID
Known Mappings
-UDP Port
-TCP Port
8IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1012
BGPEGP
EIGRPeigrpNameCLI Keyword
Interior Gateway Routing ProtocolFull Name
Enhanced Interior Gateway Routing Protocol (EIGRP) is an interior gatewayprotocol It is an advanced distance-vector routing protocol with optimizationsto minimize both the routing instability incurred after topology changes as wellas the use of bandwidth and processing power in the router The protocol isusually known as IP protocol 88 as default
Description
httpwwwciscocomenUStechtk365technologies_white_paper09186a0080094cb7shtml
Reference
L388Global ID
7ID
Known Mappings
-UDP Port
-TCP Port
88IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 13
BGPEIGRP
EXCHANGEexchangeNameCLI Keyword
Microsoft ExchangeFull Name
Exchange is a protocol that allows users to synchronize and connect to theirexchange server when the client is outside the organizations firewall Theunderlying protocol is RPC over HTTP
Description
httpsupportmicrosoftcomkb262986Reference
L749Global ID
49ID
Known Mappings
-UDP Port
135TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1014
BGPEXCHANGE
FASTTRACKfasttrackNameCLI Keyword
FastTrackFull Name
FastTrack is a file sharing client software that is based on peer-to-peer connectionFastTrack is used by multiple file sharing applications such as Kazaa GroksteriMesh andMorpheus Initialization Initial the connection with FastTrack serverover HTTP Search Searching for files in FastTrack server Download Downloadrequest from FastTracker server
Description
httpdeveloperberliosdeprojectsgift-fasttrackReference
L757Global ID
57ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 15
BGPFASTTRACK
FINGERfingerNameCLI Keyword
Finger ProtocolFull Name
The FingerName protocol provides an interface to the Name and Finger programsat several network sites These programs return a friendly human-oriented statusreport on either the system at the moment or a particular person in depth
Description
httpwwwietforgrfcrfc1288txtReference
L479Global ID
14ID
Known Mappings
79UDP Port
79TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1016
BGPFINGER
FTPftpNameCLI Keyword
File Transfer ProtocolFull Name
File Transfer Protocol (FTP) is used to transfer files between hosts over TCPnetworks and is based on client-server architecture An FTP server usually listenson port 21
Description
httpwwwietforgrfcrfc959txtReference
L421Global ID
2ID
Known Mappings
-UDP Port
21TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 17
BGPFTP
GNUTELLAgnutellaNameCLI Keyword
GnutellaFull Name
Gnutella ver2 is decentralized and open-source peer-to-peer file sharing protocolused by various clients such as BearShare Shareeza Morpheus etc Using aGnutella client files can be shared located and downloaded by another Gnutellaclient
Description
httprfc-gnutellasourceforgenetReference
L758Global ID
58ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1018
BGPGNUTELLA
GOPHERgopherNameCLI Keyword
GopherFull Name
Internet Gopher protocol is a protocol is a TCPIP application layer protocoldesigned for distributing searching and retrieving documents over the InternetThe protocol is based on a client-server architecture and usually uses TCP port70 as default
Description
httptoolsietforghtmlrfc1436Reference
L470Global ID
15ID
Known Mappings
70UDP Port
70TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 19
BGPGOPHER
GREgreNameCLI Keyword
Generic Route EncapsulationFull Name
Generic Routing Encapsulation (GRE) is a protocol used for encapsulation of anetwork layer over another The protocol encapsulates the packet and saves theprotocol type of the payload packet so the receivers know what network layerwas encapsulated and digests the packet respectively Usually the protocol usesIP port 47
Description
httptoolsietforghtmlrfc2784Reference
L347Global ID
5ID
Known Mappings
-UDP Port
-TCP Port
47IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1020
BGPGRE
H323h323NameCLI Keyword
H323Full Name
H323 is a recommendation from the ITU Telecommunication StandardizationSector (ITU-T) that defines the protocols to provide audio-visual communicationsessions on any packet network The H323 standard addresses call signaling andcontrol multimedia transport and control and bandwidth control for point-to-pointand multi-point conferences
Description
httpwwwh323forumorgReference
L764Global ID
64ID
Known Mappings
-UDP Port
110001100111002110031100411005110061100711008110091101011011110121101311TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 21
BGPH323
HTTPhttpNameCLI Keyword
HyperText Transfer ProtocolFull Name
Hypertext Transfer Protocol (HTTP) is a standard for communication betweenweb browsers and servers over the World Wide Web The protocol works in arequest-responsemanner over a client server computingmodel The server usuallylistens on port 80
Description
httpwwww3orgProtocolsrfc2616rfc2616htmlReference
L480Global ID
3ID
Known Mappings
-UDP Port
80TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1022
BGPHTTP
ICMPicmpNameCLI Keyword
Internet Control Message ProtocolFull Name
Internet Control Message Protocol (ICMP) messages are typically generated inresponse to errors in IP datagrams or for diagnostic or routing purposes ICMPerrors are always reported to the original source IP address of the originatingdatagram ICMP is IP protocol number 1 Traffic is classified only if its identifiedas ICMP but was not recognized as any other more granular classification suchas Ping
Description
httptoolsietforghtmlrfc792Reference
L31Global ID
6ID
Known Mappings
-UDP Port
-TCP Port
1IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 23
BGPICMP
IMAPimapNameCLI Keyword
Internet Message Access Protocol version 4Full Name
The Internet Message Acceess protocol allows users to acess their email serversand to receivesend emails The protocol simulates a local use when in-fact it isa connection to a server An IMAP server usually listens on port 143
Description
httptoolsietforghtmlrfc3501Reference
L4143Global ID
17ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1024
BGPIMAP
IPINIPipinipNameCLI Keyword
IP in IPFull Name
IP in IP tunneling is a protocol used to encapsulate IP headers to a different IPheader to share information between endpoints in different internet-networks(for example forwarding traffic from one intranet to another)
Description
httptoolsietforghtmlrfc1853Reference
L34Global ID
8ID
Known Mappings
-UDP Port
-TCP Port
4IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 25
BGPIPINIP
IPV6-ICMPipv6-icmpNameCLI Keyword
ICMP for IPv6Full Name
Internet Control Message Protocol version 6 (ICMPv6) is the implementation ofthe Internet Control Message Protocol (ICMP) for Internet Protocol version 6(IPv6) ICMPv6 is an integral part of IPv6 and performs error reporting diagnosticfunctions (eg ping) and a framework for extensions to implement futurechanges
Description
httptoolsietforghtmlrfc4443Reference
L358Global ID
812ID
Known Mappings
-UDP Port
-TCP Port
58IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1026
BGPIPV6-ICMP
IRCircNameCLI Keyword
Internet Relay ChatFull Name
Internet Relay Chat (IRC) protocol is used for chat messaging in real time It canbe used for conferencing or one-on-one chatting The protocol works onclient-server architecture with a distributed manner An IRC server usually listenson TCP port 194
Description
httpwwwirchelporgirchelprfcrfchtmlReference
L4194Global ID
19ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
httpUnderlying Protocols
NBAR2 Standard Protocol Pack 10 27
BGPIRC
KAZAA2kazaa2NameCLI Keyword
Kazaa2Full Name
Kazaa is an online music subscription service that is based on second generationpeer-to-peer technology FastTracker
Description
httpwwwkazaacomaboutReference
L759Global ID
59ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1028
BGPKAZAA2
KERBEROSkerberosNameCLI Keyword
KerberosFull Name
Kerberos is a network authentication protocol The protocol is used to verifyidentities over the internet using a trusted third party Extensions of the protocolalso use the exchange of cryptographic certification of a public key Usually theprotocol uses TCPUDP ports 88749 as default
Description
httpwwwietforgrfcrfc4120txtReference
L488Global ID
21ID
Known Mappings
88749UDP Port
88749TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 29
BGPKERBEROS
L2TPl2tpNameCLI Keyword
Layer 2 Tunneling ProtocolFull Name
Layer 2 Tunneling Protocol (L2TP) is a tunneling protocol used to support virtualprivate networks (VPNs) or as part of the delivery of services by ISPs It doesnot provide any encryption or confidentiality by itself it relies on an encryptionprotocol that it passes within the tunnel to provide privacy
Description
httptoolsietforghtmlrfc2661Reference
L4115Global ID
22ID
Known Mappings
1701UDP Port
1701TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1030
BGPL2TP
LDAPldapNameCLI Keyword
Lightweight Directory Access ProtocolFull Name
Lightweight Directory Access Protocol (LDAP) is a protocol designed to toaccess distributed directory services Typically it uses port 389 for TCP andUDP
Description
httptoolsietforghtmlrfc4510Reference
L4389Global ID
23ID
Known Mappings
389UDP Port
389TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 31
BGPLDAP
MGCPmgcpNameCLI Keyword
Media Gateway Control ProtocolFull Name
Media Gateway Control Protocol (MGCP) 10 is a protocol for the control ofVoice over IP (VoIP) calls by external call-control elements known as MediaGateway Controllers (MGCs) or Call Agents (CAs)
Description
httpwwwpacketizercomrfcrfc3435Reference
L762Global ID
62ID
Known Mappings
24272727UDP Port
242724282727TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1032
BGPMGCP
NETBIOSnetbiosNameCLI Keyword
Network Basic InputOutput SystemFull Name
Network Basic InputOutput System (NetBIOS) provides services related to thesession layer of the OSI model allowing applications on separate computers tocommunicate over a local area network As strictly an API NetBIOS is not anetworking protocol In modern networks NetBIOS normally runs over TCPIPvia the NetBIOS over TCPIP (NBT) protocol This results in each computer inthe network having both an IP address and a NetBIOS name corresponding to a(possibly different) host name
Description
httptoolsietforghtmlrfc1001Reference
L726Global ID
26ID
Known Mappings
137138UDP Port
137139TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 33
BGPNETBIOS
NETSHOWnetshowNameCLI Keyword
NetShowFull Name
Netshow is a Microsoft software designed to stream media over intranets andthe internet NetShow can transfer livemulticast and on-demand streamed audioillustrated audio and video Typically Netshow uses TCP port 1755 and UDPports between 1024-5000
Description
httpwwwmicrosoftcompresspasspress1997mar97nsbta2prmspxReference
L7426Global ID
53ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1034
BGPNETSHOW
NFSnfsNameCLI Keyword
Network File SystemFull Name
Network File System (NFS) is a distributed file system developed by SunMicrosystems Inc that allows users to access and modify files remotly as if itwas a local file The protocol is based on client server architecture and typicallyuses TCPUDP port 2049
Description
httpwwwietforgrfcrfc3530txtReference
L42049Global ID
27ID
Known Mappings
2049UDP Port
2049TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
NoUnderlying Protocols
NBAR2 Standard Protocol Pack 10 35
BGPNFS
NNTPnntpNameCLI Keyword
Network News Transfer ProtocolFull Name
Network News Transfer Protocol (NNTP) is an internet transfer protocol usedfor readingposting Usenet articles and transferring them between news serversUsually the TCP port is 119 while nntp over SSL TCPUDP port is 563
Description
httptoolsietforghtmlrfc3977Reference
L4119Global ID
28ID
Known Mappings
119UDP Port
119TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1036
BGPNNTP
NOTESnotesNameCLI Keyword
IBM Lotus NotesFull Name
IBM Lotus Notes is the client of a collaborative client-server platform IBMLotus Domino is the application server Lotus Notes provides integratedcollaboration functionality including email calendaring contacts managementto do tracking instant messaging an office productivity suite (IBM LotusSymphony) and access to other Lotus Domino applications and databases
Description
httpwww-01ibmcomsoftwarelotusnotesanddominoReference
L41352Global ID
30ID
Known Mappings
1352UDP Port
1352TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 37
BGPNOTES
NTPntpNameCLI Keyword
Network Time ProtocolFull Name
The Network Time Protocol is a protocol for synchronizing the system clocksof distributed computer systems over packet-switched variable-latency datanetworks Usually the UDP port used is 123
Description
httpwwweecisudeledu~millsntphtmlindexhtmlReference
L4123Global ID
31ID
Known Mappings
123UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1038
BGPNTP
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
NoEncrypted
NoTunnel
-Underlying Protocols
DIRECTCONNECTdirectconnectNameCLI Keyword
Direct ConnectFull Name
Direct connect is a peer-to-peer file sharing protocol Clients connect to a mainhub that mediates them to other clients in order to download files The hubs holda database of clients and files and mediate the clients Once clients are connectedin a P2P manner they can download files and chat with one another
Description
httpwwwmetroactivecompapersmetro071201work-0128htmlReference
L770Global ID
70ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NBAR2 Standard Protocol Pack 10 9
BGPDIRECTCONNECT
NoTunnel
-Underlying Protocols
DNSdnsNameCLI Keyword
Domain Name SystemFull Name
Domain Name Server is a server that translates URLs into IP addresses basedon client queries It is based on client-server architecture
Description
httpswww1ietforgrfcrfc1035txtReference
L453Global ID
72ID
Known Mappings
53UDP Port
53TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1010
BGPDNS
EDONKEYedonkeyNameCLI Keyword
eDonkeyFull Name
eDonkey is a peer-to-peer file sharing addopted to share large files The networkis based on multiple decentralized servers each client must be connected to aserver to enter the network edonkey-static and eMule are also required to fullydetect or prevent this application traffic
Description
httpwebarchiveorgweb20010213200827wwwedonkey2000comoverviewhtml
Reference
L767Global ID
67ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 11
BGPEDONKEY
EGPegpNameCLI Keyword
Exterior Gateway ProtocolFull Name
Exterior Gateway Protocol (EGP) is a protocol used to convey networkinformation between neighboring gateways or Autonomic systems This waythe gateways acquire neighbors monitor neighbor reachability and exchangenet-reachability information in the form of Update messages EGP is IP protocolnumber 8
Description
httptoolsietforghtmlrfc904Reference
L38Global ID
4ID
Known Mappings
-UDP Port
-TCP Port
8IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1012
BGPEGP
EIGRPeigrpNameCLI Keyword
Interior Gateway Routing ProtocolFull Name
Enhanced Interior Gateway Routing Protocol (EIGRP) is an interior gatewayprotocol It is an advanced distance-vector routing protocol with optimizationsto minimize both the routing instability incurred after topology changes as wellas the use of bandwidth and processing power in the router The protocol isusually known as IP protocol 88 as default
Description
httpwwwciscocomenUStechtk365technologies_white_paper09186a0080094cb7shtml
Reference
L388Global ID
7ID
Known Mappings
-UDP Port
-TCP Port
88IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 13
BGPEIGRP
EXCHANGEexchangeNameCLI Keyword
Microsoft ExchangeFull Name
Exchange is a protocol that allows users to synchronize and connect to theirexchange server when the client is outside the organizations firewall Theunderlying protocol is RPC over HTTP
Description
httpsupportmicrosoftcomkb262986Reference
L749Global ID
49ID
Known Mappings
-UDP Port
135TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1014
BGPEXCHANGE
FASTTRACKfasttrackNameCLI Keyword
FastTrackFull Name
FastTrack is a file sharing client software that is based on peer-to-peer connectionFastTrack is used by multiple file sharing applications such as Kazaa GroksteriMesh andMorpheus Initialization Initial the connection with FastTrack serverover HTTP Search Searching for files in FastTrack server Download Downloadrequest from FastTracker server
Description
httpdeveloperberliosdeprojectsgift-fasttrackReference
L757Global ID
57ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 15
BGPFASTTRACK
FINGERfingerNameCLI Keyword
Finger ProtocolFull Name
The FingerName protocol provides an interface to the Name and Finger programsat several network sites These programs return a friendly human-oriented statusreport on either the system at the moment or a particular person in depth
Description
httpwwwietforgrfcrfc1288txtReference
L479Global ID
14ID
Known Mappings
79UDP Port
79TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1016
BGPFINGER
FTPftpNameCLI Keyword
File Transfer ProtocolFull Name
File Transfer Protocol (FTP) is used to transfer files between hosts over TCPnetworks and is based on client-server architecture An FTP server usually listenson port 21
Description
httpwwwietforgrfcrfc959txtReference
L421Global ID
2ID
Known Mappings
-UDP Port
21TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 17
BGPFTP
GNUTELLAgnutellaNameCLI Keyword
GnutellaFull Name
Gnutella ver2 is decentralized and open-source peer-to-peer file sharing protocolused by various clients such as BearShare Shareeza Morpheus etc Using aGnutella client files can be shared located and downloaded by another Gnutellaclient
Description
httprfc-gnutellasourceforgenetReference
L758Global ID
58ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1018
BGPGNUTELLA
GOPHERgopherNameCLI Keyword
GopherFull Name
Internet Gopher protocol is a protocol is a TCPIP application layer protocoldesigned for distributing searching and retrieving documents over the InternetThe protocol is based on a client-server architecture and usually uses TCP port70 as default
Description
httptoolsietforghtmlrfc1436Reference
L470Global ID
15ID
Known Mappings
70UDP Port
70TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 19
BGPGOPHER
GREgreNameCLI Keyword
Generic Route EncapsulationFull Name
Generic Routing Encapsulation (GRE) is a protocol used for encapsulation of anetwork layer over another The protocol encapsulates the packet and saves theprotocol type of the payload packet so the receivers know what network layerwas encapsulated and digests the packet respectively Usually the protocol usesIP port 47
Description
httptoolsietforghtmlrfc2784Reference
L347Global ID
5ID
Known Mappings
-UDP Port
-TCP Port
47IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1020
BGPGRE
H323h323NameCLI Keyword
H323Full Name
H323 is a recommendation from the ITU Telecommunication StandardizationSector (ITU-T) that defines the protocols to provide audio-visual communicationsessions on any packet network The H323 standard addresses call signaling andcontrol multimedia transport and control and bandwidth control for point-to-pointand multi-point conferences
Description
httpwwwh323forumorgReference
L764Global ID
64ID
Known Mappings
-UDP Port
110001100111002110031100411005110061100711008110091101011011110121101311TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 21
BGPH323
HTTPhttpNameCLI Keyword
HyperText Transfer ProtocolFull Name
Hypertext Transfer Protocol (HTTP) is a standard for communication betweenweb browsers and servers over the World Wide Web The protocol works in arequest-responsemanner over a client server computingmodel The server usuallylistens on port 80
Description
httpwwww3orgProtocolsrfc2616rfc2616htmlReference
L480Global ID
3ID
Known Mappings
-UDP Port
80TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1022
BGPHTTP
ICMPicmpNameCLI Keyword
Internet Control Message ProtocolFull Name
Internet Control Message Protocol (ICMP) messages are typically generated inresponse to errors in IP datagrams or for diagnostic or routing purposes ICMPerrors are always reported to the original source IP address of the originatingdatagram ICMP is IP protocol number 1 Traffic is classified only if its identifiedas ICMP but was not recognized as any other more granular classification suchas Ping
Description
httptoolsietforghtmlrfc792Reference
L31Global ID
6ID
Known Mappings
-UDP Port
-TCP Port
1IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 23
BGPICMP
IMAPimapNameCLI Keyword
Internet Message Access Protocol version 4Full Name
The Internet Message Acceess protocol allows users to acess their email serversand to receivesend emails The protocol simulates a local use when in-fact it isa connection to a server An IMAP server usually listens on port 143
Description
httptoolsietforghtmlrfc3501Reference
L4143Global ID
17ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1024
BGPIMAP
IPINIPipinipNameCLI Keyword
IP in IPFull Name
IP in IP tunneling is a protocol used to encapsulate IP headers to a different IPheader to share information between endpoints in different internet-networks(for example forwarding traffic from one intranet to another)
Description
httptoolsietforghtmlrfc1853Reference
L34Global ID
8ID
Known Mappings
-UDP Port
-TCP Port
4IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 25
BGPIPINIP
IPV6-ICMPipv6-icmpNameCLI Keyword
ICMP for IPv6Full Name
Internet Control Message Protocol version 6 (ICMPv6) is the implementation ofthe Internet Control Message Protocol (ICMP) for Internet Protocol version 6(IPv6) ICMPv6 is an integral part of IPv6 and performs error reporting diagnosticfunctions (eg ping) and a framework for extensions to implement futurechanges
Description
httptoolsietforghtmlrfc4443Reference
L358Global ID
812ID
Known Mappings
-UDP Port
-TCP Port
58IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1026
BGPIPV6-ICMP
IRCircNameCLI Keyword
Internet Relay ChatFull Name
Internet Relay Chat (IRC) protocol is used for chat messaging in real time It canbe used for conferencing or one-on-one chatting The protocol works onclient-server architecture with a distributed manner An IRC server usually listenson TCP port 194
Description
httpwwwirchelporgirchelprfcrfchtmlReference
L4194Global ID
19ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
httpUnderlying Protocols
NBAR2 Standard Protocol Pack 10 27
BGPIRC
KAZAA2kazaa2NameCLI Keyword
Kazaa2Full Name
Kazaa is an online music subscription service that is based on second generationpeer-to-peer technology FastTracker
Description
httpwwwkazaacomaboutReference
L759Global ID
59ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1028
BGPKAZAA2
KERBEROSkerberosNameCLI Keyword
KerberosFull Name
Kerberos is a network authentication protocol The protocol is used to verifyidentities over the internet using a trusted third party Extensions of the protocolalso use the exchange of cryptographic certification of a public key Usually theprotocol uses TCPUDP ports 88749 as default
Description
httpwwwietforgrfcrfc4120txtReference
L488Global ID
21ID
Known Mappings
88749UDP Port
88749TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 29
BGPKERBEROS
L2TPl2tpNameCLI Keyword
Layer 2 Tunneling ProtocolFull Name
Layer 2 Tunneling Protocol (L2TP) is a tunneling protocol used to support virtualprivate networks (VPNs) or as part of the delivery of services by ISPs It doesnot provide any encryption or confidentiality by itself it relies on an encryptionprotocol that it passes within the tunnel to provide privacy
Description
httptoolsietforghtmlrfc2661Reference
L4115Global ID
22ID
Known Mappings
1701UDP Port
1701TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1030
BGPL2TP
LDAPldapNameCLI Keyword
Lightweight Directory Access ProtocolFull Name
Lightweight Directory Access Protocol (LDAP) is a protocol designed to toaccess distributed directory services Typically it uses port 389 for TCP andUDP
Description
httptoolsietforghtmlrfc4510Reference
L4389Global ID
23ID
Known Mappings
389UDP Port
389TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 31
BGPLDAP
MGCPmgcpNameCLI Keyword
Media Gateway Control ProtocolFull Name
Media Gateway Control Protocol (MGCP) 10 is a protocol for the control ofVoice over IP (VoIP) calls by external call-control elements known as MediaGateway Controllers (MGCs) or Call Agents (CAs)
Description
httpwwwpacketizercomrfcrfc3435Reference
L762Global ID
62ID
Known Mappings
24272727UDP Port
242724282727TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1032
BGPMGCP
NETBIOSnetbiosNameCLI Keyword
Network Basic InputOutput SystemFull Name
Network Basic InputOutput System (NetBIOS) provides services related to thesession layer of the OSI model allowing applications on separate computers tocommunicate over a local area network As strictly an API NetBIOS is not anetworking protocol In modern networks NetBIOS normally runs over TCPIPvia the NetBIOS over TCPIP (NBT) protocol This results in each computer inthe network having both an IP address and a NetBIOS name corresponding to a(possibly different) host name
Description
httptoolsietforghtmlrfc1001Reference
L726Global ID
26ID
Known Mappings
137138UDP Port
137139TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 33
BGPNETBIOS
NETSHOWnetshowNameCLI Keyword
NetShowFull Name
Netshow is a Microsoft software designed to stream media over intranets andthe internet NetShow can transfer livemulticast and on-demand streamed audioillustrated audio and video Typically Netshow uses TCP port 1755 and UDPports between 1024-5000
Description
httpwwwmicrosoftcompresspasspress1997mar97nsbta2prmspxReference
L7426Global ID
53ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1034
BGPNETSHOW
NFSnfsNameCLI Keyword
Network File SystemFull Name
Network File System (NFS) is a distributed file system developed by SunMicrosystems Inc that allows users to access and modify files remotly as if itwas a local file The protocol is based on client server architecture and typicallyuses TCPUDP port 2049
Description
httpwwwietforgrfcrfc3530txtReference
L42049Global ID
27ID
Known Mappings
2049UDP Port
2049TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
NoUnderlying Protocols
NBAR2 Standard Protocol Pack 10 35
BGPNFS
NNTPnntpNameCLI Keyword
Network News Transfer ProtocolFull Name
Network News Transfer Protocol (NNTP) is an internet transfer protocol usedfor readingposting Usenet articles and transferring them between news serversUsually the TCP port is 119 while nntp over SSL TCPUDP port is 563
Description
httptoolsietforghtmlrfc3977Reference
L4119Global ID
28ID
Known Mappings
119UDP Port
119TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1036
BGPNNTP
NOTESnotesNameCLI Keyword
IBM Lotus NotesFull Name
IBM Lotus Notes is the client of a collaborative client-server platform IBMLotus Domino is the application server Lotus Notes provides integratedcollaboration functionality including email calendaring contacts managementto do tracking instant messaging an office productivity suite (IBM LotusSymphony) and access to other Lotus Domino applications and databases
Description
httpwww-01ibmcomsoftwarelotusnotesanddominoReference
L41352Global ID
30ID
Known Mappings
1352UDP Port
1352TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 37
BGPNOTES
NTPntpNameCLI Keyword
Network Time ProtocolFull Name
The Network Time Protocol is a protocol for synchronizing the system clocksof distributed computer systems over packet-switched variable-latency datanetworks Usually the UDP port used is 123
Description
httpwwweecisudeledu~millsntphtmlindexhtmlReference
L4123Global ID
31ID
Known Mappings
123UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1038
BGPNTP
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
NoTunnel
-Underlying Protocols
DNSdnsNameCLI Keyword
Domain Name SystemFull Name
Domain Name Server is a server that translates URLs into IP addresses basedon client queries It is based on client-server architecture
Description
httpswww1ietforgrfcrfc1035txtReference
L453Global ID
72ID
Known Mappings
53UDP Port
53TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1010
BGPDNS
EDONKEYedonkeyNameCLI Keyword
eDonkeyFull Name
eDonkey is a peer-to-peer file sharing addopted to share large files The networkis based on multiple decentralized servers each client must be connected to aserver to enter the network edonkey-static and eMule are also required to fullydetect or prevent this application traffic
Description
httpwebarchiveorgweb20010213200827wwwedonkey2000comoverviewhtml
Reference
L767Global ID
67ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 11
BGPEDONKEY
EGPegpNameCLI Keyword
Exterior Gateway ProtocolFull Name
Exterior Gateway Protocol (EGP) is a protocol used to convey networkinformation between neighboring gateways or Autonomic systems This waythe gateways acquire neighbors monitor neighbor reachability and exchangenet-reachability information in the form of Update messages EGP is IP protocolnumber 8
Description
httptoolsietforghtmlrfc904Reference
L38Global ID
4ID
Known Mappings
-UDP Port
-TCP Port
8IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1012
BGPEGP
EIGRPeigrpNameCLI Keyword
Interior Gateway Routing ProtocolFull Name
Enhanced Interior Gateway Routing Protocol (EIGRP) is an interior gatewayprotocol It is an advanced distance-vector routing protocol with optimizationsto minimize both the routing instability incurred after topology changes as wellas the use of bandwidth and processing power in the router The protocol isusually known as IP protocol 88 as default
Description
httpwwwciscocomenUStechtk365technologies_white_paper09186a0080094cb7shtml
Reference
L388Global ID
7ID
Known Mappings
-UDP Port
-TCP Port
88IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 13
BGPEIGRP
EXCHANGEexchangeNameCLI Keyword
Microsoft ExchangeFull Name
Exchange is a protocol that allows users to synchronize and connect to theirexchange server when the client is outside the organizations firewall Theunderlying protocol is RPC over HTTP
Description
httpsupportmicrosoftcomkb262986Reference
L749Global ID
49ID
Known Mappings
-UDP Port
135TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1014
BGPEXCHANGE
FASTTRACKfasttrackNameCLI Keyword
FastTrackFull Name
FastTrack is a file sharing client software that is based on peer-to-peer connectionFastTrack is used by multiple file sharing applications such as Kazaa GroksteriMesh andMorpheus Initialization Initial the connection with FastTrack serverover HTTP Search Searching for files in FastTrack server Download Downloadrequest from FastTracker server
Description
httpdeveloperberliosdeprojectsgift-fasttrackReference
L757Global ID
57ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 15
BGPFASTTRACK
FINGERfingerNameCLI Keyword
Finger ProtocolFull Name
The FingerName protocol provides an interface to the Name and Finger programsat several network sites These programs return a friendly human-oriented statusreport on either the system at the moment or a particular person in depth
Description
httpwwwietforgrfcrfc1288txtReference
L479Global ID
14ID
Known Mappings
79UDP Port
79TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1016
BGPFINGER
FTPftpNameCLI Keyword
File Transfer ProtocolFull Name
File Transfer Protocol (FTP) is used to transfer files between hosts over TCPnetworks and is based on client-server architecture An FTP server usually listenson port 21
Description
httpwwwietforgrfcrfc959txtReference
L421Global ID
2ID
Known Mappings
-UDP Port
21TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 17
BGPFTP
GNUTELLAgnutellaNameCLI Keyword
GnutellaFull Name
Gnutella ver2 is decentralized and open-source peer-to-peer file sharing protocolused by various clients such as BearShare Shareeza Morpheus etc Using aGnutella client files can be shared located and downloaded by another Gnutellaclient
Description
httprfc-gnutellasourceforgenetReference
L758Global ID
58ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1018
BGPGNUTELLA
GOPHERgopherNameCLI Keyword
GopherFull Name
Internet Gopher protocol is a protocol is a TCPIP application layer protocoldesigned for distributing searching and retrieving documents over the InternetThe protocol is based on a client-server architecture and usually uses TCP port70 as default
Description
httptoolsietforghtmlrfc1436Reference
L470Global ID
15ID
Known Mappings
70UDP Port
70TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 19
BGPGOPHER
GREgreNameCLI Keyword
Generic Route EncapsulationFull Name
Generic Routing Encapsulation (GRE) is a protocol used for encapsulation of anetwork layer over another The protocol encapsulates the packet and saves theprotocol type of the payload packet so the receivers know what network layerwas encapsulated and digests the packet respectively Usually the protocol usesIP port 47
Description
httptoolsietforghtmlrfc2784Reference
L347Global ID
5ID
Known Mappings
-UDP Port
-TCP Port
47IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1020
BGPGRE
H323h323NameCLI Keyword
H323Full Name
H323 is a recommendation from the ITU Telecommunication StandardizationSector (ITU-T) that defines the protocols to provide audio-visual communicationsessions on any packet network The H323 standard addresses call signaling andcontrol multimedia transport and control and bandwidth control for point-to-pointand multi-point conferences
Description
httpwwwh323forumorgReference
L764Global ID
64ID
Known Mappings
-UDP Port
110001100111002110031100411005110061100711008110091101011011110121101311TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 21
BGPH323
HTTPhttpNameCLI Keyword
HyperText Transfer ProtocolFull Name
Hypertext Transfer Protocol (HTTP) is a standard for communication betweenweb browsers and servers over the World Wide Web The protocol works in arequest-responsemanner over a client server computingmodel The server usuallylistens on port 80
Description
httpwwww3orgProtocolsrfc2616rfc2616htmlReference
L480Global ID
3ID
Known Mappings
-UDP Port
80TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1022
BGPHTTP
ICMPicmpNameCLI Keyword
Internet Control Message ProtocolFull Name
Internet Control Message Protocol (ICMP) messages are typically generated inresponse to errors in IP datagrams or for diagnostic or routing purposes ICMPerrors are always reported to the original source IP address of the originatingdatagram ICMP is IP protocol number 1 Traffic is classified only if its identifiedas ICMP but was not recognized as any other more granular classification suchas Ping
Description
httptoolsietforghtmlrfc792Reference
L31Global ID
6ID
Known Mappings
-UDP Port
-TCP Port
1IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 23
BGPICMP
IMAPimapNameCLI Keyword
Internet Message Access Protocol version 4Full Name
The Internet Message Acceess protocol allows users to acess their email serversand to receivesend emails The protocol simulates a local use when in-fact it isa connection to a server An IMAP server usually listens on port 143
Description
httptoolsietforghtmlrfc3501Reference
L4143Global ID
17ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1024
BGPIMAP
IPINIPipinipNameCLI Keyword
IP in IPFull Name
IP in IP tunneling is a protocol used to encapsulate IP headers to a different IPheader to share information between endpoints in different internet-networks(for example forwarding traffic from one intranet to another)
Description
httptoolsietforghtmlrfc1853Reference
L34Global ID
8ID
Known Mappings
-UDP Port
-TCP Port
4IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 25
BGPIPINIP
IPV6-ICMPipv6-icmpNameCLI Keyword
ICMP for IPv6Full Name
Internet Control Message Protocol version 6 (ICMPv6) is the implementation ofthe Internet Control Message Protocol (ICMP) for Internet Protocol version 6(IPv6) ICMPv6 is an integral part of IPv6 and performs error reporting diagnosticfunctions (eg ping) and a framework for extensions to implement futurechanges
Description
httptoolsietforghtmlrfc4443Reference
L358Global ID
812ID
Known Mappings
-UDP Port
-TCP Port
58IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1026
BGPIPV6-ICMP
IRCircNameCLI Keyword
Internet Relay ChatFull Name
Internet Relay Chat (IRC) protocol is used for chat messaging in real time It canbe used for conferencing or one-on-one chatting The protocol works onclient-server architecture with a distributed manner An IRC server usually listenson TCP port 194
Description
httpwwwirchelporgirchelprfcrfchtmlReference
L4194Global ID
19ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
httpUnderlying Protocols
NBAR2 Standard Protocol Pack 10 27
BGPIRC
KAZAA2kazaa2NameCLI Keyword
Kazaa2Full Name
Kazaa is an online music subscription service that is based on second generationpeer-to-peer technology FastTracker
Description
httpwwwkazaacomaboutReference
L759Global ID
59ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1028
BGPKAZAA2
KERBEROSkerberosNameCLI Keyword
KerberosFull Name
Kerberos is a network authentication protocol The protocol is used to verifyidentities over the internet using a trusted third party Extensions of the protocolalso use the exchange of cryptographic certification of a public key Usually theprotocol uses TCPUDP ports 88749 as default
Description
httpwwwietforgrfcrfc4120txtReference
L488Global ID
21ID
Known Mappings
88749UDP Port
88749TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 29
BGPKERBEROS
L2TPl2tpNameCLI Keyword
Layer 2 Tunneling ProtocolFull Name
Layer 2 Tunneling Protocol (L2TP) is a tunneling protocol used to support virtualprivate networks (VPNs) or as part of the delivery of services by ISPs It doesnot provide any encryption or confidentiality by itself it relies on an encryptionprotocol that it passes within the tunnel to provide privacy
Description
httptoolsietforghtmlrfc2661Reference
L4115Global ID
22ID
Known Mappings
1701UDP Port
1701TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1030
BGPL2TP
LDAPldapNameCLI Keyword
Lightweight Directory Access ProtocolFull Name
Lightweight Directory Access Protocol (LDAP) is a protocol designed to toaccess distributed directory services Typically it uses port 389 for TCP andUDP
Description
httptoolsietforghtmlrfc4510Reference
L4389Global ID
23ID
Known Mappings
389UDP Port
389TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 31
BGPLDAP
MGCPmgcpNameCLI Keyword
Media Gateway Control ProtocolFull Name
Media Gateway Control Protocol (MGCP) 10 is a protocol for the control ofVoice over IP (VoIP) calls by external call-control elements known as MediaGateway Controllers (MGCs) or Call Agents (CAs)
Description
httpwwwpacketizercomrfcrfc3435Reference
L762Global ID
62ID
Known Mappings
24272727UDP Port
242724282727TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1032
BGPMGCP
NETBIOSnetbiosNameCLI Keyword
Network Basic InputOutput SystemFull Name
Network Basic InputOutput System (NetBIOS) provides services related to thesession layer of the OSI model allowing applications on separate computers tocommunicate over a local area network As strictly an API NetBIOS is not anetworking protocol In modern networks NetBIOS normally runs over TCPIPvia the NetBIOS over TCPIP (NBT) protocol This results in each computer inthe network having both an IP address and a NetBIOS name corresponding to a(possibly different) host name
Description
httptoolsietforghtmlrfc1001Reference
L726Global ID
26ID
Known Mappings
137138UDP Port
137139TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 33
BGPNETBIOS
NETSHOWnetshowNameCLI Keyword
NetShowFull Name
Netshow is a Microsoft software designed to stream media over intranets andthe internet NetShow can transfer livemulticast and on-demand streamed audioillustrated audio and video Typically Netshow uses TCP port 1755 and UDPports between 1024-5000
Description
httpwwwmicrosoftcompresspasspress1997mar97nsbta2prmspxReference
L7426Global ID
53ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1034
BGPNETSHOW
NFSnfsNameCLI Keyword
Network File SystemFull Name
Network File System (NFS) is a distributed file system developed by SunMicrosystems Inc that allows users to access and modify files remotly as if itwas a local file The protocol is based on client server architecture and typicallyuses TCPUDP port 2049
Description
httpwwwietforgrfcrfc3530txtReference
L42049Global ID
27ID
Known Mappings
2049UDP Port
2049TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
NoUnderlying Protocols
NBAR2 Standard Protocol Pack 10 35
BGPNFS
NNTPnntpNameCLI Keyword
Network News Transfer ProtocolFull Name
Network News Transfer Protocol (NNTP) is an internet transfer protocol usedfor readingposting Usenet articles and transferring them between news serversUsually the TCP port is 119 while nntp over SSL TCPUDP port is 563
Description
httptoolsietforghtmlrfc3977Reference
L4119Global ID
28ID
Known Mappings
119UDP Port
119TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1036
BGPNNTP
NOTESnotesNameCLI Keyword
IBM Lotus NotesFull Name
IBM Lotus Notes is the client of a collaborative client-server platform IBMLotus Domino is the application server Lotus Notes provides integratedcollaboration functionality including email calendaring contacts managementto do tracking instant messaging an office productivity suite (IBM LotusSymphony) and access to other Lotus Domino applications and databases
Description
httpwww-01ibmcomsoftwarelotusnotesanddominoReference
L41352Global ID
30ID
Known Mappings
1352UDP Port
1352TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 37
BGPNOTES
NTPntpNameCLI Keyword
Network Time ProtocolFull Name
The Network Time Protocol is a protocol for synchronizing the system clocksof distributed computer systems over packet-switched variable-latency datanetworks Usually the UDP port used is 123
Description
httpwwweecisudeledu~millsntphtmlindexhtmlReference
L4123Global ID
31ID
Known Mappings
123UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1038
BGPNTP
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
EDONKEYedonkeyNameCLI Keyword
eDonkeyFull Name
eDonkey is a peer-to-peer file sharing addopted to share large files The networkis based on multiple decentralized servers each client must be connected to aserver to enter the network edonkey-static and eMule are also required to fullydetect or prevent this application traffic
Description
httpwebarchiveorgweb20010213200827wwwedonkey2000comoverviewhtml
Reference
L767Global ID
67ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 11
BGPEDONKEY
EGPegpNameCLI Keyword
Exterior Gateway ProtocolFull Name
Exterior Gateway Protocol (EGP) is a protocol used to convey networkinformation between neighboring gateways or Autonomic systems This waythe gateways acquire neighbors monitor neighbor reachability and exchangenet-reachability information in the form of Update messages EGP is IP protocolnumber 8
Description
httptoolsietforghtmlrfc904Reference
L38Global ID
4ID
Known Mappings
-UDP Port
-TCP Port
8IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1012
BGPEGP
EIGRPeigrpNameCLI Keyword
Interior Gateway Routing ProtocolFull Name
Enhanced Interior Gateway Routing Protocol (EIGRP) is an interior gatewayprotocol It is an advanced distance-vector routing protocol with optimizationsto minimize both the routing instability incurred after topology changes as wellas the use of bandwidth and processing power in the router The protocol isusually known as IP protocol 88 as default
Description
httpwwwciscocomenUStechtk365technologies_white_paper09186a0080094cb7shtml
Reference
L388Global ID
7ID
Known Mappings
-UDP Port
-TCP Port
88IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 13
BGPEIGRP
EXCHANGEexchangeNameCLI Keyword
Microsoft ExchangeFull Name
Exchange is a protocol that allows users to synchronize and connect to theirexchange server when the client is outside the organizations firewall Theunderlying protocol is RPC over HTTP
Description
httpsupportmicrosoftcomkb262986Reference
L749Global ID
49ID
Known Mappings
-UDP Port
135TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1014
BGPEXCHANGE
FASTTRACKfasttrackNameCLI Keyword
FastTrackFull Name
FastTrack is a file sharing client software that is based on peer-to-peer connectionFastTrack is used by multiple file sharing applications such as Kazaa GroksteriMesh andMorpheus Initialization Initial the connection with FastTrack serverover HTTP Search Searching for files in FastTrack server Download Downloadrequest from FastTracker server
Description
httpdeveloperberliosdeprojectsgift-fasttrackReference
L757Global ID
57ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 15
BGPFASTTRACK
FINGERfingerNameCLI Keyword
Finger ProtocolFull Name
The FingerName protocol provides an interface to the Name and Finger programsat several network sites These programs return a friendly human-oriented statusreport on either the system at the moment or a particular person in depth
Description
httpwwwietforgrfcrfc1288txtReference
L479Global ID
14ID
Known Mappings
79UDP Port
79TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1016
BGPFINGER
FTPftpNameCLI Keyword
File Transfer ProtocolFull Name
File Transfer Protocol (FTP) is used to transfer files between hosts over TCPnetworks and is based on client-server architecture An FTP server usually listenson port 21
Description
httpwwwietforgrfcrfc959txtReference
L421Global ID
2ID
Known Mappings
-UDP Port
21TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 17
BGPFTP
GNUTELLAgnutellaNameCLI Keyword
GnutellaFull Name
Gnutella ver2 is decentralized and open-source peer-to-peer file sharing protocolused by various clients such as BearShare Shareeza Morpheus etc Using aGnutella client files can be shared located and downloaded by another Gnutellaclient
Description
httprfc-gnutellasourceforgenetReference
L758Global ID
58ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1018
BGPGNUTELLA
GOPHERgopherNameCLI Keyword
GopherFull Name
Internet Gopher protocol is a protocol is a TCPIP application layer protocoldesigned for distributing searching and retrieving documents over the InternetThe protocol is based on a client-server architecture and usually uses TCP port70 as default
Description
httptoolsietforghtmlrfc1436Reference
L470Global ID
15ID
Known Mappings
70UDP Port
70TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 19
BGPGOPHER
GREgreNameCLI Keyword
Generic Route EncapsulationFull Name
Generic Routing Encapsulation (GRE) is a protocol used for encapsulation of anetwork layer over another The protocol encapsulates the packet and saves theprotocol type of the payload packet so the receivers know what network layerwas encapsulated and digests the packet respectively Usually the protocol usesIP port 47
Description
httptoolsietforghtmlrfc2784Reference
L347Global ID
5ID
Known Mappings
-UDP Port
-TCP Port
47IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1020
BGPGRE
H323h323NameCLI Keyword
H323Full Name
H323 is a recommendation from the ITU Telecommunication StandardizationSector (ITU-T) that defines the protocols to provide audio-visual communicationsessions on any packet network The H323 standard addresses call signaling andcontrol multimedia transport and control and bandwidth control for point-to-pointand multi-point conferences
Description
httpwwwh323forumorgReference
L764Global ID
64ID
Known Mappings
-UDP Port
110001100111002110031100411005110061100711008110091101011011110121101311TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 21
BGPH323
HTTPhttpNameCLI Keyword
HyperText Transfer ProtocolFull Name
Hypertext Transfer Protocol (HTTP) is a standard for communication betweenweb browsers and servers over the World Wide Web The protocol works in arequest-responsemanner over a client server computingmodel The server usuallylistens on port 80
Description
httpwwww3orgProtocolsrfc2616rfc2616htmlReference
L480Global ID
3ID
Known Mappings
-UDP Port
80TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1022
BGPHTTP
ICMPicmpNameCLI Keyword
Internet Control Message ProtocolFull Name
Internet Control Message Protocol (ICMP) messages are typically generated inresponse to errors in IP datagrams or for diagnostic or routing purposes ICMPerrors are always reported to the original source IP address of the originatingdatagram ICMP is IP protocol number 1 Traffic is classified only if its identifiedas ICMP but was not recognized as any other more granular classification suchas Ping
Description
httptoolsietforghtmlrfc792Reference
L31Global ID
6ID
Known Mappings
-UDP Port
-TCP Port
1IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 23
BGPICMP
IMAPimapNameCLI Keyword
Internet Message Access Protocol version 4Full Name
The Internet Message Acceess protocol allows users to acess their email serversand to receivesend emails The protocol simulates a local use when in-fact it isa connection to a server An IMAP server usually listens on port 143
Description
httptoolsietforghtmlrfc3501Reference
L4143Global ID
17ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1024
BGPIMAP
IPINIPipinipNameCLI Keyword
IP in IPFull Name
IP in IP tunneling is a protocol used to encapsulate IP headers to a different IPheader to share information between endpoints in different internet-networks(for example forwarding traffic from one intranet to another)
Description
httptoolsietforghtmlrfc1853Reference
L34Global ID
8ID
Known Mappings
-UDP Port
-TCP Port
4IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 25
BGPIPINIP
IPV6-ICMPipv6-icmpNameCLI Keyword
ICMP for IPv6Full Name
Internet Control Message Protocol version 6 (ICMPv6) is the implementation ofthe Internet Control Message Protocol (ICMP) for Internet Protocol version 6(IPv6) ICMPv6 is an integral part of IPv6 and performs error reporting diagnosticfunctions (eg ping) and a framework for extensions to implement futurechanges
Description
httptoolsietforghtmlrfc4443Reference
L358Global ID
812ID
Known Mappings
-UDP Port
-TCP Port
58IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1026
BGPIPV6-ICMP
IRCircNameCLI Keyword
Internet Relay ChatFull Name
Internet Relay Chat (IRC) protocol is used for chat messaging in real time It canbe used for conferencing or one-on-one chatting The protocol works onclient-server architecture with a distributed manner An IRC server usually listenson TCP port 194
Description
httpwwwirchelporgirchelprfcrfchtmlReference
L4194Global ID
19ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
httpUnderlying Protocols
NBAR2 Standard Protocol Pack 10 27
BGPIRC
KAZAA2kazaa2NameCLI Keyword
Kazaa2Full Name
Kazaa is an online music subscription service that is based on second generationpeer-to-peer technology FastTracker
Description
httpwwwkazaacomaboutReference
L759Global ID
59ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1028
BGPKAZAA2
KERBEROSkerberosNameCLI Keyword
KerberosFull Name
Kerberos is a network authentication protocol The protocol is used to verifyidentities over the internet using a trusted third party Extensions of the protocolalso use the exchange of cryptographic certification of a public key Usually theprotocol uses TCPUDP ports 88749 as default
Description
httpwwwietforgrfcrfc4120txtReference
L488Global ID
21ID
Known Mappings
88749UDP Port
88749TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 29
BGPKERBEROS
L2TPl2tpNameCLI Keyword
Layer 2 Tunneling ProtocolFull Name
Layer 2 Tunneling Protocol (L2TP) is a tunneling protocol used to support virtualprivate networks (VPNs) or as part of the delivery of services by ISPs It doesnot provide any encryption or confidentiality by itself it relies on an encryptionprotocol that it passes within the tunnel to provide privacy
Description
httptoolsietforghtmlrfc2661Reference
L4115Global ID
22ID
Known Mappings
1701UDP Port
1701TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1030
BGPL2TP
LDAPldapNameCLI Keyword
Lightweight Directory Access ProtocolFull Name
Lightweight Directory Access Protocol (LDAP) is a protocol designed to toaccess distributed directory services Typically it uses port 389 for TCP andUDP
Description
httptoolsietforghtmlrfc4510Reference
L4389Global ID
23ID
Known Mappings
389UDP Port
389TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 31
BGPLDAP
MGCPmgcpNameCLI Keyword
Media Gateway Control ProtocolFull Name
Media Gateway Control Protocol (MGCP) 10 is a protocol for the control ofVoice over IP (VoIP) calls by external call-control elements known as MediaGateway Controllers (MGCs) or Call Agents (CAs)
Description
httpwwwpacketizercomrfcrfc3435Reference
L762Global ID
62ID
Known Mappings
24272727UDP Port
242724282727TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1032
BGPMGCP
NETBIOSnetbiosNameCLI Keyword
Network Basic InputOutput SystemFull Name
Network Basic InputOutput System (NetBIOS) provides services related to thesession layer of the OSI model allowing applications on separate computers tocommunicate over a local area network As strictly an API NetBIOS is not anetworking protocol In modern networks NetBIOS normally runs over TCPIPvia the NetBIOS over TCPIP (NBT) protocol This results in each computer inthe network having both an IP address and a NetBIOS name corresponding to a(possibly different) host name
Description
httptoolsietforghtmlrfc1001Reference
L726Global ID
26ID
Known Mappings
137138UDP Port
137139TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 33
BGPNETBIOS
NETSHOWnetshowNameCLI Keyword
NetShowFull Name
Netshow is a Microsoft software designed to stream media over intranets andthe internet NetShow can transfer livemulticast and on-demand streamed audioillustrated audio and video Typically Netshow uses TCP port 1755 and UDPports between 1024-5000
Description
httpwwwmicrosoftcompresspasspress1997mar97nsbta2prmspxReference
L7426Global ID
53ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1034
BGPNETSHOW
NFSnfsNameCLI Keyword
Network File SystemFull Name
Network File System (NFS) is a distributed file system developed by SunMicrosystems Inc that allows users to access and modify files remotly as if itwas a local file The protocol is based on client server architecture and typicallyuses TCPUDP port 2049
Description
httpwwwietforgrfcrfc3530txtReference
L42049Global ID
27ID
Known Mappings
2049UDP Port
2049TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
NoUnderlying Protocols
NBAR2 Standard Protocol Pack 10 35
BGPNFS
NNTPnntpNameCLI Keyword
Network News Transfer ProtocolFull Name
Network News Transfer Protocol (NNTP) is an internet transfer protocol usedfor readingposting Usenet articles and transferring them between news serversUsually the TCP port is 119 while nntp over SSL TCPUDP port is 563
Description
httptoolsietforghtmlrfc3977Reference
L4119Global ID
28ID
Known Mappings
119UDP Port
119TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1036
BGPNNTP
NOTESnotesNameCLI Keyword
IBM Lotus NotesFull Name
IBM Lotus Notes is the client of a collaborative client-server platform IBMLotus Domino is the application server Lotus Notes provides integratedcollaboration functionality including email calendaring contacts managementto do tracking instant messaging an office productivity suite (IBM LotusSymphony) and access to other Lotus Domino applications and databases
Description
httpwww-01ibmcomsoftwarelotusnotesanddominoReference
L41352Global ID
30ID
Known Mappings
1352UDP Port
1352TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 37
BGPNOTES
NTPntpNameCLI Keyword
Network Time ProtocolFull Name
The Network Time Protocol is a protocol for synchronizing the system clocksof distributed computer systems over packet-switched variable-latency datanetworks Usually the UDP port used is 123
Description
httpwwweecisudeledu~millsntphtmlindexhtmlReference
L4123Global ID
31ID
Known Mappings
123UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1038
BGPNTP
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
EGPegpNameCLI Keyword
Exterior Gateway ProtocolFull Name
Exterior Gateway Protocol (EGP) is a protocol used to convey networkinformation between neighboring gateways or Autonomic systems This waythe gateways acquire neighbors monitor neighbor reachability and exchangenet-reachability information in the form of Update messages EGP is IP protocolnumber 8
Description
httptoolsietforghtmlrfc904Reference
L38Global ID
4ID
Known Mappings
-UDP Port
-TCP Port
8IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1012
BGPEGP
EIGRPeigrpNameCLI Keyword
Interior Gateway Routing ProtocolFull Name
Enhanced Interior Gateway Routing Protocol (EIGRP) is an interior gatewayprotocol It is an advanced distance-vector routing protocol with optimizationsto minimize both the routing instability incurred after topology changes as wellas the use of bandwidth and processing power in the router The protocol isusually known as IP protocol 88 as default
Description
httpwwwciscocomenUStechtk365technologies_white_paper09186a0080094cb7shtml
Reference
L388Global ID
7ID
Known Mappings
-UDP Port
-TCP Port
88IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 13
BGPEIGRP
EXCHANGEexchangeNameCLI Keyword
Microsoft ExchangeFull Name
Exchange is a protocol that allows users to synchronize and connect to theirexchange server when the client is outside the organizations firewall Theunderlying protocol is RPC over HTTP
Description
httpsupportmicrosoftcomkb262986Reference
L749Global ID
49ID
Known Mappings
-UDP Port
135TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1014
BGPEXCHANGE
FASTTRACKfasttrackNameCLI Keyword
FastTrackFull Name
FastTrack is a file sharing client software that is based on peer-to-peer connectionFastTrack is used by multiple file sharing applications such as Kazaa GroksteriMesh andMorpheus Initialization Initial the connection with FastTrack serverover HTTP Search Searching for files in FastTrack server Download Downloadrequest from FastTracker server
Description
httpdeveloperberliosdeprojectsgift-fasttrackReference
L757Global ID
57ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 15
BGPFASTTRACK
FINGERfingerNameCLI Keyword
Finger ProtocolFull Name
The FingerName protocol provides an interface to the Name and Finger programsat several network sites These programs return a friendly human-oriented statusreport on either the system at the moment or a particular person in depth
Description
httpwwwietforgrfcrfc1288txtReference
L479Global ID
14ID
Known Mappings
79UDP Port
79TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1016
BGPFINGER
FTPftpNameCLI Keyword
File Transfer ProtocolFull Name
File Transfer Protocol (FTP) is used to transfer files between hosts over TCPnetworks and is based on client-server architecture An FTP server usually listenson port 21
Description
httpwwwietforgrfcrfc959txtReference
L421Global ID
2ID
Known Mappings
-UDP Port
21TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 17
BGPFTP
GNUTELLAgnutellaNameCLI Keyword
GnutellaFull Name
Gnutella ver2 is decentralized and open-source peer-to-peer file sharing protocolused by various clients such as BearShare Shareeza Morpheus etc Using aGnutella client files can be shared located and downloaded by another Gnutellaclient
Description
httprfc-gnutellasourceforgenetReference
L758Global ID
58ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1018
BGPGNUTELLA
GOPHERgopherNameCLI Keyword
GopherFull Name
Internet Gopher protocol is a protocol is a TCPIP application layer protocoldesigned for distributing searching and retrieving documents over the InternetThe protocol is based on a client-server architecture and usually uses TCP port70 as default
Description
httptoolsietforghtmlrfc1436Reference
L470Global ID
15ID
Known Mappings
70UDP Port
70TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 19
BGPGOPHER
GREgreNameCLI Keyword
Generic Route EncapsulationFull Name
Generic Routing Encapsulation (GRE) is a protocol used for encapsulation of anetwork layer over another The protocol encapsulates the packet and saves theprotocol type of the payload packet so the receivers know what network layerwas encapsulated and digests the packet respectively Usually the protocol usesIP port 47
Description
httptoolsietforghtmlrfc2784Reference
L347Global ID
5ID
Known Mappings
-UDP Port
-TCP Port
47IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1020
BGPGRE
H323h323NameCLI Keyword
H323Full Name
H323 is a recommendation from the ITU Telecommunication StandardizationSector (ITU-T) that defines the protocols to provide audio-visual communicationsessions on any packet network The H323 standard addresses call signaling andcontrol multimedia transport and control and bandwidth control for point-to-pointand multi-point conferences
Description
httpwwwh323forumorgReference
L764Global ID
64ID
Known Mappings
-UDP Port
110001100111002110031100411005110061100711008110091101011011110121101311TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 21
BGPH323
HTTPhttpNameCLI Keyword
HyperText Transfer ProtocolFull Name
Hypertext Transfer Protocol (HTTP) is a standard for communication betweenweb browsers and servers over the World Wide Web The protocol works in arequest-responsemanner over a client server computingmodel The server usuallylistens on port 80
Description
httpwwww3orgProtocolsrfc2616rfc2616htmlReference
L480Global ID
3ID
Known Mappings
-UDP Port
80TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1022
BGPHTTP
ICMPicmpNameCLI Keyword
Internet Control Message ProtocolFull Name
Internet Control Message Protocol (ICMP) messages are typically generated inresponse to errors in IP datagrams or for diagnostic or routing purposes ICMPerrors are always reported to the original source IP address of the originatingdatagram ICMP is IP protocol number 1 Traffic is classified only if its identifiedas ICMP but was not recognized as any other more granular classification suchas Ping
Description
httptoolsietforghtmlrfc792Reference
L31Global ID
6ID
Known Mappings
-UDP Port
-TCP Port
1IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 23
BGPICMP
IMAPimapNameCLI Keyword
Internet Message Access Protocol version 4Full Name
The Internet Message Acceess protocol allows users to acess their email serversand to receivesend emails The protocol simulates a local use when in-fact it isa connection to a server An IMAP server usually listens on port 143
Description
httptoolsietforghtmlrfc3501Reference
L4143Global ID
17ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1024
BGPIMAP
IPINIPipinipNameCLI Keyword
IP in IPFull Name
IP in IP tunneling is a protocol used to encapsulate IP headers to a different IPheader to share information between endpoints in different internet-networks(for example forwarding traffic from one intranet to another)
Description
httptoolsietforghtmlrfc1853Reference
L34Global ID
8ID
Known Mappings
-UDP Port
-TCP Port
4IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 25
BGPIPINIP
IPV6-ICMPipv6-icmpNameCLI Keyword
ICMP for IPv6Full Name
Internet Control Message Protocol version 6 (ICMPv6) is the implementation ofthe Internet Control Message Protocol (ICMP) for Internet Protocol version 6(IPv6) ICMPv6 is an integral part of IPv6 and performs error reporting diagnosticfunctions (eg ping) and a framework for extensions to implement futurechanges
Description
httptoolsietforghtmlrfc4443Reference
L358Global ID
812ID
Known Mappings
-UDP Port
-TCP Port
58IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1026
BGPIPV6-ICMP
IRCircNameCLI Keyword
Internet Relay ChatFull Name
Internet Relay Chat (IRC) protocol is used for chat messaging in real time It canbe used for conferencing or one-on-one chatting The protocol works onclient-server architecture with a distributed manner An IRC server usually listenson TCP port 194
Description
httpwwwirchelporgirchelprfcrfchtmlReference
L4194Global ID
19ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
httpUnderlying Protocols
NBAR2 Standard Protocol Pack 10 27
BGPIRC
KAZAA2kazaa2NameCLI Keyword
Kazaa2Full Name
Kazaa is an online music subscription service that is based on second generationpeer-to-peer technology FastTracker
Description
httpwwwkazaacomaboutReference
L759Global ID
59ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1028
BGPKAZAA2
KERBEROSkerberosNameCLI Keyword
KerberosFull Name
Kerberos is a network authentication protocol The protocol is used to verifyidentities over the internet using a trusted third party Extensions of the protocolalso use the exchange of cryptographic certification of a public key Usually theprotocol uses TCPUDP ports 88749 as default
Description
httpwwwietforgrfcrfc4120txtReference
L488Global ID
21ID
Known Mappings
88749UDP Port
88749TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 29
BGPKERBEROS
L2TPl2tpNameCLI Keyword
Layer 2 Tunneling ProtocolFull Name
Layer 2 Tunneling Protocol (L2TP) is a tunneling protocol used to support virtualprivate networks (VPNs) or as part of the delivery of services by ISPs It doesnot provide any encryption or confidentiality by itself it relies on an encryptionprotocol that it passes within the tunnel to provide privacy
Description
httptoolsietforghtmlrfc2661Reference
L4115Global ID
22ID
Known Mappings
1701UDP Port
1701TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1030
BGPL2TP
LDAPldapNameCLI Keyword
Lightweight Directory Access ProtocolFull Name
Lightweight Directory Access Protocol (LDAP) is a protocol designed to toaccess distributed directory services Typically it uses port 389 for TCP andUDP
Description
httptoolsietforghtmlrfc4510Reference
L4389Global ID
23ID
Known Mappings
389UDP Port
389TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 31
BGPLDAP
MGCPmgcpNameCLI Keyword
Media Gateway Control ProtocolFull Name
Media Gateway Control Protocol (MGCP) 10 is a protocol for the control ofVoice over IP (VoIP) calls by external call-control elements known as MediaGateway Controllers (MGCs) or Call Agents (CAs)
Description
httpwwwpacketizercomrfcrfc3435Reference
L762Global ID
62ID
Known Mappings
24272727UDP Port
242724282727TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1032
BGPMGCP
NETBIOSnetbiosNameCLI Keyword
Network Basic InputOutput SystemFull Name
Network Basic InputOutput System (NetBIOS) provides services related to thesession layer of the OSI model allowing applications on separate computers tocommunicate over a local area network As strictly an API NetBIOS is not anetworking protocol In modern networks NetBIOS normally runs over TCPIPvia the NetBIOS over TCPIP (NBT) protocol This results in each computer inthe network having both an IP address and a NetBIOS name corresponding to a(possibly different) host name
Description
httptoolsietforghtmlrfc1001Reference
L726Global ID
26ID
Known Mappings
137138UDP Port
137139TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 33
BGPNETBIOS
NETSHOWnetshowNameCLI Keyword
NetShowFull Name
Netshow is a Microsoft software designed to stream media over intranets andthe internet NetShow can transfer livemulticast and on-demand streamed audioillustrated audio and video Typically Netshow uses TCP port 1755 and UDPports between 1024-5000
Description
httpwwwmicrosoftcompresspasspress1997mar97nsbta2prmspxReference
L7426Global ID
53ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1034
BGPNETSHOW
NFSnfsNameCLI Keyword
Network File SystemFull Name
Network File System (NFS) is a distributed file system developed by SunMicrosystems Inc that allows users to access and modify files remotly as if itwas a local file The protocol is based on client server architecture and typicallyuses TCPUDP port 2049
Description
httpwwwietforgrfcrfc3530txtReference
L42049Global ID
27ID
Known Mappings
2049UDP Port
2049TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
NoUnderlying Protocols
NBAR2 Standard Protocol Pack 10 35
BGPNFS
NNTPnntpNameCLI Keyword
Network News Transfer ProtocolFull Name
Network News Transfer Protocol (NNTP) is an internet transfer protocol usedfor readingposting Usenet articles and transferring them between news serversUsually the TCP port is 119 while nntp over SSL TCPUDP port is 563
Description
httptoolsietforghtmlrfc3977Reference
L4119Global ID
28ID
Known Mappings
119UDP Port
119TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1036
BGPNNTP
NOTESnotesNameCLI Keyword
IBM Lotus NotesFull Name
IBM Lotus Notes is the client of a collaborative client-server platform IBMLotus Domino is the application server Lotus Notes provides integratedcollaboration functionality including email calendaring contacts managementto do tracking instant messaging an office productivity suite (IBM LotusSymphony) and access to other Lotus Domino applications and databases
Description
httpwww-01ibmcomsoftwarelotusnotesanddominoReference
L41352Global ID
30ID
Known Mappings
1352UDP Port
1352TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 37
BGPNOTES
NTPntpNameCLI Keyword
Network Time ProtocolFull Name
The Network Time Protocol is a protocol for synchronizing the system clocksof distributed computer systems over packet-switched variable-latency datanetworks Usually the UDP port used is 123
Description
httpwwweecisudeledu~millsntphtmlindexhtmlReference
L4123Global ID
31ID
Known Mappings
123UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1038
BGPNTP
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
EIGRPeigrpNameCLI Keyword
Interior Gateway Routing ProtocolFull Name
Enhanced Interior Gateway Routing Protocol (EIGRP) is an interior gatewayprotocol It is an advanced distance-vector routing protocol with optimizationsto minimize both the routing instability incurred after topology changes as wellas the use of bandwidth and processing power in the router The protocol isusually known as IP protocol 88 as default
Description
httpwwwciscocomenUStechtk365technologies_white_paper09186a0080094cb7shtml
Reference
L388Global ID
7ID
Known Mappings
-UDP Port
-TCP Port
88IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 13
BGPEIGRP
EXCHANGEexchangeNameCLI Keyword
Microsoft ExchangeFull Name
Exchange is a protocol that allows users to synchronize and connect to theirexchange server when the client is outside the organizations firewall Theunderlying protocol is RPC over HTTP
Description
httpsupportmicrosoftcomkb262986Reference
L749Global ID
49ID
Known Mappings
-UDP Port
135TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1014
BGPEXCHANGE
FASTTRACKfasttrackNameCLI Keyword
FastTrackFull Name
FastTrack is a file sharing client software that is based on peer-to-peer connectionFastTrack is used by multiple file sharing applications such as Kazaa GroksteriMesh andMorpheus Initialization Initial the connection with FastTrack serverover HTTP Search Searching for files in FastTrack server Download Downloadrequest from FastTracker server
Description
httpdeveloperberliosdeprojectsgift-fasttrackReference
L757Global ID
57ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 15
BGPFASTTRACK
FINGERfingerNameCLI Keyword
Finger ProtocolFull Name
The FingerName protocol provides an interface to the Name and Finger programsat several network sites These programs return a friendly human-oriented statusreport on either the system at the moment or a particular person in depth
Description
httpwwwietforgrfcrfc1288txtReference
L479Global ID
14ID
Known Mappings
79UDP Port
79TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1016
BGPFINGER
FTPftpNameCLI Keyword
File Transfer ProtocolFull Name
File Transfer Protocol (FTP) is used to transfer files between hosts over TCPnetworks and is based on client-server architecture An FTP server usually listenson port 21
Description
httpwwwietforgrfcrfc959txtReference
L421Global ID
2ID
Known Mappings
-UDP Port
21TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 17
BGPFTP
GNUTELLAgnutellaNameCLI Keyword
GnutellaFull Name
Gnutella ver2 is decentralized and open-source peer-to-peer file sharing protocolused by various clients such as BearShare Shareeza Morpheus etc Using aGnutella client files can be shared located and downloaded by another Gnutellaclient
Description
httprfc-gnutellasourceforgenetReference
L758Global ID
58ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1018
BGPGNUTELLA
GOPHERgopherNameCLI Keyword
GopherFull Name
Internet Gopher protocol is a protocol is a TCPIP application layer protocoldesigned for distributing searching and retrieving documents over the InternetThe protocol is based on a client-server architecture and usually uses TCP port70 as default
Description
httptoolsietforghtmlrfc1436Reference
L470Global ID
15ID
Known Mappings
70UDP Port
70TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 19
BGPGOPHER
GREgreNameCLI Keyword
Generic Route EncapsulationFull Name
Generic Routing Encapsulation (GRE) is a protocol used for encapsulation of anetwork layer over another The protocol encapsulates the packet and saves theprotocol type of the payload packet so the receivers know what network layerwas encapsulated and digests the packet respectively Usually the protocol usesIP port 47
Description
httptoolsietforghtmlrfc2784Reference
L347Global ID
5ID
Known Mappings
-UDP Port
-TCP Port
47IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1020
BGPGRE
H323h323NameCLI Keyword
H323Full Name
H323 is a recommendation from the ITU Telecommunication StandardizationSector (ITU-T) that defines the protocols to provide audio-visual communicationsessions on any packet network The H323 standard addresses call signaling andcontrol multimedia transport and control and bandwidth control for point-to-pointand multi-point conferences
Description
httpwwwh323forumorgReference
L764Global ID
64ID
Known Mappings
-UDP Port
110001100111002110031100411005110061100711008110091101011011110121101311TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 21
BGPH323
HTTPhttpNameCLI Keyword
HyperText Transfer ProtocolFull Name
Hypertext Transfer Protocol (HTTP) is a standard for communication betweenweb browsers and servers over the World Wide Web The protocol works in arequest-responsemanner over a client server computingmodel The server usuallylistens on port 80
Description
httpwwww3orgProtocolsrfc2616rfc2616htmlReference
L480Global ID
3ID
Known Mappings
-UDP Port
80TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1022
BGPHTTP
ICMPicmpNameCLI Keyword
Internet Control Message ProtocolFull Name
Internet Control Message Protocol (ICMP) messages are typically generated inresponse to errors in IP datagrams or for diagnostic or routing purposes ICMPerrors are always reported to the original source IP address of the originatingdatagram ICMP is IP protocol number 1 Traffic is classified only if its identifiedas ICMP but was not recognized as any other more granular classification suchas Ping
Description
httptoolsietforghtmlrfc792Reference
L31Global ID
6ID
Known Mappings
-UDP Port
-TCP Port
1IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 23
BGPICMP
IMAPimapNameCLI Keyword
Internet Message Access Protocol version 4Full Name
The Internet Message Acceess protocol allows users to acess their email serversand to receivesend emails The protocol simulates a local use when in-fact it isa connection to a server An IMAP server usually listens on port 143
Description
httptoolsietforghtmlrfc3501Reference
L4143Global ID
17ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1024
BGPIMAP
IPINIPipinipNameCLI Keyword
IP in IPFull Name
IP in IP tunneling is a protocol used to encapsulate IP headers to a different IPheader to share information between endpoints in different internet-networks(for example forwarding traffic from one intranet to another)
Description
httptoolsietforghtmlrfc1853Reference
L34Global ID
8ID
Known Mappings
-UDP Port
-TCP Port
4IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 25
BGPIPINIP
IPV6-ICMPipv6-icmpNameCLI Keyword
ICMP for IPv6Full Name
Internet Control Message Protocol version 6 (ICMPv6) is the implementation ofthe Internet Control Message Protocol (ICMP) for Internet Protocol version 6(IPv6) ICMPv6 is an integral part of IPv6 and performs error reporting diagnosticfunctions (eg ping) and a framework for extensions to implement futurechanges
Description
httptoolsietforghtmlrfc4443Reference
L358Global ID
812ID
Known Mappings
-UDP Port
-TCP Port
58IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1026
BGPIPV6-ICMP
IRCircNameCLI Keyword
Internet Relay ChatFull Name
Internet Relay Chat (IRC) protocol is used for chat messaging in real time It canbe used for conferencing or one-on-one chatting The protocol works onclient-server architecture with a distributed manner An IRC server usually listenson TCP port 194
Description
httpwwwirchelporgirchelprfcrfchtmlReference
L4194Global ID
19ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
httpUnderlying Protocols
NBAR2 Standard Protocol Pack 10 27
BGPIRC
KAZAA2kazaa2NameCLI Keyword
Kazaa2Full Name
Kazaa is an online music subscription service that is based on second generationpeer-to-peer technology FastTracker
Description
httpwwwkazaacomaboutReference
L759Global ID
59ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1028
BGPKAZAA2
KERBEROSkerberosNameCLI Keyword
KerberosFull Name
Kerberos is a network authentication protocol The protocol is used to verifyidentities over the internet using a trusted third party Extensions of the protocolalso use the exchange of cryptographic certification of a public key Usually theprotocol uses TCPUDP ports 88749 as default
Description
httpwwwietforgrfcrfc4120txtReference
L488Global ID
21ID
Known Mappings
88749UDP Port
88749TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 29
BGPKERBEROS
L2TPl2tpNameCLI Keyword
Layer 2 Tunneling ProtocolFull Name
Layer 2 Tunneling Protocol (L2TP) is a tunneling protocol used to support virtualprivate networks (VPNs) or as part of the delivery of services by ISPs It doesnot provide any encryption or confidentiality by itself it relies on an encryptionprotocol that it passes within the tunnel to provide privacy
Description
httptoolsietforghtmlrfc2661Reference
L4115Global ID
22ID
Known Mappings
1701UDP Port
1701TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1030
BGPL2TP
LDAPldapNameCLI Keyword
Lightweight Directory Access ProtocolFull Name
Lightweight Directory Access Protocol (LDAP) is a protocol designed to toaccess distributed directory services Typically it uses port 389 for TCP andUDP
Description
httptoolsietforghtmlrfc4510Reference
L4389Global ID
23ID
Known Mappings
389UDP Port
389TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 31
BGPLDAP
MGCPmgcpNameCLI Keyword
Media Gateway Control ProtocolFull Name
Media Gateway Control Protocol (MGCP) 10 is a protocol for the control ofVoice over IP (VoIP) calls by external call-control elements known as MediaGateway Controllers (MGCs) or Call Agents (CAs)
Description
httpwwwpacketizercomrfcrfc3435Reference
L762Global ID
62ID
Known Mappings
24272727UDP Port
242724282727TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1032
BGPMGCP
NETBIOSnetbiosNameCLI Keyword
Network Basic InputOutput SystemFull Name
Network Basic InputOutput System (NetBIOS) provides services related to thesession layer of the OSI model allowing applications on separate computers tocommunicate over a local area network As strictly an API NetBIOS is not anetworking protocol In modern networks NetBIOS normally runs over TCPIPvia the NetBIOS over TCPIP (NBT) protocol This results in each computer inthe network having both an IP address and a NetBIOS name corresponding to a(possibly different) host name
Description
httptoolsietforghtmlrfc1001Reference
L726Global ID
26ID
Known Mappings
137138UDP Port
137139TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 33
BGPNETBIOS
NETSHOWnetshowNameCLI Keyword
NetShowFull Name
Netshow is a Microsoft software designed to stream media over intranets andthe internet NetShow can transfer livemulticast and on-demand streamed audioillustrated audio and video Typically Netshow uses TCP port 1755 and UDPports between 1024-5000
Description
httpwwwmicrosoftcompresspasspress1997mar97nsbta2prmspxReference
L7426Global ID
53ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1034
BGPNETSHOW
NFSnfsNameCLI Keyword
Network File SystemFull Name
Network File System (NFS) is a distributed file system developed by SunMicrosystems Inc that allows users to access and modify files remotly as if itwas a local file The protocol is based on client server architecture and typicallyuses TCPUDP port 2049
Description
httpwwwietforgrfcrfc3530txtReference
L42049Global ID
27ID
Known Mappings
2049UDP Port
2049TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
NoUnderlying Protocols
NBAR2 Standard Protocol Pack 10 35
BGPNFS
NNTPnntpNameCLI Keyword
Network News Transfer ProtocolFull Name
Network News Transfer Protocol (NNTP) is an internet transfer protocol usedfor readingposting Usenet articles and transferring them between news serversUsually the TCP port is 119 while nntp over SSL TCPUDP port is 563
Description
httptoolsietforghtmlrfc3977Reference
L4119Global ID
28ID
Known Mappings
119UDP Port
119TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1036
BGPNNTP
NOTESnotesNameCLI Keyword
IBM Lotus NotesFull Name
IBM Lotus Notes is the client of a collaborative client-server platform IBMLotus Domino is the application server Lotus Notes provides integratedcollaboration functionality including email calendaring contacts managementto do tracking instant messaging an office productivity suite (IBM LotusSymphony) and access to other Lotus Domino applications and databases
Description
httpwww-01ibmcomsoftwarelotusnotesanddominoReference
L41352Global ID
30ID
Known Mappings
1352UDP Port
1352TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 37
BGPNOTES
NTPntpNameCLI Keyword
Network Time ProtocolFull Name
The Network Time Protocol is a protocol for synchronizing the system clocksof distributed computer systems over packet-switched variable-latency datanetworks Usually the UDP port used is 123
Description
httpwwweecisudeledu~millsntphtmlindexhtmlReference
L4123Global ID
31ID
Known Mappings
123UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1038
BGPNTP
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
EXCHANGEexchangeNameCLI Keyword
Microsoft ExchangeFull Name
Exchange is a protocol that allows users to synchronize and connect to theirexchange server when the client is outside the organizations firewall Theunderlying protocol is RPC over HTTP
Description
httpsupportmicrosoftcomkb262986Reference
L749Global ID
49ID
Known Mappings
-UDP Port
135TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1014
BGPEXCHANGE
FASTTRACKfasttrackNameCLI Keyword
FastTrackFull Name
FastTrack is a file sharing client software that is based on peer-to-peer connectionFastTrack is used by multiple file sharing applications such as Kazaa GroksteriMesh andMorpheus Initialization Initial the connection with FastTrack serverover HTTP Search Searching for files in FastTrack server Download Downloadrequest from FastTracker server
Description
httpdeveloperberliosdeprojectsgift-fasttrackReference
L757Global ID
57ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 15
BGPFASTTRACK
FINGERfingerNameCLI Keyword
Finger ProtocolFull Name
The FingerName protocol provides an interface to the Name and Finger programsat several network sites These programs return a friendly human-oriented statusreport on either the system at the moment or a particular person in depth
Description
httpwwwietforgrfcrfc1288txtReference
L479Global ID
14ID
Known Mappings
79UDP Port
79TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1016
BGPFINGER
FTPftpNameCLI Keyword
File Transfer ProtocolFull Name
File Transfer Protocol (FTP) is used to transfer files between hosts over TCPnetworks and is based on client-server architecture An FTP server usually listenson port 21
Description
httpwwwietforgrfcrfc959txtReference
L421Global ID
2ID
Known Mappings
-UDP Port
21TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 17
BGPFTP
GNUTELLAgnutellaNameCLI Keyword
GnutellaFull Name
Gnutella ver2 is decentralized and open-source peer-to-peer file sharing protocolused by various clients such as BearShare Shareeza Morpheus etc Using aGnutella client files can be shared located and downloaded by another Gnutellaclient
Description
httprfc-gnutellasourceforgenetReference
L758Global ID
58ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1018
BGPGNUTELLA
GOPHERgopherNameCLI Keyword
GopherFull Name
Internet Gopher protocol is a protocol is a TCPIP application layer protocoldesigned for distributing searching and retrieving documents over the InternetThe protocol is based on a client-server architecture and usually uses TCP port70 as default
Description
httptoolsietforghtmlrfc1436Reference
L470Global ID
15ID
Known Mappings
70UDP Port
70TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 19
BGPGOPHER
GREgreNameCLI Keyword
Generic Route EncapsulationFull Name
Generic Routing Encapsulation (GRE) is a protocol used for encapsulation of anetwork layer over another The protocol encapsulates the packet and saves theprotocol type of the payload packet so the receivers know what network layerwas encapsulated and digests the packet respectively Usually the protocol usesIP port 47
Description
httptoolsietforghtmlrfc2784Reference
L347Global ID
5ID
Known Mappings
-UDP Port
-TCP Port
47IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1020
BGPGRE
H323h323NameCLI Keyword
H323Full Name
H323 is a recommendation from the ITU Telecommunication StandardizationSector (ITU-T) that defines the protocols to provide audio-visual communicationsessions on any packet network The H323 standard addresses call signaling andcontrol multimedia transport and control and bandwidth control for point-to-pointand multi-point conferences
Description
httpwwwh323forumorgReference
L764Global ID
64ID
Known Mappings
-UDP Port
110001100111002110031100411005110061100711008110091101011011110121101311TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 21
BGPH323
HTTPhttpNameCLI Keyword
HyperText Transfer ProtocolFull Name
Hypertext Transfer Protocol (HTTP) is a standard for communication betweenweb browsers and servers over the World Wide Web The protocol works in arequest-responsemanner over a client server computingmodel The server usuallylistens on port 80
Description
httpwwww3orgProtocolsrfc2616rfc2616htmlReference
L480Global ID
3ID
Known Mappings
-UDP Port
80TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1022
BGPHTTP
ICMPicmpNameCLI Keyword
Internet Control Message ProtocolFull Name
Internet Control Message Protocol (ICMP) messages are typically generated inresponse to errors in IP datagrams or for diagnostic or routing purposes ICMPerrors are always reported to the original source IP address of the originatingdatagram ICMP is IP protocol number 1 Traffic is classified only if its identifiedas ICMP but was not recognized as any other more granular classification suchas Ping
Description
httptoolsietforghtmlrfc792Reference
L31Global ID
6ID
Known Mappings
-UDP Port
-TCP Port
1IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 23
BGPICMP
IMAPimapNameCLI Keyword
Internet Message Access Protocol version 4Full Name
The Internet Message Acceess protocol allows users to acess their email serversand to receivesend emails The protocol simulates a local use when in-fact it isa connection to a server An IMAP server usually listens on port 143
Description
httptoolsietforghtmlrfc3501Reference
L4143Global ID
17ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1024
BGPIMAP
IPINIPipinipNameCLI Keyword
IP in IPFull Name
IP in IP tunneling is a protocol used to encapsulate IP headers to a different IPheader to share information between endpoints in different internet-networks(for example forwarding traffic from one intranet to another)
Description
httptoolsietforghtmlrfc1853Reference
L34Global ID
8ID
Known Mappings
-UDP Port
-TCP Port
4IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 25
BGPIPINIP
IPV6-ICMPipv6-icmpNameCLI Keyword
ICMP for IPv6Full Name
Internet Control Message Protocol version 6 (ICMPv6) is the implementation ofthe Internet Control Message Protocol (ICMP) for Internet Protocol version 6(IPv6) ICMPv6 is an integral part of IPv6 and performs error reporting diagnosticfunctions (eg ping) and a framework for extensions to implement futurechanges
Description
httptoolsietforghtmlrfc4443Reference
L358Global ID
812ID
Known Mappings
-UDP Port
-TCP Port
58IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1026
BGPIPV6-ICMP
IRCircNameCLI Keyword
Internet Relay ChatFull Name
Internet Relay Chat (IRC) protocol is used for chat messaging in real time It canbe used for conferencing or one-on-one chatting The protocol works onclient-server architecture with a distributed manner An IRC server usually listenson TCP port 194
Description
httpwwwirchelporgirchelprfcrfchtmlReference
L4194Global ID
19ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
httpUnderlying Protocols
NBAR2 Standard Protocol Pack 10 27
BGPIRC
KAZAA2kazaa2NameCLI Keyword
Kazaa2Full Name
Kazaa is an online music subscription service that is based on second generationpeer-to-peer technology FastTracker
Description
httpwwwkazaacomaboutReference
L759Global ID
59ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1028
BGPKAZAA2
KERBEROSkerberosNameCLI Keyword
KerberosFull Name
Kerberos is a network authentication protocol The protocol is used to verifyidentities over the internet using a trusted third party Extensions of the protocolalso use the exchange of cryptographic certification of a public key Usually theprotocol uses TCPUDP ports 88749 as default
Description
httpwwwietforgrfcrfc4120txtReference
L488Global ID
21ID
Known Mappings
88749UDP Port
88749TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 29
BGPKERBEROS
L2TPl2tpNameCLI Keyword
Layer 2 Tunneling ProtocolFull Name
Layer 2 Tunneling Protocol (L2TP) is a tunneling protocol used to support virtualprivate networks (VPNs) or as part of the delivery of services by ISPs It doesnot provide any encryption or confidentiality by itself it relies on an encryptionprotocol that it passes within the tunnel to provide privacy
Description
httptoolsietforghtmlrfc2661Reference
L4115Global ID
22ID
Known Mappings
1701UDP Port
1701TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1030
BGPL2TP
LDAPldapNameCLI Keyword
Lightweight Directory Access ProtocolFull Name
Lightweight Directory Access Protocol (LDAP) is a protocol designed to toaccess distributed directory services Typically it uses port 389 for TCP andUDP
Description
httptoolsietforghtmlrfc4510Reference
L4389Global ID
23ID
Known Mappings
389UDP Port
389TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 31
BGPLDAP
MGCPmgcpNameCLI Keyword
Media Gateway Control ProtocolFull Name
Media Gateway Control Protocol (MGCP) 10 is a protocol for the control ofVoice over IP (VoIP) calls by external call-control elements known as MediaGateway Controllers (MGCs) or Call Agents (CAs)
Description
httpwwwpacketizercomrfcrfc3435Reference
L762Global ID
62ID
Known Mappings
24272727UDP Port
242724282727TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1032
BGPMGCP
NETBIOSnetbiosNameCLI Keyword
Network Basic InputOutput SystemFull Name
Network Basic InputOutput System (NetBIOS) provides services related to thesession layer of the OSI model allowing applications on separate computers tocommunicate over a local area network As strictly an API NetBIOS is not anetworking protocol In modern networks NetBIOS normally runs over TCPIPvia the NetBIOS over TCPIP (NBT) protocol This results in each computer inthe network having both an IP address and a NetBIOS name corresponding to a(possibly different) host name
Description
httptoolsietforghtmlrfc1001Reference
L726Global ID
26ID
Known Mappings
137138UDP Port
137139TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 33
BGPNETBIOS
NETSHOWnetshowNameCLI Keyword
NetShowFull Name
Netshow is a Microsoft software designed to stream media over intranets andthe internet NetShow can transfer livemulticast and on-demand streamed audioillustrated audio and video Typically Netshow uses TCP port 1755 and UDPports between 1024-5000
Description
httpwwwmicrosoftcompresspasspress1997mar97nsbta2prmspxReference
L7426Global ID
53ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1034
BGPNETSHOW
NFSnfsNameCLI Keyword
Network File SystemFull Name
Network File System (NFS) is a distributed file system developed by SunMicrosystems Inc that allows users to access and modify files remotly as if itwas a local file The protocol is based on client server architecture and typicallyuses TCPUDP port 2049
Description
httpwwwietforgrfcrfc3530txtReference
L42049Global ID
27ID
Known Mappings
2049UDP Port
2049TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
NoUnderlying Protocols
NBAR2 Standard Protocol Pack 10 35
BGPNFS
NNTPnntpNameCLI Keyword
Network News Transfer ProtocolFull Name
Network News Transfer Protocol (NNTP) is an internet transfer protocol usedfor readingposting Usenet articles and transferring them between news serversUsually the TCP port is 119 while nntp over SSL TCPUDP port is 563
Description
httptoolsietforghtmlrfc3977Reference
L4119Global ID
28ID
Known Mappings
119UDP Port
119TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1036
BGPNNTP
NOTESnotesNameCLI Keyword
IBM Lotus NotesFull Name
IBM Lotus Notes is the client of a collaborative client-server platform IBMLotus Domino is the application server Lotus Notes provides integratedcollaboration functionality including email calendaring contacts managementto do tracking instant messaging an office productivity suite (IBM LotusSymphony) and access to other Lotus Domino applications and databases
Description
httpwww-01ibmcomsoftwarelotusnotesanddominoReference
L41352Global ID
30ID
Known Mappings
1352UDP Port
1352TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 37
BGPNOTES
NTPntpNameCLI Keyword
Network Time ProtocolFull Name
The Network Time Protocol is a protocol for synchronizing the system clocksof distributed computer systems over packet-switched variable-latency datanetworks Usually the UDP port used is 123
Description
httpwwweecisudeledu~millsntphtmlindexhtmlReference
L4123Global ID
31ID
Known Mappings
123UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1038
BGPNTP
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
FASTTRACKfasttrackNameCLI Keyword
FastTrackFull Name
FastTrack is a file sharing client software that is based on peer-to-peer connectionFastTrack is used by multiple file sharing applications such as Kazaa GroksteriMesh andMorpheus Initialization Initial the connection with FastTrack serverover HTTP Search Searching for files in FastTrack server Download Downloadrequest from FastTracker server
Description
httpdeveloperberliosdeprojectsgift-fasttrackReference
L757Global ID
57ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 15
BGPFASTTRACK
FINGERfingerNameCLI Keyword
Finger ProtocolFull Name
The FingerName protocol provides an interface to the Name and Finger programsat several network sites These programs return a friendly human-oriented statusreport on either the system at the moment or a particular person in depth
Description
httpwwwietforgrfcrfc1288txtReference
L479Global ID
14ID
Known Mappings
79UDP Port
79TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1016
BGPFINGER
FTPftpNameCLI Keyword
File Transfer ProtocolFull Name
File Transfer Protocol (FTP) is used to transfer files between hosts over TCPnetworks and is based on client-server architecture An FTP server usually listenson port 21
Description
httpwwwietforgrfcrfc959txtReference
L421Global ID
2ID
Known Mappings
-UDP Port
21TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 17
BGPFTP
GNUTELLAgnutellaNameCLI Keyword
GnutellaFull Name
Gnutella ver2 is decentralized and open-source peer-to-peer file sharing protocolused by various clients such as BearShare Shareeza Morpheus etc Using aGnutella client files can be shared located and downloaded by another Gnutellaclient
Description
httprfc-gnutellasourceforgenetReference
L758Global ID
58ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1018
BGPGNUTELLA
GOPHERgopherNameCLI Keyword
GopherFull Name
Internet Gopher protocol is a protocol is a TCPIP application layer protocoldesigned for distributing searching and retrieving documents over the InternetThe protocol is based on a client-server architecture and usually uses TCP port70 as default
Description
httptoolsietforghtmlrfc1436Reference
L470Global ID
15ID
Known Mappings
70UDP Port
70TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 19
BGPGOPHER
GREgreNameCLI Keyword
Generic Route EncapsulationFull Name
Generic Routing Encapsulation (GRE) is a protocol used for encapsulation of anetwork layer over another The protocol encapsulates the packet and saves theprotocol type of the payload packet so the receivers know what network layerwas encapsulated and digests the packet respectively Usually the protocol usesIP port 47
Description
httptoolsietforghtmlrfc2784Reference
L347Global ID
5ID
Known Mappings
-UDP Port
-TCP Port
47IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1020
BGPGRE
H323h323NameCLI Keyword
H323Full Name
H323 is a recommendation from the ITU Telecommunication StandardizationSector (ITU-T) that defines the protocols to provide audio-visual communicationsessions on any packet network The H323 standard addresses call signaling andcontrol multimedia transport and control and bandwidth control for point-to-pointand multi-point conferences
Description
httpwwwh323forumorgReference
L764Global ID
64ID
Known Mappings
-UDP Port
110001100111002110031100411005110061100711008110091101011011110121101311TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 21
BGPH323
HTTPhttpNameCLI Keyword
HyperText Transfer ProtocolFull Name
Hypertext Transfer Protocol (HTTP) is a standard for communication betweenweb browsers and servers over the World Wide Web The protocol works in arequest-responsemanner over a client server computingmodel The server usuallylistens on port 80
Description
httpwwww3orgProtocolsrfc2616rfc2616htmlReference
L480Global ID
3ID
Known Mappings
-UDP Port
80TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1022
BGPHTTP
ICMPicmpNameCLI Keyword
Internet Control Message ProtocolFull Name
Internet Control Message Protocol (ICMP) messages are typically generated inresponse to errors in IP datagrams or for diagnostic or routing purposes ICMPerrors are always reported to the original source IP address of the originatingdatagram ICMP is IP protocol number 1 Traffic is classified only if its identifiedas ICMP but was not recognized as any other more granular classification suchas Ping
Description
httptoolsietforghtmlrfc792Reference
L31Global ID
6ID
Known Mappings
-UDP Port
-TCP Port
1IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 23
BGPICMP
IMAPimapNameCLI Keyword
Internet Message Access Protocol version 4Full Name
The Internet Message Acceess protocol allows users to acess their email serversand to receivesend emails The protocol simulates a local use when in-fact it isa connection to a server An IMAP server usually listens on port 143
Description
httptoolsietforghtmlrfc3501Reference
L4143Global ID
17ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1024
BGPIMAP
IPINIPipinipNameCLI Keyword
IP in IPFull Name
IP in IP tunneling is a protocol used to encapsulate IP headers to a different IPheader to share information between endpoints in different internet-networks(for example forwarding traffic from one intranet to another)
Description
httptoolsietforghtmlrfc1853Reference
L34Global ID
8ID
Known Mappings
-UDP Port
-TCP Port
4IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 25
BGPIPINIP
IPV6-ICMPipv6-icmpNameCLI Keyword
ICMP for IPv6Full Name
Internet Control Message Protocol version 6 (ICMPv6) is the implementation ofthe Internet Control Message Protocol (ICMP) for Internet Protocol version 6(IPv6) ICMPv6 is an integral part of IPv6 and performs error reporting diagnosticfunctions (eg ping) and a framework for extensions to implement futurechanges
Description
httptoolsietforghtmlrfc4443Reference
L358Global ID
812ID
Known Mappings
-UDP Port
-TCP Port
58IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1026
BGPIPV6-ICMP
IRCircNameCLI Keyword
Internet Relay ChatFull Name
Internet Relay Chat (IRC) protocol is used for chat messaging in real time It canbe used for conferencing or one-on-one chatting The protocol works onclient-server architecture with a distributed manner An IRC server usually listenson TCP port 194
Description
httpwwwirchelporgirchelprfcrfchtmlReference
L4194Global ID
19ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
httpUnderlying Protocols
NBAR2 Standard Protocol Pack 10 27
BGPIRC
KAZAA2kazaa2NameCLI Keyword
Kazaa2Full Name
Kazaa is an online music subscription service that is based on second generationpeer-to-peer technology FastTracker
Description
httpwwwkazaacomaboutReference
L759Global ID
59ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1028
BGPKAZAA2
KERBEROSkerberosNameCLI Keyword
KerberosFull Name
Kerberos is a network authentication protocol The protocol is used to verifyidentities over the internet using a trusted third party Extensions of the protocolalso use the exchange of cryptographic certification of a public key Usually theprotocol uses TCPUDP ports 88749 as default
Description
httpwwwietforgrfcrfc4120txtReference
L488Global ID
21ID
Known Mappings
88749UDP Port
88749TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 29
BGPKERBEROS
L2TPl2tpNameCLI Keyword
Layer 2 Tunneling ProtocolFull Name
Layer 2 Tunneling Protocol (L2TP) is a tunneling protocol used to support virtualprivate networks (VPNs) or as part of the delivery of services by ISPs It doesnot provide any encryption or confidentiality by itself it relies on an encryptionprotocol that it passes within the tunnel to provide privacy
Description
httptoolsietforghtmlrfc2661Reference
L4115Global ID
22ID
Known Mappings
1701UDP Port
1701TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1030
BGPL2TP
LDAPldapNameCLI Keyword
Lightweight Directory Access ProtocolFull Name
Lightweight Directory Access Protocol (LDAP) is a protocol designed to toaccess distributed directory services Typically it uses port 389 for TCP andUDP
Description
httptoolsietforghtmlrfc4510Reference
L4389Global ID
23ID
Known Mappings
389UDP Port
389TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 31
BGPLDAP
MGCPmgcpNameCLI Keyword
Media Gateway Control ProtocolFull Name
Media Gateway Control Protocol (MGCP) 10 is a protocol for the control ofVoice over IP (VoIP) calls by external call-control elements known as MediaGateway Controllers (MGCs) or Call Agents (CAs)
Description
httpwwwpacketizercomrfcrfc3435Reference
L762Global ID
62ID
Known Mappings
24272727UDP Port
242724282727TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1032
BGPMGCP
NETBIOSnetbiosNameCLI Keyword
Network Basic InputOutput SystemFull Name
Network Basic InputOutput System (NetBIOS) provides services related to thesession layer of the OSI model allowing applications on separate computers tocommunicate over a local area network As strictly an API NetBIOS is not anetworking protocol In modern networks NetBIOS normally runs over TCPIPvia the NetBIOS over TCPIP (NBT) protocol This results in each computer inthe network having both an IP address and a NetBIOS name corresponding to a(possibly different) host name
Description
httptoolsietforghtmlrfc1001Reference
L726Global ID
26ID
Known Mappings
137138UDP Port
137139TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 33
BGPNETBIOS
NETSHOWnetshowNameCLI Keyword
NetShowFull Name
Netshow is a Microsoft software designed to stream media over intranets andthe internet NetShow can transfer livemulticast and on-demand streamed audioillustrated audio and video Typically Netshow uses TCP port 1755 and UDPports between 1024-5000
Description
httpwwwmicrosoftcompresspasspress1997mar97nsbta2prmspxReference
L7426Global ID
53ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1034
BGPNETSHOW
NFSnfsNameCLI Keyword
Network File SystemFull Name
Network File System (NFS) is a distributed file system developed by SunMicrosystems Inc that allows users to access and modify files remotly as if itwas a local file The protocol is based on client server architecture and typicallyuses TCPUDP port 2049
Description
httpwwwietforgrfcrfc3530txtReference
L42049Global ID
27ID
Known Mappings
2049UDP Port
2049TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
NoUnderlying Protocols
NBAR2 Standard Protocol Pack 10 35
BGPNFS
NNTPnntpNameCLI Keyword
Network News Transfer ProtocolFull Name
Network News Transfer Protocol (NNTP) is an internet transfer protocol usedfor readingposting Usenet articles and transferring them between news serversUsually the TCP port is 119 while nntp over SSL TCPUDP port is 563
Description
httptoolsietforghtmlrfc3977Reference
L4119Global ID
28ID
Known Mappings
119UDP Port
119TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1036
BGPNNTP
NOTESnotesNameCLI Keyword
IBM Lotus NotesFull Name
IBM Lotus Notes is the client of a collaborative client-server platform IBMLotus Domino is the application server Lotus Notes provides integratedcollaboration functionality including email calendaring contacts managementto do tracking instant messaging an office productivity suite (IBM LotusSymphony) and access to other Lotus Domino applications and databases
Description
httpwww-01ibmcomsoftwarelotusnotesanddominoReference
L41352Global ID
30ID
Known Mappings
1352UDP Port
1352TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 37
BGPNOTES
NTPntpNameCLI Keyword
Network Time ProtocolFull Name
The Network Time Protocol is a protocol for synchronizing the system clocksof distributed computer systems over packet-switched variable-latency datanetworks Usually the UDP port used is 123
Description
httpwwweecisudeledu~millsntphtmlindexhtmlReference
L4123Global ID
31ID
Known Mappings
123UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1038
BGPNTP
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
FINGERfingerNameCLI Keyword
Finger ProtocolFull Name
The FingerName protocol provides an interface to the Name and Finger programsat several network sites These programs return a friendly human-oriented statusreport on either the system at the moment or a particular person in depth
Description
httpwwwietforgrfcrfc1288txtReference
L479Global ID
14ID
Known Mappings
79UDP Port
79TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1016
BGPFINGER
FTPftpNameCLI Keyword
File Transfer ProtocolFull Name
File Transfer Protocol (FTP) is used to transfer files between hosts over TCPnetworks and is based on client-server architecture An FTP server usually listenson port 21
Description
httpwwwietforgrfcrfc959txtReference
L421Global ID
2ID
Known Mappings
-UDP Port
21TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 17
BGPFTP
GNUTELLAgnutellaNameCLI Keyword
GnutellaFull Name
Gnutella ver2 is decentralized and open-source peer-to-peer file sharing protocolused by various clients such as BearShare Shareeza Morpheus etc Using aGnutella client files can be shared located and downloaded by another Gnutellaclient
Description
httprfc-gnutellasourceforgenetReference
L758Global ID
58ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1018
BGPGNUTELLA
GOPHERgopherNameCLI Keyword
GopherFull Name
Internet Gopher protocol is a protocol is a TCPIP application layer protocoldesigned for distributing searching and retrieving documents over the InternetThe protocol is based on a client-server architecture and usually uses TCP port70 as default
Description
httptoolsietforghtmlrfc1436Reference
L470Global ID
15ID
Known Mappings
70UDP Port
70TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 19
BGPGOPHER
GREgreNameCLI Keyword
Generic Route EncapsulationFull Name
Generic Routing Encapsulation (GRE) is a protocol used for encapsulation of anetwork layer over another The protocol encapsulates the packet and saves theprotocol type of the payload packet so the receivers know what network layerwas encapsulated and digests the packet respectively Usually the protocol usesIP port 47
Description
httptoolsietforghtmlrfc2784Reference
L347Global ID
5ID
Known Mappings
-UDP Port
-TCP Port
47IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1020
BGPGRE
H323h323NameCLI Keyword
H323Full Name
H323 is a recommendation from the ITU Telecommunication StandardizationSector (ITU-T) that defines the protocols to provide audio-visual communicationsessions on any packet network The H323 standard addresses call signaling andcontrol multimedia transport and control and bandwidth control for point-to-pointand multi-point conferences
Description
httpwwwh323forumorgReference
L764Global ID
64ID
Known Mappings
-UDP Port
110001100111002110031100411005110061100711008110091101011011110121101311TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 21
BGPH323
HTTPhttpNameCLI Keyword
HyperText Transfer ProtocolFull Name
Hypertext Transfer Protocol (HTTP) is a standard for communication betweenweb browsers and servers over the World Wide Web The protocol works in arequest-responsemanner over a client server computingmodel The server usuallylistens on port 80
Description
httpwwww3orgProtocolsrfc2616rfc2616htmlReference
L480Global ID
3ID
Known Mappings
-UDP Port
80TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1022
BGPHTTP
ICMPicmpNameCLI Keyword
Internet Control Message ProtocolFull Name
Internet Control Message Protocol (ICMP) messages are typically generated inresponse to errors in IP datagrams or for diagnostic or routing purposes ICMPerrors are always reported to the original source IP address of the originatingdatagram ICMP is IP protocol number 1 Traffic is classified only if its identifiedas ICMP but was not recognized as any other more granular classification suchas Ping
Description
httptoolsietforghtmlrfc792Reference
L31Global ID
6ID
Known Mappings
-UDP Port
-TCP Port
1IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 23
BGPICMP
IMAPimapNameCLI Keyword
Internet Message Access Protocol version 4Full Name
The Internet Message Acceess protocol allows users to acess their email serversand to receivesend emails The protocol simulates a local use when in-fact it isa connection to a server An IMAP server usually listens on port 143
Description
httptoolsietforghtmlrfc3501Reference
L4143Global ID
17ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1024
BGPIMAP
IPINIPipinipNameCLI Keyword
IP in IPFull Name
IP in IP tunneling is a protocol used to encapsulate IP headers to a different IPheader to share information between endpoints in different internet-networks(for example forwarding traffic from one intranet to another)
Description
httptoolsietforghtmlrfc1853Reference
L34Global ID
8ID
Known Mappings
-UDP Port
-TCP Port
4IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 25
BGPIPINIP
IPV6-ICMPipv6-icmpNameCLI Keyword
ICMP for IPv6Full Name
Internet Control Message Protocol version 6 (ICMPv6) is the implementation ofthe Internet Control Message Protocol (ICMP) for Internet Protocol version 6(IPv6) ICMPv6 is an integral part of IPv6 and performs error reporting diagnosticfunctions (eg ping) and a framework for extensions to implement futurechanges
Description
httptoolsietforghtmlrfc4443Reference
L358Global ID
812ID
Known Mappings
-UDP Port
-TCP Port
58IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1026
BGPIPV6-ICMP
IRCircNameCLI Keyword
Internet Relay ChatFull Name
Internet Relay Chat (IRC) protocol is used for chat messaging in real time It canbe used for conferencing or one-on-one chatting The protocol works onclient-server architecture with a distributed manner An IRC server usually listenson TCP port 194
Description
httpwwwirchelporgirchelprfcrfchtmlReference
L4194Global ID
19ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
httpUnderlying Protocols
NBAR2 Standard Protocol Pack 10 27
BGPIRC
KAZAA2kazaa2NameCLI Keyword
Kazaa2Full Name
Kazaa is an online music subscription service that is based on second generationpeer-to-peer technology FastTracker
Description
httpwwwkazaacomaboutReference
L759Global ID
59ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1028
BGPKAZAA2
KERBEROSkerberosNameCLI Keyword
KerberosFull Name
Kerberos is a network authentication protocol The protocol is used to verifyidentities over the internet using a trusted third party Extensions of the protocolalso use the exchange of cryptographic certification of a public key Usually theprotocol uses TCPUDP ports 88749 as default
Description
httpwwwietforgrfcrfc4120txtReference
L488Global ID
21ID
Known Mappings
88749UDP Port
88749TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 29
BGPKERBEROS
L2TPl2tpNameCLI Keyword
Layer 2 Tunneling ProtocolFull Name
Layer 2 Tunneling Protocol (L2TP) is a tunneling protocol used to support virtualprivate networks (VPNs) or as part of the delivery of services by ISPs It doesnot provide any encryption or confidentiality by itself it relies on an encryptionprotocol that it passes within the tunnel to provide privacy
Description
httptoolsietforghtmlrfc2661Reference
L4115Global ID
22ID
Known Mappings
1701UDP Port
1701TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1030
BGPL2TP
LDAPldapNameCLI Keyword
Lightweight Directory Access ProtocolFull Name
Lightweight Directory Access Protocol (LDAP) is a protocol designed to toaccess distributed directory services Typically it uses port 389 for TCP andUDP
Description
httptoolsietforghtmlrfc4510Reference
L4389Global ID
23ID
Known Mappings
389UDP Port
389TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 31
BGPLDAP
MGCPmgcpNameCLI Keyword
Media Gateway Control ProtocolFull Name
Media Gateway Control Protocol (MGCP) 10 is a protocol for the control ofVoice over IP (VoIP) calls by external call-control elements known as MediaGateway Controllers (MGCs) or Call Agents (CAs)
Description
httpwwwpacketizercomrfcrfc3435Reference
L762Global ID
62ID
Known Mappings
24272727UDP Port
242724282727TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1032
BGPMGCP
NETBIOSnetbiosNameCLI Keyword
Network Basic InputOutput SystemFull Name
Network Basic InputOutput System (NetBIOS) provides services related to thesession layer of the OSI model allowing applications on separate computers tocommunicate over a local area network As strictly an API NetBIOS is not anetworking protocol In modern networks NetBIOS normally runs over TCPIPvia the NetBIOS over TCPIP (NBT) protocol This results in each computer inthe network having both an IP address and a NetBIOS name corresponding to a(possibly different) host name
Description
httptoolsietforghtmlrfc1001Reference
L726Global ID
26ID
Known Mappings
137138UDP Port
137139TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 33
BGPNETBIOS
NETSHOWnetshowNameCLI Keyword
NetShowFull Name
Netshow is a Microsoft software designed to stream media over intranets andthe internet NetShow can transfer livemulticast and on-demand streamed audioillustrated audio and video Typically Netshow uses TCP port 1755 and UDPports between 1024-5000
Description
httpwwwmicrosoftcompresspasspress1997mar97nsbta2prmspxReference
L7426Global ID
53ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1034
BGPNETSHOW
NFSnfsNameCLI Keyword
Network File SystemFull Name
Network File System (NFS) is a distributed file system developed by SunMicrosystems Inc that allows users to access and modify files remotly as if itwas a local file The protocol is based on client server architecture and typicallyuses TCPUDP port 2049
Description
httpwwwietforgrfcrfc3530txtReference
L42049Global ID
27ID
Known Mappings
2049UDP Port
2049TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
NoUnderlying Protocols
NBAR2 Standard Protocol Pack 10 35
BGPNFS
NNTPnntpNameCLI Keyword
Network News Transfer ProtocolFull Name
Network News Transfer Protocol (NNTP) is an internet transfer protocol usedfor readingposting Usenet articles and transferring them between news serversUsually the TCP port is 119 while nntp over SSL TCPUDP port is 563
Description
httptoolsietforghtmlrfc3977Reference
L4119Global ID
28ID
Known Mappings
119UDP Port
119TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1036
BGPNNTP
NOTESnotesNameCLI Keyword
IBM Lotus NotesFull Name
IBM Lotus Notes is the client of a collaborative client-server platform IBMLotus Domino is the application server Lotus Notes provides integratedcollaboration functionality including email calendaring contacts managementto do tracking instant messaging an office productivity suite (IBM LotusSymphony) and access to other Lotus Domino applications and databases
Description
httpwww-01ibmcomsoftwarelotusnotesanddominoReference
L41352Global ID
30ID
Known Mappings
1352UDP Port
1352TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 37
BGPNOTES
NTPntpNameCLI Keyword
Network Time ProtocolFull Name
The Network Time Protocol is a protocol for synchronizing the system clocksof distributed computer systems over packet-switched variable-latency datanetworks Usually the UDP port used is 123
Description
httpwwweecisudeledu~millsntphtmlindexhtmlReference
L4123Global ID
31ID
Known Mappings
123UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1038
BGPNTP
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
FTPftpNameCLI Keyword
File Transfer ProtocolFull Name
File Transfer Protocol (FTP) is used to transfer files between hosts over TCPnetworks and is based on client-server architecture An FTP server usually listenson port 21
Description
httpwwwietforgrfcrfc959txtReference
L421Global ID
2ID
Known Mappings
-UDP Port
21TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 17
BGPFTP
GNUTELLAgnutellaNameCLI Keyword
GnutellaFull Name
Gnutella ver2 is decentralized and open-source peer-to-peer file sharing protocolused by various clients such as BearShare Shareeza Morpheus etc Using aGnutella client files can be shared located and downloaded by another Gnutellaclient
Description
httprfc-gnutellasourceforgenetReference
L758Global ID
58ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1018
BGPGNUTELLA
GOPHERgopherNameCLI Keyword
GopherFull Name
Internet Gopher protocol is a protocol is a TCPIP application layer protocoldesigned for distributing searching and retrieving documents over the InternetThe protocol is based on a client-server architecture and usually uses TCP port70 as default
Description
httptoolsietforghtmlrfc1436Reference
L470Global ID
15ID
Known Mappings
70UDP Port
70TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 19
BGPGOPHER
GREgreNameCLI Keyword
Generic Route EncapsulationFull Name
Generic Routing Encapsulation (GRE) is a protocol used for encapsulation of anetwork layer over another The protocol encapsulates the packet and saves theprotocol type of the payload packet so the receivers know what network layerwas encapsulated and digests the packet respectively Usually the protocol usesIP port 47
Description
httptoolsietforghtmlrfc2784Reference
L347Global ID
5ID
Known Mappings
-UDP Port
-TCP Port
47IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1020
BGPGRE
H323h323NameCLI Keyword
H323Full Name
H323 is a recommendation from the ITU Telecommunication StandardizationSector (ITU-T) that defines the protocols to provide audio-visual communicationsessions on any packet network The H323 standard addresses call signaling andcontrol multimedia transport and control and bandwidth control for point-to-pointand multi-point conferences
Description
httpwwwh323forumorgReference
L764Global ID
64ID
Known Mappings
-UDP Port
110001100111002110031100411005110061100711008110091101011011110121101311TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 21
BGPH323
HTTPhttpNameCLI Keyword
HyperText Transfer ProtocolFull Name
Hypertext Transfer Protocol (HTTP) is a standard for communication betweenweb browsers and servers over the World Wide Web The protocol works in arequest-responsemanner over a client server computingmodel The server usuallylistens on port 80
Description
httpwwww3orgProtocolsrfc2616rfc2616htmlReference
L480Global ID
3ID
Known Mappings
-UDP Port
80TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1022
BGPHTTP
ICMPicmpNameCLI Keyword
Internet Control Message ProtocolFull Name
Internet Control Message Protocol (ICMP) messages are typically generated inresponse to errors in IP datagrams or for diagnostic or routing purposes ICMPerrors are always reported to the original source IP address of the originatingdatagram ICMP is IP protocol number 1 Traffic is classified only if its identifiedas ICMP but was not recognized as any other more granular classification suchas Ping
Description
httptoolsietforghtmlrfc792Reference
L31Global ID
6ID
Known Mappings
-UDP Port
-TCP Port
1IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 23
BGPICMP
IMAPimapNameCLI Keyword
Internet Message Access Protocol version 4Full Name
The Internet Message Acceess protocol allows users to acess their email serversand to receivesend emails The protocol simulates a local use when in-fact it isa connection to a server An IMAP server usually listens on port 143
Description
httptoolsietforghtmlrfc3501Reference
L4143Global ID
17ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1024
BGPIMAP
IPINIPipinipNameCLI Keyword
IP in IPFull Name
IP in IP tunneling is a protocol used to encapsulate IP headers to a different IPheader to share information between endpoints in different internet-networks(for example forwarding traffic from one intranet to another)
Description
httptoolsietforghtmlrfc1853Reference
L34Global ID
8ID
Known Mappings
-UDP Port
-TCP Port
4IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 25
BGPIPINIP
IPV6-ICMPipv6-icmpNameCLI Keyword
ICMP for IPv6Full Name
Internet Control Message Protocol version 6 (ICMPv6) is the implementation ofthe Internet Control Message Protocol (ICMP) for Internet Protocol version 6(IPv6) ICMPv6 is an integral part of IPv6 and performs error reporting diagnosticfunctions (eg ping) and a framework for extensions to implement futurechanges
Description
httptoolsietforghtmlrfc4443Reference
L358Global ID
812ID
Known Mappings
-UDP Port
-TCP Port
58IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1026
BGPIPV6-ICMP
IRCircNameCLI Keyword
Internet Relay ChatFull Name
Internet Relay Chat (IRC) protocol is used for chat messaging in real time It canbe used for conferencing or one-on-one chatting The protocol works onclient-server architecture with a distributed manner An IRC server usually listenson TCP port 194
Description
httpwwwirchelporgirchelprfcrfchtmlReference
L4194Global ID
19ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
httpUnderlying Protocols
NBAR2 Standard Protocol Pack 10 27
BGPIRC
KAZAA2kazaa2NameCLI Keyword
Kazaa2Full Name
Kazaa is an online music subscription service that is based on second generationpeer-to-peer technology FastTracker
Description
httpwwwkazaacomaboutReference
L759Global ID
59ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1028
BGPKAZAA2
KERBEROSkerberosNameCLI Keyword
KerberosFull Name
Kerberos is a network authentication protocol The protocol is used to verifyidentities over the internet using a trusted third party Extensions of the protocolalso use the exchange of cryptographic certification of a public key Usually theprotocol uses TCPUDP ports 88749 as default
Description
httpwwwietforgrfcrfc4120txtReference
L488Global ID
21ID
Known Mappings
88749UDP Port
88749TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 29
BGPKERBEROS
L2TPl2tpNameCLI Keyword
Layer 2 Tunneling ProtocolFull Name
Layer 2 Tunneling Protocol (L2TP) is a tunneling protocol used to support virtualprivate networks (VPNs) or as part of the delivery of services by ISPs It doesnot provide any encryption or confidentiality by itself it relies on an encryptionprotocol that it passes within the tunnel to provide privacy
Description
httptoolsietforghtmlrfc2661Reference
L4115Global ID
22ID
Known Mappings
1701UDP Port
1701TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1030
BGPL2TP
LDAPldapNameCLI Keyword
Lightweight Directory Access ProtocolFull Name
Lightweight Directory Access Protocol (LDAP) is a protocol designed to toaccess distributed directory services Typically it uses port 389 for TCP andUDP
Description
httptoolsietforghtmlrfc4510Reference
L4389Global ID
23ID
Known Mappings
389UDP Port
389TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 31
BGPLDAP
MGCPmgcpNameCLI Keyword
Media Gateway Control ProtocolFull Name
Media Gateway Control Protocol (MGCP) 10 is a protocol for the control ofVoice over IP (VoIP) calls by external call-control elements known as MediaGateway Controllers (MGCs) or Call Agents (CAs)
Description
httpwwwpacketizercomrfcrfc3435Reference
L762Global ID
62ID
Known Mappings
24272727UDP Port
242724282727TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1032
BGPMGCP
NETBIOSnetbiosNameCLI Keyword
Network Basic InputOutput SystemFull Name
Network Basic InputOutput System (NetBIOS) provides services related to thesession layer of the OSI model allowing applications on separate computers tocommunicate over a local area network As strictly an API NetBIOS is not anetworking protocol In modern networks NetBIOS normally runs over TCPIPvia the NetBIOS over TCPIP (NBT) protocol This results in each computer inthe network having both an IP address and a NetBIOS name corresponding to a(possibly different) host name
Description
httptoolsietforghtmlrfc1001Reference
L726Global ID
26ID
Known Mappings
137138UDP Port
137139TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 33
BGPNETBIOS
NETSHOWnetshowNameCLI Keyword
NetShowFull Name
Netshow is a Microsoft software designed to stream media over intranets andthe internet NetShow can transfer livemulticast and on-demand streamed audioillustrated audio and video Typically Netshow uses TCP port 1755 and UDPports between 1024-5000
Description
httpwwwmicrosoftcompresspasspress1997mar97nsbta2prmspxReference
L7426Global ID
53ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1034
BGPNETSHOW
NFSnfsNameCLI Keyword
Network File SystemFull Name
Network File System (NFS) is a distributed file system developed by SunMicrosystems Inc that allows users to access and modify files remotly as if itwas a local file The protocol is based on client server architecture and typicallyuses TCPUDP port 2049
Description
httpwwwietforgrfcrfc3530txtReference
L42049Global ID
27ID
Known Mappings
2049UDP Port
2049TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
NoUnderlying Protocols
NBAR2 Standard Protocol Pack 10 35
BGPNFS
NNTPnntpNameCLI Keyword
Network News Transfer ProtocolFull Name
Network News Transfer Protocol (NNTP) is an internet transfer protocol usedfor readingposting Usenet articles and transferring them between news serversUsually the TCP port is 119 while nntp over SSL TCPUDP port is 563
Description
httptoolsietforghtmlrfc3977Reference
L4119Global ID
28ID
Known Mappings
119UDP Port
119TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1036
BGPNNTP
NOTESnotesNameCLI Keyword
IBM Lotus NotesFull Name
IBM Lotus Notes is the client of a collaborative client-server platform IBMLotus Domino is the application server Lotus Notes provides integratedcollaboration functionality including email calendaring contacts managementto do tracking instant messaging an office productivity suite (IBM LotusSymphony) and access to other Lotus Domino applications and databases
Description
httpwww-01ibmcomsoftwarelotusnotesanddominoReference
L41352Global ID
30ID
Known Mappings
1352UDP Port
1352TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 37
BGPNOTES
NTPntpNameCLI Keyword
Network Time ProtocolFull Name
The Network Time Protocol is a protocol for synchronizing the system clocksof distributed computer systems over packet-switched variable-latency datanetworks Usually the UDP port used is 123
Description
httpwwweecisudeledu~millsntphtmlindexhtmlReference
L4123Global ID
31ID
Known Mappings
123UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1038
BGPNTP
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
GNUTELLAgnutellaNameCLI Keyword
GnutellaFull Name
Gnutella ver2 is decentralized and open-source peer-to-peer file sharing protocolused by various clients such as BearShare Shareeza Morpheus etc Using aGnutella client files can be shared located and downloaded by another Gnutellaclient
Description
httprfc-gnutellasourceforgenetReference
L758Global ID
58ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1018
BGPGNUTELLA
GOPHERgopherNameCLI Keyword
GopherFull Name
Internet Gopher protocol is a protocol is a TCPIP application layer protocoldesigned for distributing searching and retrieving documents over the InternetThe protocol is based on a client-server architecture and usually uses TCP port70 as default
Description
httptoolsietforghtmlrfc1436Reference
L470Global ID
15ID
Known Mappings
70UDP Port
70TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 19
BGPGOPHER
GREgreNameCLI Keyword
Generic Route EncapsulationFull Name
Generic Routing Encapsulation (GRE) is a protocol used for encapsulation of anetwork layer over another The protocol encapsulates the packet and saves theprotocol type of the payload packet so the receivers know what network layerwas encapsulated and digests the packet respectively Usually the protocol usesIP port 47
Description
httptoolsietforghtmlrfc2784Reference
L347Global ID
5ID
Known Mappings
-UDP Port
-TCP Port
47IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1020
BGPGRE
H323h323NameCLI Keyword
H323Full Name
H323 is a recommendation from the ITU Telecommunication StandardizationSector (ITU-T) that defines the protocols to provide audio-visual communicationsessions on any packet network The H323 standard addresses call signaling andcontrol multimedia transport and control and bandwidth control for point-to-pointand multi-point conferences
Description
httpwwwh323forumorgReference
L764Global ID
64ID
Known Mappings
-UDP Port
110001100111002110031100411005110061100711008110091101011011110121101311TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 21
BGPH323
HTTPhttpNameCLI Keyword
HyperText Transfer ProtocolFull Name
Hypertext Transfer Protocol (HTTP) is a standard for communication betweenweb browsers and servers over the World Wide Web The protocol works in arequest-responsemanner over a client server computingmodel The server usuallylistens on port 80
Description
httpwwww3orgProtocolsrfc2616rfc2616htmlReference
L480Global ID
3ID
Known Mappings
-UDP Port
80TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1022
BGPHTTP
ICMPicmpNameCLI Keyword
Internet Control Message ProtocolFull Name
Internet Control Message Protocol (ICMP) messages are typically generated inresponse to errors in IP datagrams or for diagnostic or routing purposes ICMPerrors are always reported to the original source IP address of the originatingdatagram ICMP is IP protocol number 1 Traffic is classified only if its identifiedas ICMP but was not recognized as any other more granular classification suchas Ping
Description
httptoolsietforghtmlrfc792Reference
L31Global ID
6ID
Known Mappings
-UDP Port
-TCP Port
1IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 23
BGPICMP
IMAPimapNameCLI Keyword
Internet Message Access Protocol version 4Full Name
The Internet Message Acceess protocol allows users to acess their email serversand to receivesend emails The protocol simulates a local use when in-fact it isa connection to a server An IMAP server usually listens on port 143
Description
httptoolsietforghtmlrfc3501Reference
L4143Global ID
17ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1024
BGPIMAP
IPINIPipinipNameCLI Keyword
IP in IPFull Name
IP in IP tunneling is a protocol used to encapsulate IP headers to a different IPheader to share information between endpoints in different internet-networks(for example forwarding traffic from one intranet to another)
Description
httptoolsietforghtmlrfc1853Reference
L34Global ID
8ID
Known Mappings
-UDP Port
-TCP Port
4IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 25
BGPIPINIP
IPV6-ICMPipv6-icmpNameCLI Keyword
ICMP for IPv6Full Name
Internet Control Message Protocol version 6 (ICMPv6) is the implementation ofthe Internet Control Message Protocol (ICMP) for Internet Protocol version 6(IPv6) ICMPv6 is an integral part of IPv6 and performs error reporting diagnosticfunctions (eg ping) and a framework for extensions to implement futurechanges
Description
httptoolsietforghtmlrfc4443Reference
L358Global ID
812ID
Known Mappings
-UDP Port
-TCP Port
58IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1026
BGPIPV6-ICMP
IRCircNameCLI Keyword
Internet Relay ChatFull Name
Internet Relay Chat (IRC) protocol is used for chat messaging in real time It canbe used for conferencing or one-on-one chatting The protocol works onclient-server architecture with a distributed manner An IRC server usually listenson TCP port 194
Description
httpwwwirchelporgirchelprfcrfchtmlReference
L4194Global ID
19ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
httpUnderlying Protocols
NBAR2 Standard Protocol Pack 10 27
BGPIRC
KAZAA2kazaa2NameCLI Keyword
Kazaa2Full Name
Kazaa is an online music subscription service that is based on second generationpeer-to-peer technology FastTracker
Description
httpwwwkazaacomaboutReference
L759Global ID
59ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1028
BGPKAZAA2
KERBEROSkerberosNameCLI Keyword
KerberosFull Name
Kerberos is a network authentication protocol The protocol is used to verifyidentities over the internet using a trusted third party Extensions of the protocolalso use the exchange of cryptographic certification of a public key Usually theprotocol uses TCPUDP ports 88749 as default
Description
httpwwwietforgrfcrfc4120txtReference
L488Global ID
21ID
Known Mappings
88749UDP Port
88749TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 29
BGPKERBEROS
L2TPl2tpNameCLI Keyword
Layer 2 Tunneling ProtocolFull Name
Layer 2 Tunneling Protocol (L2TP) is a tunneling protocol used to support virtualprivate networks (VPNs) or as part of the delivery of services by ISPs It doesnot provide any encryption or confidentiality by itself it relies on an encryptionprotocol that it passes within the tunnel to provide privacy
Description
httptoolsietforghtmlrfc2661Reference
L4115Global ID
22ID
Known Mappings
1701UDP Port
1701TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1030
BGPL2TP
LDAPldapNameCLI Keyword
Lightweight Directory Access ProtocolFull Name
Lightweight Directory Access Protocol (LDAP) is a protocol designed to toaccess distributed directory services Typically it uses port 389 for TCP andUDP
Description
httptoolsietforghtmlrfc4510Reference
L4389Global ID
23ID
Known Mappings
389UDP Port
389TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 31
BGPLDAP
MGCPmgcpNameCLI Keyword
Media Gateway Control ProtocolFull Name
Media Gateway Control Protocol (MGCP) 10 is a protocol for the control ofVoice over IP (VoIP) calls by external call-control elements known as MediaGateway Controllers (MGCs) or Call Agents (CAs)
Description
httpwwwpacketizercomrfcrfc3435Reference
L762Global ID
62ID
Known Mappings
24272727UDP Port
242724282727TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1032
BGPMGCP
NETBIOSnetbiosNameCLI Keyword
Network Basic InputOutput SystemFull Name
Network Basic InputOutput System (NetBIOS) provides services related to thesession layer of the OSI model allowing applications on separate computers tocommunicate over a local area network As strictly an API NetBIOS is not anetworking protocol In modern networks NetBIOS normally runs over TCPIPvia the NetBIOS over TCPIP (NBT) protocol This results in each computer inthe network having both an IP address and a NetBIOS name corresponding to a(possibly different) host name
Description
httptoolsietforghtmlrfc1001Reference
L726Global ID
26ID
Known Mappings
137138UDP Port
137139TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 33
BGPNETBIOS
NETSHOWnetshowNameCLI Keyword
NetShowFull Name
Netshow is a Microsoft software designed to stream media over intranets andthe internet NetShow can transfer livemulticast and on-demand streamed audioillustrated audio and video Typically Netshow uses TCP port 1755 and UDPports between 1024-5000
Description
httpwwwmicrosoftcompresspasspress1997mar97nsbta2prmspxReference
L7426Global ID
53ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1034
BGPNETSHOW
NFSnfsNameCLI Keyword
Network File SystemFull Name
Network File System (NFS) is a distributed file system developed by SunMicrosystems Inc that allows users to access and modify files remotly as if itwas a local file The protocol is based on client server architecture and typicallyuses TCPUDP port 2049
Description
httpwwwietforgrfcrfc3530txtReference
L42049Global ID
27ID
Known Mappings
2049UDP Port
2049TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
NoUnderlying Protocols
NBAR2 Standard Protocol Pack 10 35
BGPNFS
NNTPnntpNameCLI Keyword
Network News Transfer ProtocolFull Name
Network News Transfer Protocol (NNTP) is an internet transfer protocol usedfor readingposting Usenet articles and transferring them between news serversUsually the TCP port is 119 while nntp over SSL TCPUDP port is 563
Description
httptoolsietforghtmlrfc3977Reference
L4119Global ID
28ID
Known Mappings
119UDP Port
119TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1036
BGPNNTP
NOTESnotesNameCLI Keyword
IBM Lotus NotesFull Name
IBM Lotus Notes is the client of a collaborative client-server platform IBMLotus Domino is the application server Lotus Notes provides integratedcollaboration functionality including email calendaring contacts managementto do tracking instant messaging an office productivity suite (IBM LotusSymphony) and access to other Lotus Domino applications and databases
Description
httpwww-01ibmcomsoftwarelotusnotesanddominoReference
L41352Global ID
30ID
Known Mappings
1352UDP Port
1352TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 37
BGPNOTES
NTPntpNameCLI Keyword
Network Time ProtocolFull Name
The Network Time Protocol is a protocol for synchronizing the system clocksof distributed computer systems over packet-switched variable-latency datanetworks Usually the UDP port used is 123
Description
httpwwweecisudeledu~millsntphtmlindexhtmlReference
L4123Global ID
31ID
Known Mappings
123UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1038
BGPNTP
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
GOPHERgopherNameCLI Keyword
GopherFull Name
Internet Gopher protocol is a protocol is a TCPIP application layer protocoldesigned for distributing searching and retrieving documents over the InternetThe protocol is based on a client-server architecture and usually uses TCP port70 as default
Description
httptoolsietforghtmlrfc1436Reference
L470Global ID
15ID
Known Mappings
70UDP Port
70TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 19
BGPGOPHER
GREgreNameCLI Keyword
Generic Route EncapsulationFull Name
Generic Routing Encapsulation (GRE) is a protocol used for encapsulation of anetwork layer over another The protocol encapsulates the packet and saves theprotocol type of the payload packet so the receivers know what network layerwas encapsulated and digests the packet respectively Usually the protocol usesIP port 47
Description
httptoolsietforghtmlrfc2784Reference
L347Global ID
5ID
Known Mappings
-UDP Port
-TCP Port
47IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1020
BGPGRE
H323h323NameCLI Keyword
H323Full Name
H323 is a recommendation from the ITU Telecommunication StandardizationSector (ITU-T) that defines the protocols to provide audio-visual communicationsessions on any packet network The H323 standard addresses call signaling andcontrol multimedia transport and control and bandwidth control for point-to-pointand multi-point conferences
Description
httpwwwh323forumorgReference
L764Global ID
64ID
Known Mappings
-UDP Port
110001100111002110031100411005110061100711008110091101011011110121101311TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 21
BGPH323
HTTPhttpNameCLI Keyword
HyperText Transfer ProtocolFull Name
Hypertext Transfer Protocol (HTTP) is a standard for communication betweenweb browsers and servers over the World Wide Web The protocol works in arequest-responsemanner over a client server computingmodel The server usuallylistens on port 80
Description
httpwwww3orgProtocolsrfc2616rfc2616htmlReference
L480Global ID
3ID
Known Mappings
-UDP Port
80TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1022
BGPHTTP
ICMPicmpNameCLI Keyword
Internet Control Message ProtocolFull Name
Internet Control Message Protocol (ICMP) messages are typically generated inresponse to errors in IP datagrams or for diagnostic or routing purposes ICMPerrors are always reported to the original source IP address of the originatingdatagram ICMP is IP protocol number 1 Traffic is classified only if its identifiedas ICMP but was not recognized as any other more granular classification suchas Ping
Description
httptoolsietforghtmlrfc792Reference
L31Global ID
6ID
Known Mappings
-UDP Port
-TCP Port
1IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 23
BGPICMP
IMAPimapNameCLI Keyword
Internet Message Access Protocol version 4Full Name
The Internet Message Acceess protocol allows users to acess their email serversand to receivesend emails The protocol simulates a local use when in-fact it isa connection to a server An IMAP server usually listens on port 143
Description
httptoolsietforghtmlrfc3501Reference
L4143Global ID
17ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1024
BGPIMAP
IPINIPipinipNameCLI Keyword
IP in IPFull Name
IP in IP tunneling is a protocol used to encapsulate IP headers to a different IPheader to share information between endpoints in different internet-networks(for example forwarding traffic from one intranet to another)
Description
httptoolsietforghtmlrfc1853Reference
L34Global ID
8ID
Known Mappings
-UDP Port
-TCP Port
4IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 25
BGPIPINIP
IPV6-ICMPipv6-icmpNameCLI Keyword
ICMP for IPv6Full Name
Internet Control Message Protocol version 6 (ICMPv6) is the implementation ofthe Internet Control Message Protocol (ICMP) for Internet Protocol version 6(IPv6) ICMPv6 is an integral part of IPv6 and performs error reporting diagnosticfunctions (eg ping) and a framework for extensions to implement futurechanges
Description
httptoolsietforghtmlrfc4443Reference
L358Global ID
812ID
Known Mappings
-UDP Port
-TCP Port
58IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1026
BGPIPV6-ICMP
IRCircNameCLI Keyword
Internet Relay ChatFull Name
Internet Relay Chat (IRC) protocol is used for chat messaging in real time It canbe used for conferencing or one-on-one chatting The protocol works onclient-server architecture with a distributed manner An IRC server usually listenson TCP port 194
Description
httpwwwirchelporgirchelprfcrfchtmlReference
L4194Global ID
19ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
httpUnderlying Protocols
NBAR2 Standard Protocol Pack 10 27
BGPIRC
KAZAA2kazaa2NameCLI Keyword
Kazaa2Full Name
Kazaa is an online music subscription service that is based on second generationpeer-to-peer technology FastTracker
Description
httpwwwkazaacomaboutReference
L759Global ID
59ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1028
BGPKAZAA2
KERBEROSkerberosNameCLI Keyword
KerberosFull Name
Kerberos is a network authentication protocol The protocol is used to verifyidentities over the internet using a trusted third party Extensions of the protocolalso use the exchange of cryptographic certification of a public key Usually theprotocol uses TCPUDP ports 88749 as default
Description
httpwwwietforgrfcrfc4120txtReference
L488Global ID
21ID
Known Mappings
88749UDP Port
88749TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 29
BGPKERBEROS
L2TPl2tpNameCLI Keyword
Layer 2 Tunneling ProtocolFull Name
Layer 2 Tunneling Protocol (L2TP) is a tunneling protocol used to support virtualprivate networks (VPNs) or as part of the delivery of services by ISPs It doesnot provide any encryption or confidentiality by itself it relies on an encryptionprotocol that it passes within the tunnel to provide privacy
Description
httptoolsietforghtmlrfc2661Reference
L4115Global ID
22ID
Known Mappings
1701UDP Port
1701TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1030
BGPL2TP
LDAPldapNameCLI Keyword
Lightweight Directory Access ProtocolFull Name
Lightweight Directory Access Protocol (LDAP) is a protocol designed to toaccess distributed directory services Typically it uses port 389 for TCP andUDP
Description
httptoolsietforghtmlrfc4510Reference
L4389Global ID
23ID
Known Mappings
389UDP Port
389TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 31
BGPLDAP
MGCPmgcpNameCLI Keyword
Media Gateway Control ProtocolFull Name
Media Gateway Control Protocol (MGCP) 10 is a protocol for the control ofVoice over IP (VoIP) calls by external call-control elements known as MediaGateway Controllers (MGCs) or Call Agents (CAs)
Description
httpwwwpacketizercomrfcrfc3435Reference
L762Global ID
62ID
Known Mappings
24272727UDP Port
242724282727TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1032
BGPMGCP
NETBIOSnetbiosNameCLI Keyword
Network Basic InputOutput SystemFull Name
Network Basic InputOutput System (NetBIOS) provides services related to thesession layer of the OSI model allowing applications on separate computers tocommunicate over a local area network As strictly an API NetBIOS is not anetworking protocol In modern networks NetBIOS normally runs over TCPIPvia the NetBIOS over TCPIP (NBT) protocol This results in each computer inthe network having both an IP address and a NetBIOS name corresponding to a(possibly different) host name
Description
httptoolsietforghtmlrfc1001Reference
L726Global ID
26ID
Known Mappings
137138UDP Port
137139TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 33
BGPNETBIOS
NETSHOWnetshowNameCLI Keyword
NetShowFull Name
Netshow is a Microsoft software designed to stream media over intranets andthe internet NetShow can transfer livemulticast and on-demand streamed audioillustrated audio and video Typically Netshow uses TCP port 1755 and UDPports between 1024-5000
Description
httpwwwmicrosoftcompresspasspress1997mar97nsbta2prmspxReference
L7426Global ID
53ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1034
BGPNETSHOW
NFSnfsNameCLI Keyword
Network File SystemFull Name
Network File System (NFS) is a distributed file system developed by SunMicrosystems Inc that allows users to access and modify files remotly as if itwas a local file The protocol is based on client server architecture and typicallyuses TCPUDP port 2049
Description
httpwwwietforgrfcrfc3530txtReference
L42049Global ID
27ID
Known Mappings
2049UDP Port
2049TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
NoUnderlying Protocols
NBAR2 Standard Protocol Pack 10 35
BGPNFS
NNTPnntpNameCLI Keyword
Network News Transfer ProtocolFull Name
Network News Transfer Protocol (NNTP) is an internet transfer protocol usedfor readingposting Usenet articles and transferring them between news serversUsually the TCP port is 119 while nntp over SSL TCPUDP port is 563
Description
httptoolsietforghtmlrfc3977Reference
L4119Global ID
28ID
Known Mappings
119UDP Port
119TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1036
BGPNNTP
NOTESnotesNameCLI Keyword
IBM Lotus NotesFull Name
IBM Lotus Notes is the client of a collaborative client-server platform IBMLotus Domino is the application server Lotus Notes provides integratedcollaboration functionality including email calendaring contacts managementto do tracking instant messaging an office productivity suite (IBM LotusSymphony) and access to other Lotus Domino applications and databases
Description
httpwww-01ibmcomsoftwarelotusnotesanddominoReference
L41352Global ID
30ID
Known Mappings
1352UDP Port
1352TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 37
BGPNOTES
NTPntpNameCLI Keyword
Network Time ProtocolFull Name
The Network Time Protocol is a protocol for synchronizing the system clocksof distributed computer systems over packet-switched variable-latency datanetworks Usually the UDP port used is 123
Description
httpwwweecisudeledu~millsntphtmlindexhtmlReference
L4123Global ID
31ID
Known Mappings
123UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1038
BGPNTP
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
GREgreNameCLI Keyword
Generic Route EncapsulationFull Name
Generic Routing Encapsulation (GRE) is a protocol used for encapsulation of anetwork layer over another The protocol encapsulates the packet and saves theprotocol type of the payload packet so the receivers know what network layerwas encapsulated and digests the packet respectively Usually the protocol usesIP port 47
Description
httptoolsietforghtmlrfc2784Reference
L347Global ID
5ID
Known Mappings
-UDP Port
-TCP Port
47IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1020
BGPGRE
H323h323NameCLI Keyword
H323Full Name
H323 is a recommendation from the ITU Telecommunication StandardizationSector (ITU-T) that defines the protocols to provide audio-visual communicationsessions on any packet network The H323 standard addresses call signaling andcontrol multimedia transport and control and bandwidth control for point-to-pointand multi-point conferences
Description
httpwwwh323forumorgReference
L764Global ID
64ID
Known Mappings
-UDP Port
110001100111002110031100411005110061100711008110091101011011110121101311TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 21
BGPH323
HTTPhttpNameCLI Keyword
HyperText Transfer ProtocolFull Name
Hypertext Transfer Protocol (HTTP) is a standard for communication betweenweb browsers and servers over the World Wide Web The protocol works in arequest-responsemanner over a client server computingmodel The server usuallylistens on port 80
Description
httpwwww3orgProtocolsrfc2616rfc2616htmlReference
L480Global ID
3ID
Known Mappings
-UDP Port
80TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1022
BGPHTTP
ICMPicmpNameCLI Keyword
Internet Control Message ProtocolFull Name
Internet Control Message Protocol (ICMP) messages are typically generated inresponse to errors in IP datagrams or for diagnostic or routing purposes ICMPerrors are always reported to the original source IP address of the originatingdatagram ICMP is IP protocol number 1 Traffic is classified only if its identifiedas ICMP but was not recognized as any other more granular classification suchas Ping
Description
httptoolsietforghtmlrfc792Reference
L31Global ID
6ID
Known Mappings
-UDP Port
-TCP Port
1IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 23
BGPICMP
IMAPimapNameCLI Keyword
Internet Message Access Protocol version 4Full Name
The Internet Message Acceess protocol allows users to acess their email serversand to receivesend emails The protocol simulates a local use when in-fact it isa connection to a server An IMAP server usually listens on port 143
Description
httptoolsietforghtmlrfc3501Reference
L4143Global ID
17ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1024
BGPIMAP
IPINIPipinipNameCLI Keyword
IP in IPFull Name
IP in IP tunneling is a protocol used to encapsulate IP headers to a different IPheader to share information between endpoints in different internet-networks(for example forwarding traffic from one intranet to another)
Description
httptoolsietforghtmlrfc1853Reference
L34Global ID
8ID
Known Mappings
-UDP Port
-TCP Port
4IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 25
BGPIPINIP
IPV6-ICMPipv6-icmpNameCLI Keyword
ICMP for IPv6Full Name
Internet Control Message Protocol version 6 (ICMPv6) is the implementation ofthe Internet Control Message Protocol (ICMP) for Internet Protocol version 6(IPv6) ICMPv6 is an integral part of IPv6 and performs error reporting diagnosticfunctions (eg ping) and a framework for extensions to implement futurechanges
Description
httptoolsietforghtmlrfc4443Reference
L358Global ID
812ID
Known Mappings
-UDP Port
-TCP Port
58IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1026
BGPIPV6-ICMP
IRCircNameCLI Keyword
Internet Relay ChatFull Name
Internet Relay Chat (IRC) protocol is used for chat messaging in real time It canbe used for conferencing or one-on-one chatting The protocol works onclient-server architecture with a distributed manner An IRC server usually listenson TCP port 194
Description
httpwwwirchelporgirchelprfcrfchtmlReference
L4194Global ID
19ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
httpUnderlying Protocols
NBAR2 Standard Protocol Pack 10 27
BGPIRC
KAZAA2kazaa2NameCLI Keyword
Kazaa2Full Name
Kazaa is an online music subscription service that is based on second generationpeer-to-peer technology FastTracker
Description
httpwwwkazaacomaboutReference
L759Global ID
59ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1028
BGPKAZAA2
KERBEROSkerberosNameCLI Keyword
KerberosFull Name
Kerberos is a network authentication protocol The protocol is used to verifyidentities over the internet using a trusted third party Extensions of the protocolalso use the exchange of cryptographic certification of a public key Usually theprotocol uses TCPUDP ports 88749 as default
Description
httpwwwietforgrfcrfc4120txtReference
L488Global ID
21ID
Known Mappings
88749UDP Port
88749TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 29
BGPKERBEROS
L2TPl2tpNameCLI Keyword
Layer 2 Tunneling ProtocolFull Name
Layer 2 Tunneling Protocol (L2TP) is a tunneling protocol used to support virtualprivate networks (VPNs) or as part of the delivery of services by ISPs It doesnot provide any encryption or confidentiality by itself it relies on an encryptionprotocol that it passes within the tunnel to provide privacy
Description
httptoolsietforghtmlrfc2661Reference
L4115Global ID
22ID
Known Mappings
1701UDP Port
1701TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1030
BGPL2TP
LDAPldapNameCLI Keyword
Lightweight Directory Access ProtocolFull Name
Lightweight Directory Access Protocol (LDAP) is a protocol designed to toaccess distributed directory services Typically it uses port 389 for TCP andUDP
Description
httptoolsietforghtmlrfc4510Reference
L4389Global ID
23ID
Known Mappings
389UDP Port
389TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 31
BGPLDAP
MGCPmgcpNameCLI Keyword
Media Gateway Control ProtocolFull Name
Media Gateway Control Protocol (MGCP) 10 is a protocol for the control ofVoice over IP (VoIP) calls by external call-control elements known as MediaGateway Controllers (MGCs) or Call Agents (CAs)
Description
httpwwwpacketizercomrfcrfc3435Reference
L762Global ID
62ID
Known Mappings
24272727UDP Port
242724282727TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1032
BGPMGCP
NETBIOSnetbiosNameCLI Keyword
Network Basic InputOutput SystemFull Name
Network Basic InputOutput System (NetBIOS) provides services related to thesession layer of the OSI model allowing applications on separate computers tocommunicate over a local area network As strictly an API NetBIOS is not anetworking protocol In modern networks NetBIOS normally runs over TCPIPvia the NetBIOS over TCPIP (NBT) protocol This results in each computer inthe network having both an IP address and a NetBIOS name corresponding to a(possibly different) host name
Description
httptoolsietforghtmlrfc1001Reference
L726Global ID
26ID
Known Mappings
137138UDP Port
137139TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 33
BGPNETBIOS
NETSHOWnetshowNameCLI Keyword
NetShowFull Name
Netshow is a Microsoft software designed to stream media over intranets andthe internet NetShow can transfer livemulticast and on-demand streamed audioillustrated audio and video Typically Netshow uses TCP port 1755 and UDPports between 1024-5000
Description
httpwwwmicrosoftcompresspasspress1997mar97nsbta2prmspxReference
L7426Global ID
53ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1034
BGPNETSHOW
NFSnfsNameCLI Keyword
Network File SystemFull Name
Network File System (NFS) is a distributed file system developed by SunMicrosystems Inc that allows users to access and modify files remotly as if itwas a local file The protocol is based on client server architecture and typicallyuses TCPUDP port 2049
Description
httpwwwietforgrfcrfc3530txtReference
L42049Global ID
27ID
Known Mappings
2049UDP Port
2049TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
NoUnderlying Protocols
NBAR2 Standard Protocol Pack 10 35
BGPNFS
NNTPnntpNameCLI Keyword
Network News Transfer ProtocolFull Name
Network News Transfer Protocol (NNTP) is an internet transfer protocol usedfor readingposting Usenet articles and transferring them between news serversUsually the TCP port is 119 while nntp over SSL TCPUDP port is 563
Description
httptoolsietforghtmlrfc3977Reference
L4119Global ID
28ID
Known Mappings
119UDP Port
119TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1036
BGPNNTP
NOTESnotesNameCLI Keyword
IBM Lotus NotesFull Name
IBM Lotus Notes is the client of a collaborative client-server platform IBMLotus Domino is the application server Lotus Notes provides integratedcollaboration functionality including email calendaring contacts managementto do tracking instant messaging an office productivity suite (IBM LotusSymphony) and access to other Lotus Domino applications and databases
Description
httpwww-01ibmcomsoftwarelotusnotesanddominoReference
L41352Global ID
30ID
Known Mappings
1352UDP Port
1352TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 37
BGPNOTES
NTPntpNameCLI Keyword
Network Time ProtocolFull Name
The Network Time Protocol is a protocol for synchronizing the system clocksof distributed computer systems over packet-switched variable-latency datanetworks Usually the UDP port used is 123
Description
httpwwweecisudeledu~millsntphtmlindexhtmlReference
L4123Global ID
31ID
Known Mappings
123UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1038
BGPNTP
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
H323h323NameCLI Keyword
H323Full Name
H323 is a recommendation from the ITU Telecommunication StandardizationSector (ITU-T) that defines the protocols to provide audio-visual communicationsessions on any packet network The H323 standard addresses call signaling andcontrol multimedia transport and control and bandwidth control for point-to-pointand multi-point conferences
Description
httpwwwh323forumorgReference
L764Global ID
64ID
Known Mappings
-UDP Port
110001100111002110031100411005110061100711008110091101011011110121101311TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 21
BGPH323
HTTPhttpNameCLI Keyword
HyperText Transfer ProtocolFull Name
Hypertext Transfer Protocol (HTTP) is a standard for communication betweenweb browsers and servers over the World Wide Web The protocol works in arequest-responsemanner over a client server computingmodel The server usuallylistens on port 80
Description
httpwwww3orgProtocolsrfc2616rfc2616htmlReference
L480Global ID
3ID
Known Mappings
-UDP Port
80TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1022
BGPHTTP
ICMPicmpNameCLI Keyword
Internet Control Message ProtocolFull Name
Internet Control Message Protocol (ICMP) messages are typically generated inresponse to errors in IP datagrams or for diagnostic or routing purposes ICMPerrors are always reported to the original source IP address of the originatingdatagram ICMP is IP protocol number 1 Traffic is classified only if its identifiedas ICMP but was not recognized as any other more granular classification suchas Ping
Description
httptoolsietforghtmlrfc792Reference
L31Global ID
6ID
Known Mappings
-UDP Port
-TCP Port
1IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 23
BGPICMP
IMAPimapNameCLI Keyword
Internet Message Access Protocol version 4Full Name
The Internet Message Acceess protocol allows users to acess their email serversand to receivesend emails The protocol simulates a local use when in-fact it isa connection to a server An IMAP server usually listens on port 143
Description
httptoolsietforghtmlrfc3501Reference
L4143Global ID
17ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1024
BGPIMAP
IPINIPipinipNameCLI Keyword
IP in IPFull Name
IP in IP tunneling is a protocol used to encapsulate IP headers to a different IPheader to share information between endpoints in different internet-networks(for example forwarding traffic from one intranet to another)
Description
httptoolsietforghtmlrfc1853Reference
L34Global ID
8ID
Known Mappings
-UDP Port
-TCP Port
4IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 25
BGPIPINIP
IPV6-ICMPipv6-icmpNameCLI Keyword
ICMP for IPv6Full Name
Internet Control Message Protocol version 6 (ICMPv6) is the implementation ofthe Internet Control Message Protocol (ICMP) for Internet Protocol version 6(IPv6) ICMPv6 is an integral part of IPv6 and performs error reporting diagnosticfunctions (eg ping) and a framework for extensions to implement futurechanges
Description
httptoolsietforghtmlrfc4443Reference
L358Global ID
812ID
Known Mappings
-UDP Port
-TCP Port
58IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1026
BGPIPV6-ICMP
IRCircNameCLI Keyword
Internet Relay ChatFull Name
Internet Relay Chat (IRC) protocol is used for chat messaging in real time It canbe used for conferencing or one-on-one chatting The protocol works onclient-server architecture with a distributed manner An IRC server usually listenson TCP port 194
Description
httpwwwirchelporgirchelprfcrfchtmlReference
L4194Global ID
19ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
httpUnderlying Protocols
NBAR2 Standard Protocol Pack 10 27
BGPIRC
KAZAA2kazaa2NameCLI Keyword
Kazaa2Full Name
Kazaa is an online music subscription service that is based on second generationpeer-to-peer technology FastTracker
Description
httpwwwkazaacomaboutReference
L759Global ID
59ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1028
BGPKAZAA2
KERBEROSkerberosNameCLI Keyword
KerberosFull Name
Kerberos is a network authentication protocol The protocol is used to verifyidentities over the internet using a trusted third party Extensions of the protocolalso use the exchange of cryptographic certification of a public key Usually theprotocol uses TCPUDP ports 88749 as default
Description
httpwwwietforgrfcrfc4120txtReference
L488Global ID
21ID
Known Mappings
88749UDP Port
88749TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 29
BGPKERBEROS
L2TPl2tpNameCLI Keyword
Layer 2 Tunneling ProtocolFull Name
Layer 2 Tunneling Protocol (L2TP) is a tunneling protocol used to support virtualprivate networks (VPNs) or as part of the delivery of services by ISPs It doesnot provide any encryption or confidentiality by itself it relies on an encryptionprotocol that it passes within the tunnel to provide privacy
Description
httptoolsietforghtmlrfc2661Reference
L4115Global ID
22ID
Known Mappings
1701UDP Port
1701TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1030
BGPL2TP
LDAPldapNameCLI Keyword
Lightweight Directory Access ProtocolFull Name
Lightweight Directory Access Protocol (LDAP) is a protocol designed to toaccess distributed directory services Typically it uses port 389 for TCP andUDP
Description
httptoolsietforghtmlrfc4510Reference
L4389Global ID
23ID
Known Mappings
389UDP Port
389TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 31
BGPLDAP
MGCPmgcpNameCLI Keyword
Media Gateway Control ProtocolFull Name
Media Gateway Control Protocol (MGCP) 10 is a protocol for the control ofVoice over IP (VoIP) calls by external call-control elements known as MediaGateway Controllers (MGCs) or Call Agents (CAs)
Description
httpwwwpacketizercomrfcrfc3435Reference
L762Global ID
62ID
Known Mappings
24272727UDP Port
242724282727TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1032
BGPMGCP
NETBIOSnetbiosNameCLI Keyword
Network Basic InputOutput SystemFull Name
Network Basic InputOutput System (NetBIOS) provides services related to thesession layer of the OSI model allowing applications on separate computers tocommunicate over a local area network As strictly an API NetBIOS is not anetworking protocol In modern networks NetBIOS normally runs over TCPIPvia the NetBIOS over TCPIP (NBT) protocol This results in each computer inthe network having both an IP address and a NetBIOS name corresponding to a(possibly different) host name
Description
httptoolsietforghtmlrfc1001Reference
L726Global ID
26ID
Known Mappings
137138UDP Port
137139TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 33
BGPNETBIOS
NETSHOWnetshowNameCLI Keyword
NetShowFull Name
Netshow is a Microsoft software designed to stream media over intranets andthe internet NetShow can transfer livemulticast and on-demand streamed audioillustrated audio and video Typically Netshow uses TCP port 1755 and UDPports between 1024-5000
Description
httpwwwmicrosoftcompresspasspress1997mar97nsbta2prmspxReference
L7426Global ID
53ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1034
BGPNETSHOW
NFSnfsNameCLI Keyword
Network File SystemFull Name
Network File System (NFS) is a distributed file system developed by SunMicrosystems Inc that allows users to access and modify files remotly as if itwas a local file The protocol is based on client server architecture and typicallyuses TCPUDP port 2049
Description
httpwwwietforgrfcrfc3530txtReference
L42049Global ID
27ID
Known Mappings
2049UDP Port
2049TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
NoUnderlying Protocols
NBAR2 Standard Protocol Pack 10 35
BGPNFS
NNTPnntpNameCLI Keyword
Network News Transfer ProtocolFull Name
Network News Transfer Protocol (NNTP) is an internet transfer protocol usedfor readingposting Usenet articles and transferring them between news serversUsually the TCP port is 119 while nntp over SSL TCPUDP port is 563
Description
httptoolsietforghtmlrfc3977Reference
L4119Global ID
28ID
Known Mappings
119UDP Port
119TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1036
BGPNNTP
NOTESnotesNameCLI Keyword
IBM Lotus NotesFull Name
IBM Lotus Notes is the client of a collaborative client-server platform IBMLotus Domino is the application server Lotus Notes provides integratedcollaboration functionality including email calendaring contacts managementto do tracking instant messaging an office productivity suite (IBM LotusSymphony) and access to other Lotus Domino applications and databases
Description
httpwww-01ibmcomsoftwarelotusnotesanddominoReference
L41352Global ID
30ID
Known Mappings
1352UDP Port
1352TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 37
BGPNOTES
NTPntpNameCLI Keyword
Network Time ProtocolFull Name
The Network Time Protocol is a protocol for synchronizing the system clocksof distributed computer systems over packet-switched variable-latency datanetworks Usually the UDP port used is 123
Description
httpwwweecisudeledu~millsntphtmlindexhtmlReference
L4123Global ID
31ID
Known Mappings
123UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1038
BGPNTP
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
HTTPhttpNameCLI Keyword
HyperText Transfer ProtocolFull Name
Hypertext Transfer Protocol (HTTP) is a standard for communication betweenweb browsers and servers over the World Wide Web The protocol works in arequest-responsemanner over a client server computingmodel The server usuallylistens on port 80
Description
httpwwww3orgProtocolsrfc2616rfc2616htmlReference
L480Global ID
3ID
Known Mappings
-UDP Port
80TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1022
BGPHTTP
ICMPicmpNameCLI Keyword
Internet Control Message ProtocolFull Name
Internet Control Message Protocol (ICMP) messages are typically generated inresponse to errors in IP datagrams or for diagnostic or routing purposes ICMPerrors are always reported to the original source IP address of the originatingdatagram ICMP is IP protocol number 1 Traffic is classified only if its identifiedas ICMP but was not recognized as any other more granular classification suchas Ping
Description
httptoolsietforghtmlrfc792Reference
L31Global ID
6ID
Known Mappings
-UDP Port
-TCP Port
1IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 23
BGPICMP
IMAPimapNameCLI Keyword
Internet Message Access Protocol version 4Full Name
The Internet Message Acceess protocol allows users to acess their email serversand to receivesend emails The protocol simulates a local use when in-fact it isa connection to a server An IMAP server usually listens on port 143
Description
httptoolsietforghtmlrfc3501Reference
L4143Global ID
17ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1024
BGPIMAP
IPINIPipinipNameCLI Keyword
IP in IPFull Name
IP in IP tunneling is a protocol used to encapsulate IP headers to a different IPheader to share information between endpoints in different internet-networks(for example forwarding traffic from one intranet to another)
Description
httptoolsietforghtmlrfc1853Reference
L34Global ID
8ID
Known Mappings
-UDP Port
-TCP Port
4IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 25
BGPIPINIP
IPV6-ICMPipv6-icmpNameCLI Keyword
ICMP for IPv6Full Name
Internet Control Message Protocol version 6 (ICMPv6) is the implementation ofthe Internet Control Message Protocol (ICMP) for Internet Protocol version 6(IPv6) ICMPv6 is an integral part of IPv6 and performs error reporting diagnosticfunctions (eg ping) and a framework for extensions to implement futurechanges
Description
httptoolsietforghtmlrfc4443Reference
L358Global ID
812ID
Known Mappings
-UDP Port
-TCP Port
58IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1026
BGPIPV6-ICMP
IRCircNameCLI Keyword
Internet Relay ChatFull Name
Internet Relay Chat (IRC) protocol is used for chat messaging in real time It canbe used for conferencing or one-on-one chatting The protocol works onclient-server architecture with a distributed manner An IRC server usually listenson TCP port 194
Description
httpwwwirchelporgirchelprfcrfchtmlReference
L4194Global ID
19ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
httpUnderlying Protocols
NBAR2 Standard Protocol Pack 10 27
BGPIRC
KAZAA2kazaa2NameCLI Keyword
Kazaa2Full Name
Kazaa is an online music subscription service that is based on second generationpeer-to-peer technology FastTracker
Description
httpwwwkazaacomaboutReference
L759Global ID
59ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1028
BGPKAZAA2
KERBEROSkerberosNameCLI Keyword
KerberosFull Name
Kerberos is a network authentication protocol The protocol is used to verifyidentities over the internet using a trusted third party Extensions of the protocolalso use the exchange of cryptographic certification of a public key Usually theprotocol uses TCPUDP ports 88749 as default
Description
httpwwwietforgrfcrfc4120txtReference
L488Global ID
21ID
Known Mappings
88749UDP Port
88749TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 29
BGPKERBEROS
L2TPl2tpNameCLI Keyword
Layer 2 Tunneling ProtocolFull Name
Layer 2 Tunneling Protocol (L2TP) is a tunneling protocol used to support virtualprivate networks (VPNs) or as part of the delivery of services by ISPs It doesnot provide any encryption or confidentiality by itself it relies on an encryptionprotocol that it passes within the tunnel to provide privacy
Description
httptoolsietforghtmlrfc2661Reference
L4115Global ID
22ID
Known Mappings
1701UDP Port
1701TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1030
BGPL2TP
LDAPldapNameCLI Keyword
Lightweight Directory Access ProtocolFull Name
Lightweight Directory Access Protocol (LDAP) is a protocol designed to toaccess distributed directory services Typically it uses port 389 for TCP andUDP
Description
httptoolsietforghtmlrfc4510Reference
L4389Global ID
23ID
Known Mappings
389UDP Port
389TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 31
BGPLDAP
MGCPmgcpNameCLI Keyword
Media Gateway Control ProtocolFull Name
Media Gateway Control Protocol (MGCP) 10 is a protocol for the control ofVoice over IP (VoIP) calls by external call-control elements known as MediaGateway Controllers (MGCs) or Call Agents (CAs)
Description
httpwwwpacketizercomrfcrfc3435Reference
L762Global ID
62ID
Known Mappings
24272727UDP Port
242724282727TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1032
BGPMGCP
NETBIOSnetbiosNameCLI Keyword
Network Basic InputOutput SystemFull Name
Network Basic InputOutput System (NetBIOS) provides services related to thesession layer of the OSI model allowing applications on separate computers tocommunicate over a local area network As strictly an API NetBIOS is not anetworking protocol In modern networks NetBIOS normally runs over TCPIPvia the NetBIOS over TCPIP (NBT) protocol This results in each computer inthe network having both an IP address and a NetBIOS name corresponding to a(possibly different) host name
Description
httptoolsietforghtmlrfc1001Reference
L726Global ID
26ID
Known Mappings
137138UDP Port
137139TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 33
BGPNETBIOS
NETSHOWnetshowNameCLI Keyword
NetShowFull Name
Netshow is a Microsoft software designed to stream media over intranets andthe internet NetShow can transfer livemulticast and on-demand streamed audioillustrated audio and video Typically Netshow uses TCP port 1755 and UDPports between 1024-5000
Description
httpwwwmicrosoftcompresspasspress1997mar97nsbta2prmspxReference
L7426Global ID
53ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1034
BGPNETSHOW
NFSnfsNameCLI Keyword
Network File SystemFull Name
Network File System (NFS) is a distributed file system developed by SunMicrosystems Inc that allows users to access and modify files remotly as if itwas a local file The protocol is based on client server architecture and typicallyuses TCPUDP port 2049
Description
httpwwwietforgrfcrfc3530txtReference
L42049Global ID
27ID
Known Mappings
2049UDP Port
2049TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
NoUnderlying Protocols
NBAR2 Standard Protocol Pack 10 35
BGPNFS
NNTPnntpNameCLI Keyword
Network News Transfer ProtocolFull Name
Network News Transfer Protocol (NNTP) is an internet transfer protocol usedfor readingposting Usenet articles and transferring them between news serversUsually the TCP port is 119 while nntp over SSL TCPUDP port is 563
Description
httptoolsietforghtmlrfc3977Reference
L4119Global ID
28ID
Known Mappings
119UDP Port
119TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1036
BGPNNTP
NOTESnotesNameCLI Keyword
IBM Lotus NotesFull Name
IBM Lotus Notes is the client of a collaborative client-server platform IBMLotus Domino is the application server Lotus Notes provides integratedcollaboration functionality including email calendaring contacts managementto do tracking instant messaging an office productivity suite (IBM LotusSymphony) and access to other Lotus Domino applications and databases
Description
httpwww-01ibmcomsoftwarelotusnotesanddominoReference
L41352Global ID
30ID
Known Mappings
1352UDP Port
1352TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 37
BGPNOTES
NTPntpNameCLI Keyword
Network Time ProtocolFull Name
The Network Time Protocol is a protocol for synchronizing the system clocksof distributed computer systems over packet-switched variable-latency datanetworks Usually the UDP port used is 123
Description
httpwwweecisudeledu~millsntphtmlindexhtmlReference
L4123Global ID
31ID
Known Mappings
123UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1038
BGPNTP
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
ICMPicmpNameCLI Keyword
Internet Control Message ProtocolFull Name
Internet Control Message Protocol (ICMP) messages are typically generated inresponse to errors in IP datagrams or for diagnostic or routing purposes ICMPerrors are always reported to the original source IP address of the originatingdatagram ICMP is IP protocol number 1 Traffic is classified only if its identifiedas ICMP but was not recognized as any other more granular classification suchas Ping
Description
httptoolsietforghtmlrfc792Reference
L31Global ID
6ID
Known Mappings
-UDP Port
-TCP Port
1IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 23
BGPICMP
IMAPimapNameCLI Keyword
Internet Message Access Protocol version 4Full Name
The Internet Message Acceess protocol allows users to acess their email serversand to receivesend emails The protocol simulates a local use when in-fact it isa connection to a server An IMAP server usually listens on port 143
Description
httptoolsietforghtmlrfc3501Reference
L4143Global ID
17ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1024
BGPIMAP
IPINIPipinipNameCLI Keyword
IP in IPFull Name
IP in IP tunneling is a protocol used to encapsulate IP headers to a different IPheader to share information between endpoints in different internet-networks(for example forwarding traffic from one intranet to another)
Description
httptoolsietforghtmlrfc1853Reference
L34Global ID
8ID
Known Mappings
-UDP Port
-TCP Port
4IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 25
BGPIPINIP
IPV6-ICMPipv6-icmpNameCLI Keyword
ICMP for IPv6Full Name
Internet Control Message Protocol version 6 (ICMPv6) is the implementation ofthe Internet Control Message Protocol (ICMP) for Internet Protocol version 6(IPv6) ICMPv6 is an integral part of IPv6 and performs error reporting diagnosticfunctions (eg ping) and a framework for extensions to implement futurechanges
Description
httptoolsietforghtmlrfc4443Reference
L358Global ID
812ID
Known Mappings
-UDP Port
-TCP Port
58IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1026
BGPIPV6-ICMP
IRCircNameCLI Keyword
Internet Relay ChatFull Name
Internet Relay Chat (IRC) protocol is used for chat messaging in real time It canbe used for conferencing or one-on-one chatting The protocol works onclient-server architecture with a distributed manner An IRC server usually listenson TCP port 194
Description
httpwwwirchelporgirchelprfcrfchtmlReference
L4194Global ID
19ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
httpUnderlying Protocols
NBAR2 Standard Protocol Pack 10 27
BGPIRC
KAZAA2kazaa2NameCLI Keyword
Kazaa2Full Name
Kazaa is an online music subscription service that is based on second generationpeer-to-peer technology FastTracker
Description
httpwwwkazaacomaboutReference
L759Global ID
59ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1028
BGPKAZAA2
KERBEROSkerberosNameCLI Keyword
KerberosFull Name
Kerberos is a network authentication protocol The protocol is used to verifyidentities over the internet using a trusted third party Extensions of the protocolalso use the exchange of cryptographic certification of a public key Usually theprotocol uses TCPUDP ports 88749 as default
Description
httpwwwietforgrfcrfc4120txtReference
L488Global ID
21ID
Known Mappings
88749UDP Port
88749TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 29
BGPKERBEROS
L2TPl2tpNameCLI Keyword
Layer 2 Tunneling ProtocolFull Name
Layer 2 Tunneling Protocol (L2TP) is a tunneling protocol used to support virtualprivate networks (VPNs) or as part of the delivery of services by ISPs It doesnot provide any encryption or confidentiality by itself it relies on an encryptionprotocol that it passes within the tunnel to provide privacy
Description
httptoolsietforghtmlrfc2661Reference
L4115Global ID
22ID
Known Mappings
1701UDP Port
1701TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1030
BGPL2TP
LDAPldapNameCLI Keyword
Lightweight Directory Access ProtocolFull Name
Lightweight Directory Access Protocol (LDAP) is a protocol designed to toaccess distributed directory services Typically it uses port 389 for TCP andUDP
Description
httptoolsietforghtmlrfc4510Reference
L4389Global ID
23ID
Known Mappings
389UDP Port
389TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 31
BGPLDAP
MGCPmgcpNameCLI Keyword
Media Gateway Control ProtocolFull Name
Media Gateway Control Protocol (MGCP) 10 is a protocol for the control ofVoice over IP (VoIP) calls by external call-control elements known as MediaGateway Controllers (MGCs) or Call Agents (CAs)
Description
httpwwwpacketizercomrfcrfc3435Reference
L762Global ID
62ID
Known Mappings
24272727UDP Port
242724282727TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1032
BGPMGCP
NETBIOSnetbiosNameCLI Keyword
Network Basic InputOutput SystemFull Name
Network Basic InputOutput System (NetBIOS) provides services related to thesession layer of the OSI model allowing applications on separate computers tocommunicate over a local area network As strictly an API NetBIOS is not anetworking protocol In modern networks NetBIOS normally runs over TCPIPvia the NetBIOS over TCPIP (NBT) protocol This results in each computer inthe network having both an IP address and a NetBIOS name corresponding to a(possibly different) host name
Description
httptoolsietforghtmlrfc1001Reference
L726Global ID
26ID
Known Mappings
137138UDP Port
137139TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 33
BGPNETBIOS
NETSHOWnetshowNameCLI Keyword
NetShowFull Name
Netshow is a Microsoft software designed to stream media over intranets andthe internet NetShow can transfer livemulticast and on-demand streamed audioillustrated audio and video Typically Netshow uses TCP port 1755 and UDPports between 1024-5000
Description
httpwwwmicrosoftcompresspasspress1997mar97nsbta2prmspxReference
L7426Global ID
53ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1034
BGPNETSHOW
NFSnfsNameCLI Keyword
Network File SystemFull Name
Network File System (NFS) is a distributed file system developed by SunMicrosystems Inc that allows users to access and modify files remotly as if itwas a local file The protocol is based on client server architecture and typicallyuses TCPUDP port 2049
Description
httpwwwietforgrfcrfc3530txtReference
L42049Global ID
27ID
Known Mappings
2049UDP Port
2049TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
NoUnderlying Protocols
NBAR2 Standard Protocol Pack 10 35
BGPNFS
NNTPnntpNameCLI Keyword
Network News Transfer ProtocolFull Name
Network News Transfer Protocol (NNTP) is an internet transfer protocol usedfor readingposting Usenet articles and transferring them between news serversUsually the TCP port is 119 while nntp over SSL TCPUDP port is 563
Description
httptoolsietforghtmlrfc3977Reference
L4119Global ID
28ID
Known Mappings
119UDP Port
119TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1036
BGPNNTP
NOTESnotesNameCLI Keyword
IBM Lotus NotesFull Name
IBM Lotus Notes is the client of a collaborative client-server platform IBMLotus Domino is the application server Lotus Notes provides integratedcollaboration functionality including email calendaring contacts managementto do tracking instant messaging an office productivity suite (IBM LotusSymphony) and access to other Lotus Domino applications and databases
Description
httpwww-01ibmcomsoftwarelotusnotesanddominoReference
L41352Global ID
30ID
Known Mappings
1352UDP Port
1352TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 37
BGPNOTES
NTPntpNameCLI Keyword
Network Time ProtocolFull Name
The Network Time Protocol is a protocol for synchronizing the system clocksof distributed computer systems over packet-switched variable-latency datanetworks Usually the UDP port used is 123
Description
httpwwweecisudeledu~millsntphtmlindexhtmlReference
L4123Global ID
31ID
Known Mappings
123UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1038
BGPNTP
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
IMAPimapNameCLI Keyword
Internet Message Access Protocol version 4Full Name
The Internet Message Acceess protocol allows users to acess their email serversand to receivesend emails The protocol simulates a local use when in-fact it isa connection to a server An IMAP server usually listens on port 143
Description
httptoolsietforghtmlrfc3501Reference
L4143Global ID
17ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1024
BGPIMAP
IPINIPipinipNameCLI Keyword
IP in IPFull Name
IP in IP tunneling is a protocol used to encapsulate IP headers to a different IPheader to share information between endpoints in different internet-networks(for example forwarding traffic from one intranet to another)
Description
httptoolsietforghtmlrfc1853Reference
L34Global ID
8ID
Known Mappings
-UDP Port
-TCP Port
4IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 25
BGPIPINIP
IPV6-ICMPipv6-icmpNameCLI Keyword
ICMP for IPv6Full Name
Internet Control Message Protocol version 6 (ICMPv6) is the implementation ofthe Internet Control Message Protocol (ICMP) for Internet Protocol version 6(IPv6) ICMPv6 is an integral part of IPv6 and performs error reporting diagnosticfunctions (eg ping) and a framework for extensions to implement futurechanges
Description
httptoolsietforghtmlrfc4443Reference
L358Global ID
812ID
Known Mappings
-UDP Port
-TCP Port
58IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1026
BGPIPV6-ICMP
IRCircNameCLI Keyword
Internet Relay ChatFull Name
Internet Relay Chat (IRC) protocol is used for chat messaging in real time It canbe used for conferencing or one-on-one chatting The protocol works onclient-server architecture with a distributed manner An IRC server usually listenson TCP port 194
Description
httpwwwirchelporgirchelprfcrfchtmlReference
L4194Global ID
19ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
httpUnderlying Protocols
NBAR2 Standard Protocol Pack 10 27
BGPIRC
KAZAA2kazaa2NameCLI Keyword
Kazaa2Full Name
Kazaa is an online music subscription service that is based on second generationpeer-to-peer technology FastTracker
Description
httpwwwkazaacomaboutReference
L759Global ID
59ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1028
BGPKAZAA2
KERBEROSkerberosNameCLI Keyword
KerberosFull Name
Kerberos is a network authentication protocol The protocol is used to verifyidentities over the internet using a trusted third party Extensions of the protocolalso use the exchange of cryptographic certification of a public key Usually theprotocol uses TCPUDP ports 88749 as default
Description
httpwwwietforgrfcrfc4120txtReference
L488Global ID
21ID
Known Mappings
88749UDP Port
88749TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 29
BGPKERBEROS
L2TPl2tpNameCLI Keyword
Layer 2 Tunneling ProtocolFull Name
Layer 2 Tunneling Protocol (L2TP) is a tunneling protocol used to support virtualprivate networks (VPNs) or as part of the delivery of services by ISPs It doesnot provide any encryption or confidentiality by itself it relies on an encryptionprotocol that it passes within the tunnel to provide privacy
Description
httptoolsietforghtmlrfc2661Reference
L4115Global ID
22ID
Known Mappings
1701UDP Port
1701TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1030
BGPL2TP
LDAPldapNameCLI Keyword
Lightweight Directory Access ProtocolFull Name
Lightweight Directory Access Protocol (LDAP) is a protocol designed to toaccess distributed directory services Typically it uses port 389 for TCP andUDP
Description
httptoolsietforghtmlrfc4510Reference
L4389Global ID
23ID
Known Mappings
389UDP Port
389TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 31
BGPLDAP
MGCPmgcpNameCLI Keyword
Media Gateway Control ProtocolFull Name
Media Gateway Control Protocol (MGCP) 10 is a protocol for the control ofVoice over IP (VoIP) calls by external call-control elements known as MediaGateway Controllers (MGCs) or Call Agents (CAs)
Description
httpwwwpacketizercomrfcrfc3435Reference
L762Global ID
62ID
Known Mappings
24272727UDP Port
242724282727TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1032
BGPMGCP
NETBIOSnetbiosNameCLI Keyword
Network Basic InputOutput SystemFull Name
Network Basic InputOutput System (NetBIOS) provides services related to thesession layer of the OSI model allowing applications on separate computers tocommunicate over a local area network As strictly an API NetBIOS is not anetworking protocol In modern networks NetBIOS normally runs over TCPIPvia the NetBIOS over TCPIP (NBT) protocol This results in each computer inthe network having both an IP address and a NetBIOS name corresponding to a(possibly different) host name
Description
httptoolsietforghtmlrfc1001Reference
L726Global ID
26ID
Known Mappings
137138UDP Port
137139TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 33
BGPNETBIOS
NETSHOWnetshowNameCLI Keyword
NetShowFull Name
Netshow is a Microsoft software designed to stream media over intranets andthe internet NetShow can transfer livemulticast and on-demand streamed audioillustrated audio and video Typically Netshow uses TCP port 1755 and UDPports between 1024-5000
Description
httpwwwmicrosoftcompresspasspress1997mar97nsbta2prmspxReference
L7426Global ID
53ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1034
BGPNETSHOW
NFSnfsNameCLI Keyword
Network File SystemFull Name
Network File System (NFS) is a distributed file system developed by SunMicrosystems Inc that allows users to access and modify files remotly as if itwas a local file The protocol is based on client server architecture and typicallyuses TCPUDP port 2049
Description
httpwwwietforgrfcrfc3530txtReference
L42049Global ID
27ID
Known Mappings
2049UDP Port
2049TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
NoUnderlying Protocols
NBAR2 Standard Protocol Pack 10 35
BGPNFS
NNTPnntpNameCLI Keyword
Network News Transfer ProtocolFull Name
Network News Transfer Protocol (NNTP) is an internet transfer protocol usedfor readingposting Usenet articles and transferring them between news serversUsually the TCP port is 119 while nntp over SSL TCPUDP port is 563
Description
httptoolsietforghtmlrfc3977Reference
L4119Global ID
28ID
Known Mappings
119UDP Port
119TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1036
BGPNNTP
NOTESnotesNameCLI Keyword
IBM Lotus NotesFull Name
IBM Lotus Notes is the client of a collaborative client-server platform IBMLotus Domino is the application server Lotus Notes provides integratedcollaboration functionality including email calendaring contacts managementto do tracking instant messaging an office productivity suite (IBM LotusSymphony) and access to other Lotus Domino applications and databases
Description
httpwww-01ibmcomsoftwarelotusnotesanddominoReference
L41352Global ID
30ID
Known Mappings
1352UDP Port
1352TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 37
BGPNOTES
NTPntpNameCLI Keyword
Network Time ProtocolFull Name
The Network Time Protocol is a protocol for synchronizing the system clocksof distributed computer systems over packet-switched variable-latency datanetworks Usually the UDP port used is 123
Description
httpwwweecisudeledu~millsntphtmlindexhtmlReference
L4123Global ID
31ID
Known Mappings
123UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1038
BGPNTP
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
IPINIPipinipNameCLI Keyword
IP in IPFull Name
IP in IP tunneling is a protocol used to encapsulate IP headers to a different IPheader to share information between endpoints in different internet-networks(for example forwarding traffic from one intranet to another)
Description
httptoolsietforghtmlrfc1853Reference
L34Global ID
8ID
Known Mappings
-UDP Port
-TCP Port
4IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 25
BGPIPINIP
IPV6-ICMPipv6-icmpNameCLI Keyword
ICMP for IPv6Full Name
Internet Control Message Protocol version 6 (ICMPv6) is the implementation ofthe Internet Control Message Protocol (ICMP) for Internet Protocol version 6(IPv6) ICMPv6 is an integral part of IPv6 and performs error reporting diagnosticfunctions (eg ping) and a framework for extensions to implement futurechanges
Description
httptoolsietforghtmlrfc4443Reference
L358Global ID
812ID
Known Mappings
-UDP Port
-TCP Port
58IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1026
BGPIPV6-ICMP
IRCircNameCLI Keyword
Internet Relay ChatFull Name
Internet Relay Chat (IRC) protocol is used for chat messaging in real time It canbe used for conferencing or one-on-one chatting The protocol works onclient-server architecture with a distributed manner An IRC server usually listenson TCP port 194
Description
httpwwwirchelporgirchelprfcrfchtmlReference
L4194Global ID
19ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
httpUnderlying Protocols
NBAR2 Standard Protocol Pack 10 27
BGPIRC
KAZAA2kazaa2NameCLI Keyword
Kazaa2Full Name
Kazaa is an online music subscription service that is based on second generationpeer-to-peer technology FastTracker
Description
httpwwwkazaacomaboutReference
L759Global ID
59ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1028
BGPKAZAA2
KERBEROSkerberosNameCLI Keyword
KerberosFull Name
Kerberos is a network authentication protocol The protocol is used to verifyidentities over the internet using a trusted third party Extensions of the protocolalso use the exchange of cryptographic certification of a public key Usually theprotocol uses TCPUDP ports 88749 as default
Description
httpwwwietforgrfcrfc4120txtReference
L488Global ID
21ID
Known Mappings
88749UDP Port
88749TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 29
BGPKERBEROS
L2TPl2tpNameCLI Keyword
Layer 2 Tunneling ProtocolFull Name
Layer 2 Tunneling Protocol (L2TP) is a tunneling protocol used to support virtualprivate networks (VPNs) or as part of the delivery of services by ISPs It doesnot provide any encryption or confidentiality by itself it relies on an encryptionprotocol that it passes within the tunnel to provide privacy
Description
httptoolsietforghtmlrfc2661Reference
L4115Global ID
22ID
Known Mappings
1701UDP Port
1701TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1030
BGPL2TP
LDAPldapNameCLI Keyword
Lightweight Directory Access ProtocolFull Name
Lightweight Directory Access Protocol (LDAP) is a protocol designed to toaccess distributed directory services Typically it uses port 389 for TCP andUDP
Description
httptoolsietforghtmlrfc4510Reference
L4389Global ID
23ID
Known Mappings
389UDP Port
389TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 31
BGPLDAP
MGCPmgcpNameCLI Keyword
Media Gateway Control ProtocolFull Name
Media Gateway Control Protocol (MGCP) 10 is a protocol for the control ofVoice over IP (VoIP) calls by external call-control elements known as MediaGateway Controllers (MGCs) or Call Agents (CAs)
Description
httpwwwpacketizercomrfcrfc3435Reference
L762Global ID
62ID
Known Mappings
24272727UDP Port
242724282727TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1032
BGPMGCP
NETBIOSnetbiosNameCLI Keyword
Network Basic InputOutput SystemFull Name
Network Basic InputOutput System (NetBIOS) provides services related to thesession layer of the OSI model allowing applications on separate computers tocommunicate over a local area network As strictly an API NetBIOS is not anetworking protocol In modern networks NetBIOS normally runs over TCPIPvia the NetBIOS over TCPIP (NBT) protocol This results in each computer inthe network having both an IP address and a NetBIOS name corresponding to a(possibly different) host name
Description
httptoolsietforghtmlrfc1001Reference
L726Global ID
26ID
Known Mappings
137138UDP Port
137139TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 33
BGPNETBIOS
NETSHOWnetshowNameCLI Keyword
NetShowFull Name
Netshow is a Microsoft software designed to stream media over intranets andthe internet NetShow can transfer livemulticast and on-demand streamed audioillustrated audio and video Typically Netshow uses TCP port 1755 and UDPports between 1024-5000
Description
httpwwwmicrosoftcompresspasspress1997mar97nsbta2prmspxReference
L7426Global ID
53ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1034
BGPNETSHOW
NFSnfsNameCLI Keyword
Network File SystemFull Name
Network File System (NFS) is a distributed file system developed by SunMicrosystems Inc that allows users to access and modify files remotly as if itwas a local file The protocol is based on client server architecture and typicallyuses TCPUDP port 2049
Description
httpwwwietforgrfcrfc3530txtReference
L42049Global ID
27ID
Known Mappings
2049UDP Port
2049TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
NoUnderlying Protocols
NBAR2 Standard Protocol Pack 10 35
BGPNFS
NNTPnntpNameCLI Keyword
Network News Transfer ProtocolFull Name
Network News Transfer Protocol (NNTP) is an internet transfer protocol usedfor readingposting Usenet articles and transferring them between news serversUsually the TCP port is 119 while nntp over SSL TCPUDP port is 563
Description
httptoolsietforghtmlrfc3977Reference
L4119Global ID
28ID
Known Mappings
119UDP Port
119TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1036
BGPNNTP
NOTESnotesNameCLI Keyword
IBM Lotus NotesFull Name
IBM Lotus Notes is the client of a collaborative client-server platform IBMLotus Domino is the application server Lotus Notes provides integratedcollaboration functionality including email calendaring contacts managementto do tracking instant messaging an office productivity suite (IBM LotusSymphony) and access to other Lotus Domino applications and databases
Description
httpwww-01ibmcomsoftwarelotusnotesanddominoReference
L41352Global ID
30ID
Known Mappings
1352UDP Port
1352TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 37
BGPNOTES
NTPntpNameCLI Keyword
Network Time ProtocolFull Name
The Network Time Protocol is a protocol for synchronizing the system clocksof distributed computer systems over packet-switched variable-latency datanetworks Usually the UDP port used is 123
Description
httpwwweecisudeledu~millsntphtmlindexhtmlReference
L4123Global ID
31ID
Known Mappings
123UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1038
BGPNTP
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
IPV6-ICMPipv6-icmpNameCLI Keyword
ICMP for IPv6Full Name
Internet Control Message Protocol version 6 (ICMPv6) is the implementation ofthe Internet Control Message Protocol (ICMP) for Internet Protocol version 6(IPv6) ICMPv6 is an integral part of IPv6 and performs error reporting diagnosticfunctions (eg ping) and a framework for extensions to implement futurechanges
Description
httptoolsietforghtmlrfc4443Reference
L358Global ID
812ID
Known Mappings
-UDP Port
-TCP Port
58IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1026
BGPIPV6-ICMP
IRCircNameCLI Keyword
Internet Relay ChatFull Name
Internet Relay Chat (IRC) protocol is used for chat messaging in real time It canbe used for conferencing or one-on-one chatting The protocol works onclient-server architecture with a distributed manner An IRC server usually listenson TCP port 194
Description
httpwwwirchelporgirchelprfcrfchtmlReference
L4194Global ID
19ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
httpUnderlying Protocols
NBAR2 Standard Protocol Pack 10 27
BGPIRC
KAZAA2kazaa2NameCLI Keyword
Kazaa2Full Name
Kazaa is an online music subscription service that is based on second generationpeer-to-peer technology FastTracker
Description
httpwwwkazaacomaboutReference
L759Global ID
59ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1028
BGPKAZAA2
KERBEROSkerberosNameCLI Keyword
KerberosFull Name
Kerberos is a network authentication protocol The protocol is used to verifyidentities over the internet using a trusted third party Extensions of the protocolalso use the exchange of cryptographic certification of a public key Usually theprotocol uses TCPUDP ports 88749 as default
Description
httpwwwietforgrfcrfc4120txtReference
L488Global ID
21ID
Known Mappings
88749UDP Port
88749TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 29
BGPKERBEROS
L2TPl2tpNameCLI Keyword
Layer 2 Tunneling ProtocolFull Name
Layer 2 Tunneling Protocol (L2TP) is a tunneling protocol used to support virtualprivate networks (VPNs) or as part of the delivery of services by ISPs It doesnot provide any encryption or confidentiality by itself it relies on an encryptionprotocol that it passes within the tunnel to provide privacy
Description
httptoolsietforghtmlrfc2661Reference
L4115Global ID
22ID
Known Mappings
1701UDP Port
1701TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1030
BGPL2TP
LDAPldapNameCLI Keyword
Lightweight Directory Access ProtocolFull Name
Lightweight Directory Access Protocol (LDAP) is a protocol designed to toaccess distributed directory services Typically it uses port 389 for TCP andUDP
Description
httptoolsietforghtmlrfc4510Reference
L4389Global ID
23ID
Known Mappings
389UDP Port
389TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 31
BGPLDAP
MGCPmgcpNameCLI Keyword
Media Gateway Control ProtocolFull Name
Media Gateway Control Protocol (MGCP) 10 is a protocol for the control ofVoice over IP (VoIP) calls by external call-control elements known as MediaGateway Controllers (MGCs) or Call Agents (CAs)
Description
httpwwwpacketizercomrfcrfc3435Reference
L762Global ID
62ID
Known Mappings
24272727UDP Port
242724282727TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1032
BGPMGCP
NETBIOSnetbiosNameCLI Keyword
Network Basic InputOutput SystemFull Name
Network Basic InputOutput System (NetBIOS) provides services related to thesession layer of the OSI model allowing applications on separate computers tocommunicate over a local area network As strictly an API NetBIOS is not anetworking protocol In modern networks NetBIOS normally runs over TCPIPvia the NetBIOS over TCPIP (NBT) protocol This results in each computer inthe network having both an IP address and a NetBIOS name corresponding to a(possibly different) host name
Description
httptoolsietforghtmlrfc1001Reference
L726Global ID
26ID
Known Mappings
137138UDP Port
137139TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 33
BGPNETBIOS
NETSHOWnetshowNameCLI Keyword
NetShowFull Name
Netshow is a Microsoft software designed to stream media over intranets andthe internet NetShow can transfer livemulticast and on-demand streamed audioillustrated audio and video Typically Netshow uses TCP port 1755 and UDPports between 1024-5000
Description
httpwwwmicrosoftcompresspasspress1997mar97nsbta2prmspxReference
L7426Global ID
53ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1034
BGPNETSHOW
NFSnfsNameCLI Keyword
Network File SystemFull Name
Network File System (NFS) is a distributed file system developed by SunMicrosystems Inc that allows users to access and modify files remotly as if itwas a local file The protocol is based on client server architecture and typicallyuses TCPUDP port 2049
Description
httpwwwietforgrfcrfc3530txtReference
L42049Global ID
27ID
Known Mappings
2049UDP Port
2049TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
NoUnderlying Protocols
NBAR2 Standard Protocol Pack 10 35
BGPNFS
NNTPnntpNameCLI Keyword
Network News Transfer ProtocolFull Name
Network News Transfer Protocol (NNTP) is an internet transfer protocol usedfor readingposting Usenet articles and transferring them between news serversUsually the TCP port is 119 while nntp over SSL TCPUDP port is 563
Description
httptoolsietforghtmlrfc3977Reference
L4119Global ID
28ID
Known Mappings
119UDP Port
119TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1036
BGPNNTP
NOTESnotesNameCLI Keyword
IBM Lotus NotesFull Name
IBM Lotus Notes is the client of a collaborative client-server platform IBMLotus Domino is the application server Lotus Notes provides integratedcollaboration functionality including email calendaring contacts managementto do tracking instant messaging an office productivity suite (IBM LotusSymphony) and access to other Lotus Domino applications and databases
Description
httpwww-01ibmcomsoftwarelotusnotesanddominoReference
L41352Global ID
30ID
Known Mappings
1352UDP Port
1352TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 37
BGPNOTES
NTPntpNameCLI Keyword
Network Time ProtocolFull Name
The Network Time Protocol is a protocol for synchronizing the system clocksof distributed computer systems over packet-switched variable-latency datanetworks Usually the UDP port used is 123
Description
httpwwweecisudeledu~millsntphtmlindexhtmlReference
L4123Global ID
31ID
Known Mappings
123UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1038
BGPNTP
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
IRCircNameCLI Keyword
Internet Relay ChatFull Name
Internet Relay Chat (IRC) protocol is used for chat messaging in real time It canbe used for conferencing or one-on-one chatting The protocol works onclient-server architecture with a distributed manner An IRC server usually listenson TCP port 194
Description
httpwwwirchelporgirchelprfcrfchtmlReference
L4194Global ID
19ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
httpUnderlying Protocols
NBAR2 Standard Protocol Pack 10 27
BGPIRC
KAZAA2kazaa2NameCLI Keyword
Kazaa2Full Name
Kazaa is an online music subscription service that is based on second generationpeer-to-peer technology FastTracker
Description
httpwwwkazaacomaboutReference
L759Global ID
59ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1028
BGPKAZAA2
KERBEROSkerberosNameCLI Keyword
KerberosFull Name
Kerberos is a network authentication protocol The protocol is used to verifyidentities over the internet using a trusted third party Extensions of the protocolalso use the exchange of cryptographic certification of a public key Usually theprotocol uses TCPUDP ports 88749 as default
Description
httpwwwietforgrfcrfc4120txtReference
L488Global ID
21ID
Known Mappings
88749UDP Port
88749TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 29
BGPKERBEROS
L2TPl2tpNameCLI Keyword
Layer 2 Tunneling ProtocolFull Name
Layer 2 Tunneling Protocol (L2TP) is a tunneling protocol used to support virtualprivate networks (VPNs) or as part of the delivery of services by ISPs It doesnot provide any encryption or confidentiality by itself it relies on an encryptionprotocol that it passes within the tunnel to provide privacy
Description
httptoolsietforghtmlrfc2661Reference
L4115Global ID
22ID
Known Mappings
1701UDP Port
1701TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1030
BGPL2TP
LDAPldapNameCLI Keyword
Lightweight Directory Access ProtocolFull Name
Lightweight Directory Access Protocol (LDAP) is a protocol designed to toaccess distributed directory services Typically it uses port 389 for TCP andUDP
Description
httptoolsietforghtmlrfc4510Reference
L4389Global ID
23ID
Known Mappings
389UDP Port
389TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 31
BGPLDAP
MGCPmgcpNameCLI Keyword
Media Gateway Control ProtocolFull Name
Media Gateway Control Protocol (MGCP) 10 is a protocol for the control ofVoice over IP (VoIP) calls by external call-control elements known as MediaGateway Controllers (MGCs) or Call Agents (CAs)
Description
httpwwwpacketizercomrfcrfc3435Reference
L762Global ID
62ID
Known Mappings
24272727UDP Port
242724282727TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1032
BGPMGCP
NETBIOSnetbiosNameCLI Keyword
Network Basic InputOutput SystemFull Name
Network Basic InputOutput System (NetBIOS) provides services related to thesession layer of the OSI model allowing applications on separate computers tocommunicate over a local area network As strictly an API NetBIOS is not anetworking protocol In modern networks NetBIOS normally runs over TCPIPvia the NetBIOS over TCPIP (NBT) protocol This results in each computer inthe network having both an IP address and a NetBIOS name corresponding to a(possibly different) host name
Description
httptoolsietforghtmlrfc1001Reference
L726Global ID
26ID
Known Mappings
137138UDP Port
137139TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 33
BGPNETBIOS
NETSHOWnetshowNameCLI Keyword
NetShowFull Name
Netshow is a Microsoft software designed to stream media over intranets andthe internet NetShow can transfer livemulticast and on-demand streamed audioillustrated audio and video Typically Netshow uses TCP port 1755 and UDPports between 1024-5000
Description
httpwwwmicrosoftcompresspasspress1997mar97nsbta2prmspxReference
L7426Global ID
53ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1034
BGPNETSHOW
NFSnfsNameCLI Keyword
Network File SystemFull Name
Network File System (NFS) is a distributed file system developed by SunMicrosystems Inc that allows users to access and modify files remotly as if itwas a local file The protocol is based on client server architecture and typicallyuses TCPUDP port 2049
Description
httpwwwietforgrfcrfc3530txtReference
L42049Global ID
27ID
Known Mappings
2049UDP Port
2049TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
NoUnderlying Protocols
NBAR2 Standard Protocol Pack 10 35
BGPNFS
NNTPnntpNameCLI Keyword
Network News Transfer ProtocolFull Name
Network News Transfer Protocol (NNTP) is an internet transfer protocol usedfor readingposting Usenet articles and transferring them between news serversUsually the TCP port is 119 while nntp over SSL TCPUDP port is 563
Description
httptoolsietforghtmlrfc3977Reference
L4119Global ID
28ID
Known Mappings
119UDP Port
119TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1036
BGPNNTP
NOTESnotesNameCLI Keyword
IBM Lotus NotesFull Name
IBM Lotus Notes is the client of a collaborative client-server platform IBMLotus Domino is the application server Lotus Notes provides integratedcollaboration functionality including email calendaring contacts managementto do tracking instant messaging an office productivity suite (IBM LotusSymphony) and access to other Lotus Domino applications and databases
Description
httpwww-01ibmcomsoftwarelotusnotesanddominoReference
L41352Global ID
30ID
Known Mappings
1352UDP Port
1352TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 37
BGPNOTES
NTPntpNameCLI Keyword
Network Time ProtocolFull Name
The Network Time Protocol is a protocol for synchronizing the system clocksof distributed computer systems over packet-switched variable-latency datanetworks Usually the UDP port used is 123
Description
httpwwweecisudeledu~millsntphtmlindexhtmlReference
L4123Global ID
31ID
Known Mappings
123UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1038
BGPNTP
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
KAZAA2kazaa2NameCLI Keyword
Kazaa2Full Name
Kazaa is an online music subscription service that is based on second generationpeer-to-peer technology FastTracker
Description
httpwwwkazaacomaboutReference
L759Global ID
59ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1028
BGPKAZAA2
KERBEROSkerberosNameCLI Keyword
KerberosFull Name
Kerberos is a network authentication protocol The protocol is used to verifyidentities over the internet using a trusted third party Extensions of the protocolalso use the exchange of cryptographic certification of a public key Usually theprotocol uses TCPUDP ports 88749 as default
Description
httpwwwietforgrfcrfc4120txtReference
L488Global ID
21ID
Known Mappings
88749UDP Port
88749TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 29
BGPKERBEROS
L2TPl2tpNameCLI Keyword
Layer 2 Tunneling ProtocolFull Name
Layer 2 Tunneling Protocol (L2TP) is a tunneling protocol used to support virtualprivate networks (VPNs) or as part of the delivery of services by ISPs It doesnot provide any encryption or confidentiality by itself it relies on an encryptionprotocol that it passes within the tunnel to provide privacy
Description
httptoolsietforghtmlrfc2661Reference
L4115Global ID
22ID
Known Mappings
1701UDP Port
1701TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1030
BGPL2TP
LDAPldapNameCLI Keyword
Lightweight Directory Access ProtocolFull Name
Lightweight Directory Access Protocol (LDAP) is a protocol designed to toaccess distributed directory services Typically it uses port 389 for TCP andUDP
Description
httptoolsietforghtmlrfc4510Reference
L4389Global ID
23ID
Known Mappings
389UDP Port
389TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 31
BGPLDAP
MGCPmgcpNameCLI Keyword
Media Gateway Control ProtocolFull Name
Media Gateway Control Protocol (MGCP) 10 is a protocol for the control ofVoice over IP (VoIP) calls by external call-control elements known as MediaGateway Controllers (MGCs) or Call Agents (CAs)
Description
httpwwwpacketizercomrfcrfc3435Reference
L762Global ID
62ID
Known Mappings
24272727UDP Port
242724282727TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1032
BGPMGCP
NETBIOSnetbiosNameCLI Keyword
Network Basic InputOutput SystemFull Name
Network Basic InputOutput System (NetBIOS) provides services related to thesession layer of the OSI model allowing applications on separate computers tocommunicate over a local area network As strictly an API NetBIOS is not anetworking protocol In modern networks NetBIOS normally runs over TCPIPvia the NetBIOS over TCPIP (NBT) protocol This results in each computer inthe network having both an IP address and a NetBIOS name corresponding to a(possibly different) host name
Description
httptoolsietforghtmlrfc1001Reference
L726Global ID
26ID
Known Mappings
137138UDP Port
137139TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 33
BGPNETBIOS
NETSHOWnetshowNameCLI Keyword
NetShowFull Name
Netshow is a Microsoft software designed to stream media over intranets andthe internet NetShow can transfer livemulticast and on-demand streamed audioillustrated audio and video Typically Netshow uses TCP port 1755 and UDPports between 1024-5000
Description
httpwwwmicrosoftcompresspasspress1997mar97nsbta2prmspxReference
L7426Global ID
53ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1034
BGPNETSHOW
NFSnfsNameCLI Keyword
Network File SystemFull Name
Network File System (NFS) is a distributed file system developed by SunMicrosystems Inc that allows users to access and modify files remotly as if itwas a local file The protocol is based on client server architecture and typicallyuses TCPUDP port 2049
Description
httpwwwietforgrfcrfc3530txtReference
L42049Global ID
27ID
Known Mappings
2049UDP Port
2049TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
NoUnderlying Protocols
NBAR2 Standard Protocol Pack 10 35
BGPNFS
NNTPnntpNameCLI Keyword
Network News Transfer ProtocolFull Name
Network News Transfer Protocol (NNTP) is an internet transfer protocol usedfor readingposting Usenet articles and transferring them between news serversUsually the TCP port is 119 while nntp over SSL TCPUDP port is 563
Description
httptoolsietforghtmlrfc3977Reference
L4119Global ID
28ID
Known Mappings
119UDP Port
119TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1036
BGPNNTP
NOTESnotesNameCLI Keyword
IBM Lotus NotesFull Name
IBM Lotus Notes is the client of a collaborative client-server platform IBMLotus Domino is the application server Lotus Notes provides integratedcollaboration functionality including email calendaring contacts managementto do tracking instant messaging an office productivity suite (IBM LotusSymphony) and access to other Lotus Domino applications and databases
Description
httpwww-01ibmcomsoftwarelotusnotesanddominoReference
L41352Global ID
30ID
Known Mappings
1352UDP Port
1352TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 37
BGPNOTES
NTPntpNameCLI Keyword
Network Time ProtocolFull Name
The Network Time Protocol is a protocol for synchronizing the system clocksof distributed computer systems over packet-switched variable-latency datanetworks Usually the UDP port used is 123
Description
httpwwweecisudeledu~millsntphtmlindexhtmlReference
L4123Global ID
31ID
Known Mappings
123UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1038
BGPNTP
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
KERBEROSkerberosNameCLI Keyword
KerberosFull Name
Kerberos is a network authentication protocol The protocol is used to verifyidentities over the internet using a trusted third party Extensions of the protocolalso use the exchange of cryptographic certification of a public key Usually theprotocol uses TCPUDP ports 88749 as default
Description
httpwwwietforgrfcrfc4120txtReference
L488Global ID
21ID
Known Mappings
88749UDP Port
88749TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 29
BGPKERBEROS
L2TPl2tpNameCLI Keyword
Layer 2 Tunneling ProtocolFull Name
Layer 2 Tunneling Protocol (L2TP) is a tunneling protocol used to support virtualprivate networks (VPNs) or as part of the delivery of services by ISPs It doesnot provide any encryption or confidentiality by itself it relies on an encryptionprotocol that it passes within the tunnel to provide privacy
Description
httptoolsietforghtmlrfc2661Reference
L4115Global ID
22ID
Known Mappings
1701UDP Port
1701TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1030
BGPL2TP
LDAPldapNameCLI Keyword
Lightweight Directory Access ProtocolFull Name
Lightweight Directory Access Protocol (LDAP) is a protocol designed to toaccess distributed directory services Typically it uses port 389 for TCP andUDP
Description
httptoolsietforghtmlrfc4510Reference
L4389Global ID
23ID
Known Mappings
389UDP Port
389TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 31
BGPLDAP
MGCPmgcpNameCLI Keyword
Media Gateway Control ProtocolFull Name
Media Gateway Control Protocol (MGCP) 10 is a protocol for the control ofVoice over IP (VoIP) calls by external call-control elements known as MediaGateway Controllers (MGCs) or Call Agents (CAs)
Description
httpwwwpacketizercomrfcrfc3435Reference
L762Global ID
62ID
Known Mappings
24272727UDP Port
242724282727TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1032
BGPMGCP
NETBIOSnetbiosNameCLI Keyword
Network Basic InputOutput SystemFull Name
Network Basic InputOutput System (NetBIOS) provides services related to thesession layer of the OSI model allowing applications on separate computers tocommunicate over a local area network As strictly an API NetBIOS is not anetworking protocol In modern networks NetBIOS normally runs over TCPIPvia the NetBIOS over TCPIP (NBT) protocol This results in each computer inthe network having both an IP address and a NetBIOS name corresponding to a(possibly different) host name
Description
httptoolsietforghtmlrfc1001Reference
L726Global ID
26ID
Known Mappings
137138UDP Port
137139TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 33
BGPNETBIOS
NETSHOWnetshowNameCLI Keyword
NetShowFull Name
Netshow is a Microsoft software designed to stream media over intranets andthe internet NetShow can transfer livemulticast and on-demand streamed audioillustrated audio and video Typically Netshow uses TCP port 1755 and UDPports between 1024-5000
Description
httpwwwmicrosoftcompresspasspress1997mar97nsbta2prmspxReference
L7426Global ID
53ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1034
BGPNETSHOW
NFSnfsNameCLI Keyword
Network File SystemFull Name
Network File System (NFS) is a distributed file system developed by SunMicrosystems Inc that allows users to access and modify files remotly as if itwas a local file The protocol is based on client server architecture and typicallyuses TCPUDP port 2049
Description
httpwwwietforgrfcrfc3530txtReference
L42049Global ID
27ID
Known Mappings
2049UDP Port
2049TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
NoUnderlying Protocols
NBAR2 Standard Protocol Pack 10 35
BGPNFS
NNTPnntpNameCLI Keyword
Network News Transfer ProtocolFull Name
Network News Transfer Protocol (NNTP) is an internet transfer protocol usedfor readingposting Usenet articles and transferring them between news serversUsually the TCP port is 119 while nntp over SSL TCPUDP port is 563
Description
httptoolsietforghtmlrfc3977Reference
L4119Global ID
28ID
Known Mappings
119UDP Port
119TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1036
BGPNNTP
NOTESnotesNameCLI Keyword
IBM Lotus NotesFull Name
IBM Lotus Notes is the client of a collaborative client-server platform IBMLotus Domino is the application server Lotus Notes provides integratedcollaboration functionality including email calendaring contacts managementto do tracking instant messaging an office productivity suite (IBM LotusSymphony) and access to other Lotus Domino applications and databases
Description
httpwww-01ibmcomsoftwarelotusnotesanddominoReference
L41352Global ID
30ID
Known Mappings
1352UDP Port
1352TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 37
BGPNOTES
NTPntpNameCLI Keyword
Network Time ProtocolFull Name
The Network Time Protocol is a protocol for synchronizing the system clocksof distributed computer systems over packet-switched variable-latency datanetworks Usually the UDP port used is 123
Description
httpwwweecisudeledu~millsntphtmlindexhtmlReference
L4123Global ID
31ID
Known Mappings
123UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1038
BGPNTP
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
L2TPl2tpNameCLI Keyword
Layer 2 Tunneling ProtocolFull Name
Layer 2 Tunneling Protocol (L2TP) is a tunneling protocol used to support virtualprivate networks (VPNs) or as part of the delivery of services by ISPs It doesnot provide any encryption or confidentiality by itself it relies on an encryptionprotocol that it passes within the tunnel to provide privacy
Description
httptoolsietforghtmlrfc2661Reference
L4115Global ID
22ID
Known Mappings
1701UDP Port
1701TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1030
BGPL2TP
LDAPldapNameCLI Keyword
Lightweight Directory Access ProtocolFull Name
Lightweight Directory Access Protocol (LDAP) is a protocol designed to toaccess distributed directory services Typically it uses port 389 for TCP andUDP
Description
httptoolsietforghtmlrfc4510Reference
L4389Global ID
23ID
Known Mappings
389UDP Port
389TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 31
BGPLDAP
MGCPmgcpNameCLI Keyword
Media Gateway Control ProtocolFull Name
Media Gateway Control Protocol (MGCP) 10 is a protocol for the control ofVoice over IP (VoIP) calls by external call-control elements known as MediaGateway Controllers (MGCs) or Call Agents (CAs)
Description
httpwwwpacketizercomrfcrfc3435Reference
L762Global ID
62ID
Known Mappings
24272727UDP Port
242724282727TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1032
BGPMGCP
NETBIOSnetbiosNameCLI Keyword
Network Basic InputOutput SystemFull Name
Network Basic InputOutput System (NetBIOS) provides services related to thesession layer of the OSI model allowing applications on separate computers tocommunicate over a local area network As strictly an API NetBIOS is not anetworking protocol In modern networks NetBIOS normally runs over TCPIPvia the NetBIOS over TCPIP (NBT) protocol This results in each computer inthe network having both an IP address and a NetBIOS name corresponding to a(possibly different) host name
Description
httptoolsietforghtmlrfc1001Reference
L726Global ID
26ID
Known Mappings
137138UDP Port
137139TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 33
BGPNETBIOS
NETSHOWnetshowNameCLI Keyword
NetShowFull Name
Netshow is a Microsoft software designed to stream media over intranets andthe internet NetShow can transfer livemulticast and on-demand streamed audioillustrated audio and video Typically Netshow uses TCP port 1755 and UDPports between 1024-5000
Description
httpwwwmicrosoftcompresspasspress1997mar97nsbta2prmspxReference
L7426Global ID
53ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1034
BGPNETSHOW
NFSnfsNameCLI Keyword
Network File SystemFull Name
Network File System (NFS) is a distributed file system developed by SunMicrosystems Inc that allows users to access and modify files remotly as if itwas a local file The protocol is based on client server architecture and typicallyuses TCPUDP port 2049
Description
httpwwwietforgrfcrfc3530txtReference
L42049Global ID
27ID
Known Mappings
2049UDP Port
2049TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
NoUnderlying Protocols
NBAR2 Standard Protocol Pack 10 35
BGPNFS
NNTPnntpNameCLI Keyword
Network News Transfer ProtocolFull Name
Network News Transfer Protocol (NNTP) is an internet transfer protocol usedfor readingposting Usenet articles and transferring them between news serversUsually the TCP port is 119 while nntp over SSL TCPUDP port is 563
Description
httptoolsietforghtmlrfc3977Reference
L4119Global ID
28ID
Known Mappings
119UDP Port
119TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1036
BGPNNTP
NOTESnotesNameCLI Keyword
IBM Lotus NotesFull Name
IBM Lotus Notes is the client of a collaborative client-server platform IBMLotus Domino is the application server Lotus Notes provides integratedcollaboration functionality including email calendaring contacts managementto do tracking instant messaging an office productivity suite (IBM LotusSymphony) and access to other Lotus Domino applications and databases
Description
httpwww-01ibmcomsoftwarelotusnotesanddominoReference
L41352Global ID
30ID
Known Mappings
1352UDP Port
1352TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 37
BGPNOTES
NTPntpNameCLI Keyword
Network Time ProtocolFull Name
The Network Time Protocol is a protocol for synchronizing the system clocksof distributed computer systems over packet-switched variable-latency datanetworks Usually the UDP port used is 123
Description
httpwwweecisudeledu~millsntphtmlindexhtmlReference
L4123Global ID
31ID
Known Mappings
123UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1038
BGPNTP
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
LDAPldapNameCLI Keyword
Lightweight Directory Access ProtocolFull Name
Lightweight Directory Access Protocol (LDAP) is a protocol designed to toaccess distributed directory services Typically it uses port 389 for TCP andUDP
Description
httptoolsietforghtmlrfc4510Reference
L4389Global ID
23ID
Known Mappings
389UDP Port
389TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 31
BGPLDAP
MGCPmgcpNameCLI Keyword
Media Gateway Control ProtocolFull Name
Media Gateway Control Protocol (MGCP) 10 is a protocol for the control ofVoice over IP (VoIP) calls by external call-control elements known as MediaGateway Controllers (MGCs) or Call Agents (CAs)
Description
httpwwwpacketizercomrfcrfc3435Reference
L762Global ID
62ID
Known Mappings
24272727UDP Port
242724282727TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1032
BGPMGCP
NETBIOSnetbiosNameCLI Keyword
Network Basic InputOutput SystemFull Name
Network Basic InputOutput System (NetBIOS) provides services related to thesession layer of the OSI model allowing applications on separate computers tocommunicate over a local area network As strictly an API NetBIOS is not anetworking protocol In modern networks NetBIOS normally runs over TCPIPvia the NetBIOS over TCPIP (NBT) protocol This results in each computer inthe network having both an IP address and a NetBIOS name corresponding to a(possibly different) host name
Description
httptoolsietforghtmlrfc1001Reference
L726Global ID
26ID
Known Mappings
137138UDP Port
137139TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 33
BGPNETBIOS
NETSHOWnetshowNameCLI Keyword
NetShowFull Name
Netshow is a Microsoft software designed to stream media over intranets andthe internet NetShow can transfer livemulticast and on-demand streamed audioillustrated audio and video Typically Netshow uses TCP port 1755 and UDPports between 1024-5000
Description
httpwwwmicrosoftcompresspasspress1997mar97nsbta2prmspxReference
L7426Global ID
53ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1034
BGPNETSHOW
NFSnfsNameCLI Keyword
Network File SystemFull Name
Network File System (NFS) is a distributed file system developed by SunMicrosystems Inc that allows users to access and modify files remotly as if itwas a local file The protocol is based on client server architecture and typicallyuses TCPUDP port 2049
Description
httpwwwietforgrfcrfc3530txtReference
L42049Global ID
27ID
Known Mappings
2049UDP Port
2049TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
NoUnderlying Protocols
NBAR2 Standard Protocol Pack 10 35
BGPNFS
NNTPnntpNameCLI Keyword
Network News Transfer ProtocolFull Name
Network News Transfer Protocol (NNTP) is an internet transfer protocol usedfor readingposting Usenet articles and transferring them between news serversUsually the TCP port is 119 while nntp over SSL TCPUDP port is 563
Description
httptoolsietforghtmlrfc3977Reference
L4119Global ID
28ID
Known Mappings
119UDP Port
119TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1036
BGPNNTP
NOTESnotesNameCLI Keyword
IBM Lotus NotesFull Name
IBM Lotus Notes is the client of a collaborative client-server platform IBMLotus Domino is the application server Lotus Notes provides integratedcollaboration functionality including email calendaring contacts managementto do tracking instant messaging an office productivity suite (IBM LotusSymphony) and access to other Lotus Domino applications and databases
Description
httpwww-01ibmcomsoftwarelotusnotesanddominoReference
L41352Global ID
30ID
Known Mappings
1352UDP Port
1352TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 37
BGPNOTES
NTPntpNameCLI Keyword
Network Time ProtocolFull Name
The Network Time Protocol is a protocol for synchronizing the system clocksof distributed computer systems over packet-switched variable-latency datanetworks Usually the UDP port used is 123
Description
httpwwweecisudeledu~millsntphtmlindexhtmlReference
L4123Global ID
31ID
Known Mappings
123UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1038
BGPNTP
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
MGCPmgcpNameCLI Keyword
Media Gateway Control ProtocolFull Name
Media Gateway Control Protocol (MGCP) 10 is a protocol for the control ofVoice over IP (VoIP) calls by external call-control elements known as MediaGateway Controllers (MGCs) or Call Agents (CAs)
Description
httpwwwpacketizercomrfcrfc3435Reference
L762Global ID
62ID
Known Mappings
24272727UDP Port
242724282727TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1032
BGPMGCP
NETBIOSnetbiosNameCLI Keyword
Network Basic InputOutput SystemFull Name
Network Basic InputOutput System (NetBIOS) provides services related to thesession layer of the OSI model allowing applications on separate computers tocommunicate over a local area network As strictly an API NetBIOS is not anetworking protocol In modern networks NetBIOS normally runs over TCPIPvia the NetBIOS over TCPIP (NBT) protocol This results in each computer inthe network having both an IP address and a NetBIOS name corresponding to a(possibly different) host name
Description
httptoolsietforghtmlrfc1001Reference
L726Global ID
26ID
Known Mappings
137138UDP Port
137139TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 33
BGPNETBIOS
NETSHOWnetshowNameCLI Keyword
NetShowFull Name
Netshow is a Microsoft software designed to stream media over intranets andthe internet NetShow can transfer livemulticast and on-demand streamed audioillustrated audio and video Typically Netshow uses TCP port 1755 and UDPports between 1024-5000
Description
httpwwwmicrosoftcompresspasspress1997mar97nsbta2prmspxReference
L7426Global ID
53ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1034
BGPNETSHOW
NFSnfsNameCLI Keyword
Network File SystemFull Name
Network File System (NFS) is a distributed file system developed by SunMicrosystems Inc that allows users to access and modify files remotly as if itwas a local file The protocol is based on client server architecture and typicallyuses TCPUDP port 2049
Description
httpwwwietforgrfcrfc3530txtReference
L42049Global ID
27ID
Known Mappings
2049UDP Port
2049TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
NoUnderlying Protocols
NBAR2 Standard Protocol Pack 10 35
BGPNFS
NNTPnntpNameCLI Keyword
Network News Transfer ProtocolFull Name
Network News Transfer Protocol (NNTP) is an internet transfer protocol usedfor readingposting Usenet articles and transferring them between news serversUsually the TCP port is 119 while nntp over SSL TCPUDP port is 563
Description
httptoolsietforghtmlrfc3977Reference
L4119Global ID
28ID
Known Mappings
119UDP Port
119TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1036
BGPNNTP
NOTESnotesNameCLI Keyword
IBM Lotus NotesFull Name
IBM Lotus Notes is the client of a collaborative client-server platform IBMLotus Domino is the application server Lotus Notes provides integratedcollaboration functionality including email calendaring contacts managementto do tracking instant messaging an office productivity suite (IBM LotusSymphony) and access to other Lotus Domino applications and databases
Description
httpwww-01ibmcomsoftwarelotusnotesanddominoReference
L41352Global ID
30ID
Known Mappings
1352UDP Port
1352TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 37
BGPNOTES
NTPntpNameCLI Keyword
Network Time ProtocolFull Name
The Network Time Protocol is a protocol for synchronizing the system clocksof distributed computer systems over packet-switched variable-latency datanetworks Usually the UDP port used is 123
Description
httpwwweecisudeledu~millsntphtmlindexhtmlReference
L4123Global ID
31ID
Known Mappings
123UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1038
BGPNTP
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
NETBIOSnetbiosNameCLI Keyword
Network Basic InputOutput SystemFull Name
Network Basic InputOutput System (NetBIOS) provides services related to thesession layer of the OSI model allowing applications on separate computers tocommunicate over a local area network As strictly an API NetBIOS is not anetworking protocol In modern networks NetBIOS normally runs over TCPIPvia the NetBIOS over TCPIP (NBT) protocol This results in each computer inthe network having both an IP address and a NetBIOS name corresponding to a(possibly different) host name
Description
httptoolsietforghtmlrfc1001Reference
L726Global ID
26ID
Known Mappings
137138UDP Port
137139TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 33
BGPNETBIOS
NETSHOWnetshowNameCLI Keyword
NetShowFull Name
Netshow is a Microsoft software designed to stream media over intranets andthe internet NetShow can transfer livemulticast and on-demand streamed audioillustrated audio and video Typically Netshow uses TCP port 1755 and UDPports between 1024-5000
Description
httpwwwmicrosoftcompresspasspress1997mar97nsbta2prmspxReference
L7426Global ID
53ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1034
BGPNETSHOW
NFSnfsNameCLI Keyword
Network File SystemFull Name
Network File System (NFS) is a distributed file system developed by SunMicrosystems Inc that allows users to access and modify files remotly as if itwas a local file The protocol is based on client server architecture and typicallyuses TCPUDP port 2049
Description
httpwwwietforgrfcrfc3530txtReference
L42049Global ID
27ID
Known Mappings
2049UDP Port
2049TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
NoUnderlying Protocols
NBAR2 Standard Protocol Pack 10 35
BGPNFS
NNTPnntpNameCLI Keyword
Network News Transfer ProtocolFull Name
Network News Transfer Protocol (NNTP) is an internet transfer protocol usedfor readingposting Usenet articles and transferring them between news serversUsually the TCP port is 119 while nntp over SSL TCPUDP port is 563
Description
httptoolsietforghtmlrfc3977Reference
L4119Global ID
28ID
Known Mappings
119UDP Port
119TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1036
BGPNNTP
NOTESnotesNameCLI Keyword
IBM Lotus NotesFull Name
IBM Lotus Notes is the client of a collaborative client-server platform IBMLotus Domino is the application server Lotus Notes provides integratedcollaboration functionality including email calendaring contacts managementto do tracking instant messaging an office productivity suite (IBM LotusSymphony) and access to other Lotus Domino applications and databases
Description
httpwww-01ibmcomsoftwarelotusnotesanddominoReference
L41352Global ID
30ID
Known Mappings
1352UDP Port
1352TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 37
BGPNOTES
NTPntpNameCLI Keyword
Network Time ProtocolFull Name
The Network Time Protocol is a protocol for synchronizing the system clocksof distributed computer systems over packet-switched variable-latency datanetworks Usually the UDP port used is 123
Description
httpwwweecisudeledu~millsntphtmlindexhtmlReference
L4123Global ID
31ID
Known Mappings
123UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1038
BGPNTP
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
NETSHOWnetshowNameCLI Keyword
NetShowFull Name
Netshow is a Microsoft software designed to stream media over intranets andthe internet NetShow can transfer livemulticast and on-demand streamed audioillustrated audio and video Typically Netshow uses TCP port 1755 and UDPports between 1024-5000
Description
httpwwwmicrosoftcompresspasspress1997mar97nsbta2prmspxReference
L7426Global ID
53ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1034
BGPNETSHOW
NFSnfsNameCLI Keyword
Network File SystemFull Name
Network File System (NFS) is a distributed file system developed by SunMicrosystems Inc that allows users to access and modify files remotly as if itwas a local file The protocol is based on client server architecture and typicallyuses TCPUDP port 2049
Description
httpwwwietforgrfcrfc3530txtReference
L42049Global ID
27ID
Known Mappings
2049UDP Port
2049TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
NoUnderlying Protocols
NBAR2 Standard Protocol Pack 10 35
BGPNFS
NNTPnntpNameCLI Keyword
Network News Transfer ProtocolFull Name
Network News Transfer Protocol (NNTP) is an internet transfer protocol usedfor readingposting Usenet articles and transferring them between news serversUsually the TCP port is 119 while nntp over SSL TCPUDP port is 563
Description
httptoolsietforghtmlrfc3977Reference
L4119Global ID
28ID
Known Mappings
119UDP Port
119TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1036
BGPNNTP
NOTESnotesNameCLI Keyword
IBM Lotus NotesFull Name
IBM Lotus Notes is the client of a collaborative client-server platform IBMLotus Domino is the application server Lotus Notes provides integratedcollaboration functionality including email calendaring contacts managementto do tracking instant messaging an office productivity suite (IBM LotusSymphony) and access to other Lotus Domino applications and databases
Description
httpwww-01ibmcomsoftwarelotusnotesanddominoReference
L41352Global ID
30ID
Known Mappings
1352UDP Port
1352TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 37
BGPNOTES
NTPntpNameCLI Keyword
Network Time ProtocolFull Name
The Network Time Protocol is a protocol for synchronizing the system clocksof distributed computer systems over packet-switched variable-latency datanetworks Usually the UDP port used is 123
Description
httpwwweecisudeledu~millsntphtmlindexhtmlReference
L4123Global ID
31ID
Known Mappings
123UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1038
BGPNTP
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
NFSnfsNameCLI Keyword
Network File SystemFull Name
Network File System (NFS) is a distributed file system developed by SunMicrosystems Inc that allows users to access and modify files remotly as if itwas a local file The protocol is based on client server architecture and typicallyuses TCPUDP port 2049
Description
httpwwwietforgrfcrfc3530txtReference
L42049Global ID
27ID
Known Mappings
2049UDP Port
2049TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
NoUnderlying Protocols
NBAR2 Standard Protocol Pack 10 35
BGPNFS
NNTPnntpNameCLI Keyword
Network News Transfer ProtocolFull Name
Network News Transfer Protocol (NNTP) is an internet transfer protocol usedfor readingposting Usenet articles and transferring them between news serversUsually the TCP port is 119 while nntp over SSL TCPUDP port is 563
Description
httptoolsietforghtmlrfc3977Reference
L4119Global ID
28ID
Known Mappings
119UDP Port
119TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1036
BGPNNTP
NOTESnotesNameCLI Keyword
IBM Lotus NotesFull Name
IBM Lotus Notes is the client of a collaborative client-server platform IBMLotus Domino is the application server Lotus Notes provides integratedcollaboration functionality including email calendaring contacts managementto do tracking instant messaging an office productivity suite (IBM LotusSymphony) and access to other Lotus Domino applications and databases
Description
httpwww-01ibmcomsoftwarelotusnotesanddominoReference
L41352Global ID
30ID
Known Mappings
1352UDP Port
1352TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 37
BGPNOTES
NTPntpNameCLI Keyword
Network Time ProtocolFull Name
The Network Time Protocol is a protocol for synchronizing the system clocksof distributed computer systems over packet-switched variable-latency datanetworks Usually the UDP port used is 123
Description
httpwwweecisudeledu~millsntphtmlindexhtmlReference
L4123Global ID
31ID
Known Mappings
123UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1038
BGPNTP
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
NNTPnntpNameCLI Keyword
Network News Transfer ProtocolFull Name
Network News Transfer Protocol (NNTP) is an internet transfer protocol usedfor readingposting Usenet articles and transferring them between news serversUsually the TCP port is 119 while nntp over SSL TCPUDP port is 563
Description
httptoolsietforghtmlrfc3977Reference
L4119Global ID
28ID
Known Mappings
119UDP Port
119TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1036
BGPNNTP
NOTESnotesNameCLI Keyword
IBM Lotus NotesFull Name
IBM Lotus Notes is the client of a collaborative client-server platform IBMLotus Domino is the application server Lotus Notes provides integratedcollaboration functionality including email calendaring contacts managementto do tracking instant messaging an office productivity suite (IBM LotusSymphony) and access to other Lotus Domino applications and databases
Description
httpwww-01ibmcomsoftwarelotusnotesanddominoReference
L41352Global ID
30ID
Known Mappings
1352UDP Port
1352TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 37
BGPNOTES
NTPntpNameCLI Keyword
Network Time ProtocolFull Name
The Network Time Protocol is a protocol for synchronizing the system clocksof distributed computer systems over packet-switched variable-latency datanetworks Usually the UDP port used is 123
Description
httpwwweecisudeledu~millsntphtmlindexhtmlReference
L4123Global ID
31ID
Known Mappings
123UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1038
BGPNTP
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
NOTESnotesNameCLI Keyword
IBM Lotus NotesFull Name
IBM Lotus Notes is the client of a collaborative client-server platform IBMLotus Domino is the application server Lotus Notes provides integratedcollaboration functionality including email calendaring contacts managementto do tracking instant messaging an office productivity suite (IBM LotusSymphony) and access to other Lotus Domino applications and databases
Description
httpwww-01ibmcomsoftwarelotusnotesanddominoReference
L41352Global ID
30ID
Known Mappings
1352UDP Port
1352TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 37
BGPNOTES
NTPntpNameCLI Keyword
Network Time ProtocolFull Name
The Network Time Protocol is a protocol for synchronizing the system clocksof distributed computer systems over packet-switched variable-latency datanetworks Usually the UDP port used is 123
Description
httpwwweecisudeledu~millsntphtmlindexhtmlReference
L4123Global ID
31ID
Known Mappings
123UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1038
BGPNTP
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
NTPntpNameCLI Keyword
Network Time ProtocolFull Name
The Network Time Protocol is a protocol for synchronizing the system clocksof distributed computer systems over packet-switched variable-latency datanetworks Usually the UDP port used is 123
Description
httpwwweecisudeledu~millsntphtmlindexhtmlReference
L4123Global ID
31ID
Known Mappings
123UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1038
BGPNTP
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
OSPFospfNameCLI Keyword
Open Shortest Path FirstFull Name
Open Shortest Path First (OSPF) is a link state routing protocol that shares thenetwork topology of an Autonomous System betweenOSPF routers Each OSPFrouter maintains a database by calculating Shortest Path Tree algorithm with thelink state provided from the OSPF protocol
Description
httpwwwietforgrfcrfc2328txtReference
L389Global ID
10ID
Known Mappings
-UDP Port
-TCP Port
89IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 39
BGPOSPF
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
POP3pop3NameCLI Keyword
Post Office Protocol 3Full Name
Post Office Protocol 3 is an application-layer Internet standard protocol used bylocal e-mail clients to retrieve e-mail from a remote server over a TCPIPconnection POP3 usually uses TCP port 995
Description
httpwwwietforgrfcrfc1939txtReference
L4110Global ID
33ID
Known Mappings
-UDP Port
110TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1040
BGPPOP3
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
PPTPpptpNameCLI Keyword
Point-to-Point Tunneling ProtocolFull Name
Point-to-Point Tunneling Protocol uses a control channel over TCP and a GRE(Generic Routing Encapsulation) tunnel operating to encapsulate PPP packets
Description
httpwwwietforgrfcrfc2637txtReference
L41723Global ID
35ID
Known Mappings
-UDP Port
1723TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 41
BGPPPTP
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
PRINTERprinterNameCLI Keyword
Line Printer Daemon ProtocolFull Name
TheLine Printer Daemon protocolLine Printer Remote protocol(orLPDLPR) isa network protocol for submitting print jobs to a remote printer
Description
httpwwwietforgrfcrfc1179txtReference
L4515Global ID
46ID
Known Mappings
515UDP Port
515TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1042
BGPPRINTER
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
RIPripNameCLI Keyword
Routing Information ProtocolFull Name
Routing Information Protocol (RIP) is a routing protocol used in IP basednetworks based on the Distance Vector routing algorithm RIP is designed to beused in an Autonomous System (AS) as a Interior Gateway Protocol (IGP)
Description
httptoolsietforghtmlrfc2453Reference
L4520Global ID
36ID
Known Mappings
520UDP Port
520TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 43
BGPRIP
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
RTCPrtcpNameCLI Keyword
Real-Time Transport Control ProtocolFull Name
Real Time Transport Control Protocol (RTCP) is augmentation of RTP RTCPallowmonitoring of the data delivery to largemulticast networks provides controland identification functionality Typically RTCP uses UDP as its transportprotocol
Description
httpwwwietforgrfcrfc3550txtReference
L766Global ID
66ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1044
BGPRTCP
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
RTPrtpNameCLI Keyword
Real-time Transport ProtocolFull Name
Real-time Transport Protocol is used for streaming video and audio in real-timefor various applications RTP works in conjunction with some streaming controlprotocol like RTCP SIP H225 or H245
Description
httptoolsietforghtmlrfc3551Reference
L761Global ID
61ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 45
BGPRTP
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
RTSPrtspNameCLI Keyword
Real Time Streaming ProtocolFull Name
Real Time Streaming Protocol is a control protocol that is used to control mediastreaming in real-time for various applications RTSP is based on client serverarchitecture and the common port associated is 554
Description
httpwwwietforgrfcrfc2326txtReference
L4554Global ID
60ID
Known Mappings
-UDP Port
5548554TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1046
BGPRTSP
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
SAPsapNameCLI Keyword
SAPFull Name
SAP offers various software applications and solutions for businesses and businessproductivity It provides solutions for IT management data bases and businessanalysis Typically SAP uses 3200 3300 and 3600 TCP ports as default
Description
httpwwwsapcomReference
L784Global ID
84ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 47
BGPSAP
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
SECURE-FTPsecure-ftpNameCLI Keyword
ftp protocol control over TLSSSLFull Name
FTPS (Secure FTP) is an extension to the commonly used File Transfer Protocol(FTP) that adds support for the Transport Layer Security (TLS) and the SecureSockets Layer (SSL) cryptographic protocols
Description
httpenwikipediaorgwikiFTPSReference
L4990Global ID
44ID
Known Mappings
990UDP Port
990TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1048
BGPSECURE-FTP
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
SECURE-HTTPsecure-httpNameCLI Keyword
Secured HTTP or SSLFull Name
Secure Hypertext Transfer Protocol(S-HTTP) is a little-used alternative totheHTTPSURI scheme forencryptingwebcommunications carried overHTTP
Description
httptoolsietforghtmlrfc2660Reference
L4443Global ID
16ID
Known Mappings
443UDP Port
443TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 49
BGPSECURE-HTTP
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
SECURE-IMAPsecure-imapNameCLI Keyword
Internet Message Access Protocol over TLSSSLFull Name
Internet Message Access Protocol over TLSSSL allows users to securely acesstheir email servers and to receivesend emails The protocol simulates local usewhen in fact it is a connection to a server
Description
httptoolsietforghtmlrfc2595Reference
L4993Global ID
18ID
Known Mappings
993585UDP Port
993585TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1050
BGPSECURE-IMAP
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
SECURE-IRCsecure-ircNameCLI Keyword
Secure IRCFull Name
Registered with IANA on port 994 TCPUDPDescription
httpwwwianaorgassignmentsservice-names-port-numbersservice-names-port-numbersxml
Reference
L4994Global ID
20ID
Known Mappings
994UDP Port
994TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 51
BGPSECURE-IRC
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
SECURE-LDAPsecure-ldapNameCLI Keyword
ldap protocol over TLSFull Name
The Lightweight Directory Access Protocol (LDAP) is used to read from andwrite to Active Directory By default LDAP traffic is transmitted unsecuredYou can make LDAP traffic confidential and secure by using Secure SocketsLayer (SSL) Transport Layer Security (TLS) technology You can enable LDAPover SSL (LDAPS) by installing a properly formatted certificate from either aMicrosoft certification authority (CA) or a non-Microsoft CA
Description
httpsupportmicrosoftcomkb321051Reference
L4636Global ID
24ID
Known Mappings
636UDP Port
636TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1052
BGPSECURE-LDAP
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
SECURE-NNTPsecure-nntpNameCLI Keyword
Secure Network News Transfer ProtocolFull Name
Secure Network News Transfer Protocol (SNNTP) is NNTP over TLS NNTPis an internet transfer protocol used for readingposting Usenet articles andtransferring them between news servers
Description
httptoolsietforghtmlrfc3977Reference
L4563Global ID
29ID
Known Mappings
563UDP Port
563TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 53
BGPSECURE-NNTP
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
SECURE-POP3secure-pop3NameCLI Keyword
Post Office Protocol 3 over TLSFull Name
Secure Post Office Protocol 3 is an application-layer Internet standard overTLSSSL protocol used by local e-mail clients to securely retrieve e-mail froma remote server over a TCPIP connection
Description
httptoolsietforghtmlrfc2595Reference
L4995Global ID
34ID
Known Mappings
995UDP Port
995TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1054
BGPSECURE-POP3
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
SECURE-TELNETsecure-telnetNameCLI Keyword
telnet protocol over TLSFull Name
Secure Telnet is a cross-platform interactive text-based protocol used to connectremote clients over a the Transport Layer Security (TLS) protocol Telnetparticipants can decide whether or not to attempt TLS negotiation and how thetwo participants should process authentication credentials exchanged as a partof TLS startup
Description
httptoolsietforgiddraft-ietf-tn3270e-telnet-tls-06txtReference
L4992Global ID
43ID
Known Mappings
992UDP Port
992TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 55
BGPSECURE-TELNET
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
SIPsipNameCLI Keyword
Session Initiation ProtocolFull Name
Session Initiation Protocol is a text-based control protocol used for VoIPcommunications Instant Messagin presence information file transfer and onlinegames It can be used for creating modifying and terminating VoIP sessionsthrough signaling
Description
httpwwwietforgrfcrfc3261txtReference
L45060Global ID
65ID
Known Mappings
5060UDP Port
5060TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1056
BGPSIP
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
SKINNYskinnyNameCLI Keyword
Skinny Call Control ProtocolFull Name
Skinny client control protocol is a network control protocol over Ciscos Ethernettelephones Skinny client uses TCPIP connection for calls and RTP for audiotransfer between Skinny clients or H323 terminals
Description
httpwwwciscocomenUStechtk652tk701tk589tsd_technology_support_sub-protocol_homehtml
Reference
L763Global ID
63ID
Known Mappings
-UDP Port
200020012002TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 57
BGPSKINNY
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
SKYPEskypeNameCLI Keyword
SkypeFull Name
Skype software uses a proprietary Internet telephony (VoIP) network called theSkype protocol Part of the Skype technology relies on the Global Indexpeer-to-peer protocol belonging to the Joltid Ltd corporation Skype is softwarethat contains several features such as telephone calls over the Internet instantmessaging file transfer and video conferencing
Description
wwwskypecomReference
L783Global ID
83ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1058
BGPSKYPE
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
SMTPsmtpNameCLI Keyword
Simple Mail Transfer ProtocolFull Name
Simple Mail Transfer Protocol is used for sending email messages betweenservers Most e-mail systems that send mail over the internet use SMTP to sendmessages from one server to another the messages can then be retrieved withan email client using either POP or IMAP protocols In addition SMTP is alsoused to send messages from a mail client to a mail server
Description
httpjamesapacheorgserverrfclistsmtprfc0821txtReference
L425Global ID
71ID
Known Mappings
-UDP Port
25587TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 59
BGPSMTP
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
SNMPsnmpNameCLI Keyword
Simple Network Management ProtocolFull Name
Simple NetworkManagement Protocol (SNMP) us a protocol used for a TCPIPnetwork managementIt collects data about the nework enteties and distributesthem among them Typically the protocol uses TCPUDP ports 161-162
Description
httpwwwietforgrfcrfc1157txtReference
L4161Global ID
38ID
Known Mappings
161162UDP Port
161162TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1060
BGPSNMP
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
SOCKSsocksNameCLI Keyword
SOCKSFull Name
SOCKS is an Internet protocol that facilitates the routing of network packetsbetween client server applications via a proxy server
Description
httpwwwietforgrfcrfc1928txtReference
L41080Global ID
39ID
Known Mappings
1080UDP Port
1080TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 61
BGPSOCKS
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
SQLNETsqlnetNameCLI Keyword
SQLNetFull Name
Oracle SQLNET is a client-server middleware used to transfer informationbetween data bases and between data base to clients
Description
httpwwworafaqcomwikiSQLNetReference
L41700Global ID
51ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1062
BGPSQLNET
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
SQLSERVERsqlserverNameCLI Keyword
Microsoft SQL ServerFull Name
Microsoft SQL Server is a relational database server developed by MicrosoftIt is a software product whose primary function is to store and retrieve data asrequested by other software applications be it those on the same computer orthose running on another computer across a network
Description
httptechnetmicrosoftcomen-ussqlserverdefaultReference
L41433Global ID
25ID
Known Mappings
1433UDP Port
1433TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 63
BGPSQLSERVER
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
SSHsshNameCLI Keyword
Secure ShellFull Name
Secure Shell Protocol (SSH) is a protocol used to secure login and other securenetwork services over an unsecure network The protocol based on a client-serverarchitecture has three steps for the connection First the server has to beauthenticated to the client over a reliable transport connection (usually TCPIP)then the client side is authenticated-only then the connection is established andthe client-server encrypted connection can transfer data between them Typicallythe protocol uses TCP port 22
Description
httpwwwietforgrfcrfc4251txtReference
L422Global ID
40ID
Known Mappings
-UDP Port
22TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1064
BGPSSH
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
STREAMWORKstreamworkNameCLI Keyword
StreamWorkFull Name
Stream Work developed by Xing Technology is a network delivery of live andon-demand of video and audio data NBC is using it for broadcasting financialnews popular in the US and Europe The protocol is based on a client serverarchitecture and uses connectionless protocol UDP
Description
httpwwwsapstreamworkcomhow-it-worksReference
L7427Global ID
55ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 65
BGPSTREAMWORK
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
SUNRPCsunrpcNameCLI Keyword
Sun Remote Procedure CallFull Name
Sun Microsystems Remote Procedure Call is a client-server protocol that allowsusers to call procedures remotely- meaning the procedure is actually done at theserver and not at the local users The server holds a port mapper that listens toqueries usually on port 111
Description
httpwwwietforgrfcrfc1057txtReference
L4111Global ID
54ID
Known Mappings
111UDP Port
111TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1066
BGPSUNRPC
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
SYSLOGsyslogNameCLI Keyword
SyslogFull Name
System Logging Utility (syslog) is a protocol used to transfer event notificationsThe protocol was first developed by the University of California BerkeleySoftware Distribution (BSD)
Description
httptoolsietforghtmlrfc5424Reference
L741Global ID
41ID
Known Mappings
514UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 67
BGPSYSLOG
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
TELNETtelnetNameCLI Keyword
TelnetFull Name
Telnet is a cross-platform interactive text-based protocol used to connect remoteclients over a TCPIP network The telnet client connects to a host and becomesa Network Virtual Terminal (NVT) allowing the user to communicate remotelywith the host Typically the protocol uses TCP port 23
Description
httpwwwfaqsorgrfcsrfc854htmlReference
L423Global ID
42ID
Known Mappings
23UDP Port
23TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1068
BGPTELNET
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
TFTPtftpNameCLI Keyword
Trivial File Transfer ProtocolFull Name
Trivial File Transfer Protocol (TFTP) is a file transfer protocol with thefunctionality of a very basic form of FTP It is useful for booting computers suchas routers which do not have any data storage devices
Description
httpwwwietforgrfcrfc1350txtReference
L469Global ID
48ID
Known Mappings
69UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 69
BGPTFTP
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
VDOLIVEvdoliveNameCLI Keyword
VDOLiveFull Name
VDOLive is a real time video-audio streaming and broadcasting player used inmany different applications The player is available both as Netscape plug-inand as Internet Explorer ActiveX control
Description
httpwww5star-sharewarecomWindowsMusicMultimediaPlayersvdolive-playerhtml
Reference
L7425Global ID
50ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
NoIPv4 Support
NoIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 1070
BGPVDOLIVE
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
WINMXwinmxNameCLI Keyword
WinMXFull Name
WinMX is a freeware peer-to-peer file sharing client developed by FrontcodeTechnologies in 2001 It runs on Windows OS
Description
httpcompnetworkingaboutcomodwinmxfwinmxstatushtmReference
L768Global ID
68ID
Known Mappings
-UDP Port
-TCP Port
-IP Protocol
IP Version
YesIPv4 Support
YesIPv6 Support
-Application Group
-Category
-Sub Category
NoP2P Technology
NoEncrypted
NoTunnel
-Underlying Protocols
NBAR2 Standard Protocol Pack 10 71
BGPWINMX
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-
NBAR2 Standard Protocol Pack 1072
BGPWINMX
- NBAR2 Standard Protocol Pack 10
- Contents
- Release Notes for NBAR2 Standard Protocol Pack 10
- BGP
-
- BITTORRENT
- CITRIX
- DHCP
- DIRECTCONNECT
- DNS
- EDONKEY
- EGP
- EIGRP
- EXCHANGE
- FASTTRACK
- FINGER
- FTP
- GNUTELLA
- GOPHER
- GRE
- H323
- HTTP
- ICMP
- IMAP
- IPINIP
- IPV6-ICMP
- IRC
- KAZAA2
- KERBEROS
- L2TP
- LDAP
- MGCP
- NETBIOS
- NETSHOW
- NFS
- NNTP
- NOTES
- NTP
- OSPF
- POP3
- PPTP
- PRINTER
- RIP
- RTCP
- RTP
- RTSP
- SAP
- SECURE-FTP
- SECURE-HTTP
- SECURE-IMAP
- SECURE-IRC
- SECURE-LDAP
- SECURE-NNTP
- SECURE-POP3
- SECURE-TELNET
- SIP
- SKINNY
- SKYPE
- SMTP
- SNMP
- SOCKS
- SQLNET
- SQLSERVER
- SSH
- STREAMWORK
- SUNRPC
- SYSLOG
- TELNET
- TFTP
- VDOLIVE
- WINMX
-