Revision as of 08:10, 3 April 2008 edit Andrewjuliz (talk \| contribs) 5 edits No edit summary ← Previous edit		Revision as of 08:11, 3 April 2008 edit undo Andrewjuliz (talk \| contribs) 5 edits No edit summary Next edit →
Line 5: The NBAR approach is useful in dealing with malicious [[software]] using known [[TCP and UDP port\|ports]] to fake being "priority traffic", as well as non-standard applications using dynamic ports.<ref>''[http://www.cisco.com/warp/public/63/nbar_acl_codered.shtml Using Network-Based Application Recognition and ACLs] for Blocking the "Code Red" Worm'', Cisco.</ref> That's why NBAR is also known as [[OSI_layer_7]] categorization. On Cisco routers, NBAR is mainly used for [[Quality of Service]] ~~classification~~ and ~~marking~~[[Security]] purposes. ==References==

Network Based Application Recognition: Difference between revisions