RE: [WIRELESS-LAN] Cisco AVC- anyone using it for real in prod?
I would use it to QoS AppleTV mirroring, but as far as I know Cisco doesn’t have a signature for that yet. Eric Barnett Wireless Administrator Information and Technology Services Arkansas State University 870 680 4243 From: The EDUCAUSE Wireless Issues Constituent Group Listserv [mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] On Behalf Of Craig Eyre Sent: Tuesday, August 12, 2014 1:12 PM To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Subject: Re: [WIRELESS-LAN] Cisco AVC- anyone using it for real in prod? We use it to drop certain traffic but not P2P as it will just morph into different ports. We just mark and control the bandwidth for all the P2P stuff to "try" and make it unusable for users. Craig On Tue, Aug 12, 2014 at 9:44 AM, Ciesinski, Nick mailto:ciesi...@uww.edu>> wrote: Lee, We have been doing AVC for a few years now to drop P2P. We are doing it on a ASR1k though not the WLC. We used to use a SCE engine to do it which is where the AVC/NBAR2 stuff came from. We find we don't need to update protocol packs that often. Nick Ciesinski From: Chad Burnham mailto:cburn...@du.edu><mailto:cburn...@du.edu<mailto:cburn...@du.edu>>> Reply-To: The EDUCAUSE Wireless Issues Constituent Group Listserv mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU><mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>>> Date: Tuesday, August 12, 2014 10:40 AM To: "WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU><mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>>" mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU><mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>>> Subject: Re: [WIRELESS-LAN] Cisco AVC- anyone using it for real in prod? HI Lee, Getting it humming this month – on a pair of ASR 1006 Routers (sorry not in Wireless). We have Prime Infrastructure (2.1) managing it. We removed our Anagrans this summer to move to this. We just upgraded ASR this AM to support it. Will let you know in a month. I am scheduled to talk/present @ WestNet about our experiences in January. Signatures = Protocol Packs. You can update them without rebooting the router. CB From: The EDUCAUSE Wireless Issues Constituent Group Listserv [mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>] On Behalf Of Lee H Badman Sent: Tuesday, August 12, 2014 9:28 AM To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU><mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>> Subject: [WIRELESS-LAN] Cisco AVC- anyone using it for real in prod? We are "using" Cisco's WLAN application visibility, but doing little with it beyond the occasional looking in. Elsewhere, we use Palo Alto boxes to shape traffic, but are interested in getting the controllers more involved in a prod role. Is anyone relying on AVC to drop traffic like P2P in prod? Is it working well for you? How often do you find signature updates available? Any other thoughts/comments on experiences, successes, or frustrations with using AVC for real- especially on large networks? Thanks- Lee Badman Lee H. Badman Network Architect/Wireless TME ITS, Syracuse University 315.443.3003 ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. -- Craig Eyre Network Analyst IT Services Department Mount Royal University 4825 Mount Royal Gate SW Calgary AB T2P 3T5 P. 403.440.5199 E. ce...@mtroyal.ca<mailto:ce...@mtroyal.ca> "The difference between a successful person and others is not a lack of strength, not a lack of knowledge, but rather in a lack of will." Vincent T. Lombardi" "MRU IT Services or any legitimate organization will NEVER ask for your password. Never email or share your password with anyone.". ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
Re: [WIRELESS-LAN] Cisco AVC- anyone using it for real in prod?
We use it to drop certain traffic but not P2P as it will just morph into different ports. We just mark and control the bandwidth for all the P2P stuff to "try" and make it unusable for users. Craig On Tue, Aug 12, 2014 at 9:44 AM, Ciesinski, Nick wrote: > Lee, > > We have been doing AVC for a few years now to drop P2P. We are doing it > on a ASR1k though not the WLC. We used to use a SCE engine to do it which > is where the AVC/NBAR2 stuff came from. We find we don't need to update > protocol packs that often. > > Nick Ciesinski > > From: Chad Burnham mailto:cburn...@du.edu>> > Reply-To: The EDUCAUSE Wireless Issues Constituent Group Listserv < > WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>> > Date: Tuesday, August 12, 2014 10:40 AM > To: "WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>" <mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>> > Subject: Re: [WIRELESS-LAN] Cisco AVC- anyone using it for real in prod? > > HI Lee, > > Getting it humming this month – on a pair of ASR 1006 Routers (sorry not > in Wireless). > We have Prime Infrastructure (2.1) managing it. > > We removed our Anagrans this summer to move to this. > > We just upgraded ASR this AM to support it. Will let you know in a month. > I am scheduled to talk/present @ WestNet about our experiences in January. > > Signatures = Protocol Packs. You can update them without rebooting the > router. > > CB > > From: The EDUCAUSE Wireless Issues Constituent Group Listserv [mailto: > WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] On Behalf Of Lee H Badman > Sent: Tuesday, August 12, 2014 9:28 AM > To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU> > Subject: [WIRELESS-LAN] Cisco AVC- anyone using it for real in prod? > > > We are "using" Cisco's WLAN application visibility, but doing little with > it beyond the occasional looking in. Elsewhere, we use Palo Alto boxes to > shape traffic, but are interested in getting the controllers more involved > in a prod role. > > > > Is anyone relying on AVC to drop traffic like P2P in prod? Is it working > well for you? How often do you find signature updates available? Any other > thoughts/comments on experiences, successes, or frustrations with using AVC > for real- especially on large networks? > > > > Thanks- > > > > Lee Badman > > > > > Lee H. Badman > Network Architect/Wireless TME > ITS, Syracuse University > 315.443.3003 > ** Participation and subscription information for this EDUCAUSE > Constituent Group discussion list can be found at > http://www.educause.edu/groups/. > -- Craig Eyre Network Analyst IT Services Department Mount Royal University 4825 Mount Royal Gate SW Calgary AB T2P 3T5 P. 403.440.5199 E. ce...@mtroyal.ca "The difference between a successful person and others is not a lack of strength, not a lack of knowledge, but rather in a lack of will." Vincent T. Lombardi" "MRU IT Services or any legitimate organization will *NEVER* ask for your password. Never email or share your password with anyone.". ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
Re: [WIRELESS-LAN] Cisco AVC- anyone using it for real in prod?
Lee, We have been doing AVC for a few years now to drop P2P. We are doing it on a ASR1k though not the WLC. We used to use a SCE engine to do it which is where the AVC/NBAR2 stuff came from. We find we don't need to update protocol packs that often. Nick Ciesinski From: Chad Burnham mailto:cburn...@du.edu>> Reply-To: The EDUCAUSE Wireless Issues Constituent Group Listserv mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>> Date: Tuesday, August 12, 2014 10:40 AM To: "WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>" mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>> Subject: Re: [WIRELESS-LAN] Cisco AVC- anyone using it for real in prod? HI Lee, Getting it humming this month – on a pair of ASR 1006 Routers (sorry not in Wireless). We have Prime Infrastructure (2.1) managing it. We removed our Anagrans this summer to move to this. We just upgraded ASR this AM to support it. Will let you know in a month. I am scheduled to talk/present @ WestNet about our experiences in January. Signatures = Protocol Packs. You can update them without rebooting the router. CB From: The EDUCAUSE Wireless Issues Constituent Group Listserv [mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] On Behalf Of Lee H Badman Sent: Tuesday, August 12, 2014 9:28 AM To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU> Subject: [WIRELESS-LAN] Cisco AVC- anyone using it for real in prod? We are "using" Cisco's WLAN application visibility, but doing little with it beyond the occasional looking in. Elsewhere, we use Palo Alto boxes to shape traffic, but are interested in getting the controllers more involved in a prod role. Is anyone relying on AVC to drop traffic like P2P in prod? Is it working well for you? How often do you find signature updates available? Any other thoughts/comments on experiences, successes, or frustrations with using AVC for real- especially on large networks? Thanks- Lee Badman Lee H. Badman Network Architect/Wireless TME ITS, Syracuse University 315.443.3003 ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
