What is TA? Traffic Analysis (TA) is a central feature of Meraki products that allows us to classify packet flows and use that classification in a variety of features. All of these features rely heavily on accurate traffic classification. Traditional TA: 200+ IDs NBAR: 1500+ IDs
What is NBAR? Network-Based Application Recognition (NBAR) is an advanced application recognition engine developed by Cisco that utilizes several classification techniques and has the ability to easily update its classification rules. It supports 1,500+ applications and sub-classifications with less than 1% unknown and less than 1% unclassified encrypted traffic. Meraki platforms that support NBAR provide granular and enhanced capabilities in regard to client tracking and application enforcement.
Why is Meraki upgrading the traditional Traffic Analytics engine? Given the exponential growth of IoT, mobile, and desktop applications as shown below, the existing 200+ IDs are proving difficult to maintain. The future of traffic classification is beyond static port numbers and protocols. Hence, NBAR provides global signatures for the current applications (less than 1% unknown).