Thursday, February 14, 2008

IOS Egress and Ingress Order of Operations

 

Egress Features
1.WCCP Redirect
2. NAT Inside-to-Outside
3.Network Based Application Recognition (NBAR)
4. BGP Policy Accounting
5.Output QoS Classification
6. Output ACL check
7.Output Flexible Packet Matching (FPM)
8. DoS Tracker
9.Output Stateful Packet Inspection (IOS FW)
10. TCP Intercept
11.Output QoS Marking
12. Output Policing (CAR)
13.Output MAC/Precedence Accounting
14. IPsec Encryption
15.Egress NetFlow
16. Egress Flexible NetFlow
17.Egress RITE
18. Output Queuing (CBWFQ, LLQ, WRED)

IngressFeatures
1. IP Traffic Export (RITE)
2.QoS Policy Propagation through BGP (QPPB)
3. Ingress Flexible NetFlow
4.Network Based Application Recognition (NBAR)
5. Input QoS Classification
6.Ingress NetFlow
7. IOS IPS Inspection
8.Input Stateful Packet Inspection (IOS FW)
9. Input ACL
10.Input Flexible Packet Matching (FPM)
11. IPsec Decryption (if encrypted)
12.Unicast RPF check
13. Input QoS Marking
14.Input Policing (CAR)
15. Input MAC/Precedence Accounting
16.NAT Outside-to-Inside
17. Policy Routing

ShareThis