Cisco Order of Operations

Existem 2 tabelas importantes que indicam a ordem das operações no IOS são a do NAT e QoS.

Operações no NAT:

Inside-to-Outside Outside-to-Inside
  • If IPSec then check input access list
  • decryption – for CET (Cisco Encryption Technology) or IPSec
  • check input access list
  • check input rate limits
  • input accounting
  • redirect to web cache
  • policy routing
  • routing
  • NAT inside to outside (local to global translation)
  • crypto (check map and mark for encryption)
  • check output access list
  • inspect (Context-based Access Control (CBAC))
  • TCP intercept
  • encryption
  • Queueing
  • If IPSec then check input access list
  • decryption – for CET or IPSec
  • check input access list
  • check input rate limits
  • input accounting
  • redirect to web cache
  • NAT outside to inside (global to local translation)
  • policy routing
  • routing
  • crypto (check map and mark for encryption)
  • check output access list
  • inspect CBAC
  • TCP intercept
  • encryption
  • Queueing

Operações no QoS:

Inbound Outbound
  1. QoS Policy Propagation through Border Gateway Protocol (BGP) (QPPB)
  2. Input common classification
  3. Input ACLs
  4. Input marking (class-based marking or Committed Access Rate (CAR))
  5. Input policing (through a class-based policer or CAR)
  6. IP Security (IPSec)
  7. Cisco Express Forwarding (CEF) or Fast Switching
  1. CEF or Fast Switching
  2. Output common classification
  3. Output ACLs
  4. Output marking
  5. Output policing (through a class-based policer or CAR)
  6. Queueing (Class-Based Weighted Fair Queueing (CBWFQ) and Low Latency Queueing (LLQ)), and Weighted Random Early Detection (WRED)

Leave a Reply

Your email address will not be published. Required fields are marked *