Existem 2 tabelas importantes que indicam a ordem das operações no IOS são a do NAT e QoS.
Operações no NAT:
| Inside-to-Outside |
Outside-to-Inside |
- If IPSec then check input access list
- decryption – for CET (Cisco Encryption Technology) or IPSec
- check input access list
- check input rate limits
- input accounting
- redirect to web cache
- policy routing
- routing
- NAT inside to outside (local to global translation)
- crypto (check map and mark for encryption)
- check output access list
- inspect (Context-based Access Control (CBAC))
- TCP intercept
- encryption
- Queueing
|
- If IPSec then check input access list
- decryption – for CET or IPSec
- check input access list
- check input rate limits
- input accounting
- redirect to web cache
- NAT outside to inside (global to local translation)
- policy routing
- routing
- crypto (check map and mark for encryption)
- check output access list
- inspect CBAC
- TCP intercept
- encryption
- Queueing
|
Operações no QoS:
| Inbound |
Outbound |
- QoS Policy Propagation through Border Gateway Protocol (BGP) (QPPB)
- Input common classification
- Input ACLs
- Input marking (class-based marking or Committed Access Rate (CAR))
- Input policing (through a class-based policer or CAR)
- IP Security (IPSec)
- Cisco Express Forwarding (CEF) or Fast Switching
|
- CEF or Fast Switching
- Output common classification
- Output ACLs
- Output marking
- Output policing (through a class-based policer or CAR)
- Queueing (Class-Based Weighted Fair Queueing (CBWFQ) and Low Latency Queueing (LLQ)), and Weighted Random Early Detection (WRED)
|
