Ingress Queues

The ingress packets destined for the host are placed in one of four queues:

  • untrusted
  • trusted
  • ARP request
  • ARP reply

Events such as latching and RFC2833 translation are placed in a fifth queue. The event queue has the highest priority and is emptied for each iteration, which ensures control traffic is not blocked under DoS attacks.

Net-Net ESD, Server Edition supports a maximum of 8000 trusted endpoints. Currently, when the trusted queue is full, the next endpoint coming in enters the untrusted queue. This is reported in the output of the show acl trusted as Trusted Entries not allocated due to ACL constraints:.

Previous
Previous 		Next
Next
Go To Table Of Contents
Contents