Cisco IOS Order of Operation Here we found information on the order of operation of the different features on an interface and the packet traverses the IOS software from Cisco.com, which may not suitable for every case table. Anyway, check it whether is suitable or not. Inside-to-Outside Outside-to-Inside • If IPSec then check input access list • decryption – for CET (Cisco Encryption Technology) or IPSec • check input access list • check input rate limits • input accounting • policy routing • routing • redirect to web cache • NAT inside to outside (local to global translation) • crypto (check map and mark for encryption) • check output access list • inspect (Context-based Access Control (CBAC)) • TCP intercept • encryption • Queueing • If IPSec then check input access list • decryption – for CET or IPSec • check input access list • check input rate limits • input accounting • NAT outside to inside (global to local translation) • policy routing • routing • redirect to web cache • crypto (check map and mark for encryption) • check output access list • inspect CBAC • TCP intercept • encryption • Queueing All right, the above we delivered is the “official version”. But there are others that were provided by some professional network engineers are pretty complete. See the following for a larger diagram.
http://blog.router-switch.com/