[c-nsp] IPv4 fragmented packets on SUP720-3BXL

[Rubens Kuhl]

>>There is nothing special about *forwarding* fragmented packets - unless
>>you have an ACL or anything else that wants to look at Layer 4 info.
>
> That would be Netflow or some QoS policy attached to the interface, for
> instance?
> I guess the router should reassembly the fragmented packets before
> applying any policing on the traffic arriving on the interface...
> Am I right?

It assumes that any fragment matches clauses with L4 info, because it
lacks stateful context from the first fragment to eval it.


Rubens