Distributed Denial of Service (DDoS) support for IQ Agent installs a filter on HTTPS L4 ports to set a CPU queue (QoS 5) that separates IQ Agent traffic from other IP exceptions. This new ACL redirects TCP traffic with source port 443 (default HTTPS port) to CPU queue 5. The IQ Agent system ACL is installed or uninstalled along with the L3 Unicast Miss (L3UCMiss) filter.
ExtremeSwitching 5320, 5420, and 5520 series switches.
Outside of the supported platforms, you can manually install the ACL to redirect IQ Agent traffic to CPU queue 5 on smaller switches with 8 ACL slices (for example, X440-G2, X435, X620) by running the following command:
# configure access-list iqagent.pol any
iqagent.pol:
entry iqagent_cpu5 {
if {
protocol tcp;
source-port 443;
} then {
traffic-queue cpu_q_5;
}
}