Re: [fw-wiz] Tranparent bridge
From: Paul Robertson (proberts_at_patriot.net)
Date: 09/25/03
- Previous message: Paul Robertson: "Re: [fw-wiz] Tranparent bridge"
- In reply to: Paul Robertson: "Re: [fw-wiz] Tranparent bridge"
- Next in thread: Martin Peikert: "Re: [fw-wiz] Tranparent bridge"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: Tony Rall <trall@almaden.ibm.com> Date: Thu, 25 Sep 2003 13:07:01 -0400 (EDT)
On Thu, 25 Sep 2003, Paul Robertson wrote:
> A non-transparent bridge will modify the MAC address of the
> packets as it bridges them between networks, a transparent bridge will
> forward all the layer 2 traffic unaltered. The right combination of proxy
> arp and forwarding might technically make a non-transparent bridge (if
> you did all the broadcast/multicast stuff too.) The main advantage would
> be in having smaller ARP tables at each node.
Just to be complete, if you're not doing proxy ARP, the advantage would be
in figuring out if a packet came through the bridge. If a segment had
multiple bridges in, it would help figure out where a packet came from
when troubleshooting.
Paul
-----------------------------------------------------------------------------
Paul D. Robertson "My statements in this message are personal opinions
proberts@patriot.net which may have no basis whatsoever in fact."
probertson@trusecure.com Director of Risk Assessment TruSecure Corporation
_______________________________________________
firewall-wizards mailing list
firewall-wizards@honor.icsalabs.com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
- Previous message: Paul Robertson: "Re: [fw-wiz] Tranparent bridge"
- In reply to: Paul Robertson: "Re: [fw-wiz] Tranparent bridge"
- Next in thread: Martin Peikert: "Re: [fw-wiz] Tranparent bridge"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
