Re: [fw-wiz] Layer 2 firewalls ...
From: Dale W. Carder (dwcarder_at_doit.wisc.edu)
Date: 08/30/05
- Previous message: Joe Matusiewicz: "Re: [fw-wiz] firewall rule lifecycle management"
- In reply to: Andrew K. Adams: "[fw-wiz] Layer 2 firewalls ..."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: "Andrew K. Adams" <akadams@psc.edu> Date: Tue, 30 Aug 2005 14:29:14 -0500
I doubt that there's much gained from the marketing material,
but some pluses for layer-2 firewalls include not having to
renumber end stations during integration and the ability to
pass through non-ipv4 or non-unicast traffic easily.
The downsides are that you better know your layer 2. Not everyone
thinks about layer 2 because it usually just "works". You need
to be careful about vlans, stp roots, bpdu's and other fun stuff
when layer2 firewalls bridge lans.
Dale
----------------------------------
Dale W. Carder - Network Engineer
University of Wisconsin at Madison
http://net.doit.wisc.edu/~dwcarder
_______________________________________________
firewall-wizards mailing list
firewall-wizards@honor.icsalabs.com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
- Previous message: Joe Matusiewicz: "Re: [fw-wiz] firewall rule lifecycle management"
- In reply to: Andrew K. Adams: "[fw-wiz] Layer 2 firewalls ..."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
