Firewall Wizards mailing list archives

Re: Q on external router

From: "Rodney van den Oever" <roever () nse simac nl>
Date: Fri, 24 Apr 1998 12:20:23 +0200

Thus, in my opinion (but have a look at my email address to see
that I could be biased ;-) ), the switch can increase the DMZ security
if:
- it uses static mapping
- as you put part of your security in the switch configuration, you
  must obviously secure your switch config (OTP, ACL, management via
  console only, ...)


What about problems that fault the switch itself? We have seen bugs that
crash 3Com switches due to poor IP stack implementation; Cisco is aware of


If I may barge in on this, as far as I know a layer three switch only has an
IP-stack for management purposes. The actual switching is done in hardware.

--
Rodney van den Oever / 066 166 - 0318 623047 / PGP Key ID 0x0A6CCE53
'Always go to other people's funerals, otherwise they won't come to
yours.' - Yogi Berra

Current thread:

Re: Q on external router, (continued)
- - - Re: Q on external router tqbf (Apr 25)
    - Re: Q on external router Adam Shostack (Apr 26)
    - Re: switched DMZ (was Q on external router) Roel JT Jonkman (Apr 23)
- Re: Q on external router Bennett Todd (Apr 22)
- Re: Q on external router Adam Shostack (Apr 22)
- Re: Q on external router Randy Witlicki (Apr 23)
- Re: Q on external router Eric Vyncke (Apr 23)
- Re: Q on external router Vinci Chou (Apr 23)
  - Re: Q on external router Bennett Todd (Apr 23)
- Re: Q on external router Peter Jeremy (Apr 23)
- Re: Q on external router Rodney van den Oever (Apr 24)
  - Re: Q on external router tqbf (Apr 24)
- Re: Re: Q on external router Wei Li (Apr 24)
- Re: Q on external router Rodney van den Oever (Apr 24)