Firewall Wizards mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Layer 2 (stealth) firewalls - PBR?

From: "Paul D. Robertson" <paul () compuwar net>
Date: Thu, 3 Apr 2008 23:28:44 -0500 (EST)
On Thu, 3 Apr 2008, Darden, Patrick S. wrote:


Layer 2 PBR would, of necessity, have to change next hop address (which
is destination address) and the next hop would have to change it back to
the original.  And addresses in layer 2 are MACs (for ethernet that is).


What about using it to shave off broadcast and multicast 
traffic and perhaps IPv6 NDP stuff too?  For that you might find it 
useful if bridging between an external and internal net through a 
multi-homed PBR box.

Paul
-----------------------------------------------------------------------------
Paul D. Robertson      "My statements in this message are personal opinions
paul () compuwar net       which may have no basis whatsoever in fact."
             http://www.fluiditgroup.com/blog/pdr/
           Art: http://PaulDRobertson.imagekind.com/

_______________________________________________
firewall-wizards mailing list
firewall-wizards () listserv icsalabs com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
Previous By Date Next
Previous By Thread Next

Current thread: