as an example of why you might decide to go out on the PBR limb...
in a company's network, you may have:
a network edge (foundry) with servers with lots of data on them
a dmz network edge (foundry) with servers with lots of data on them
for most things, this is fine. data is routed through the whole kit and
kaboodle.
the core firewall, though, is not capable of 10Gbps (or higher),
so for *some* traffic - massive file transfers, etc - we want to skip the
firewall layer. for this, we'd use PBR on the core layer and on the dmz
distribution layer, using a (say) 20Gbps link between the two (configured
with a /30 - the far side is the next-hop.) nothing but the selected
special traffic is allowed over this 20Gbps link; everything else goes
through the firewalls.
for musing.
n
as an example of why you might decide to go out on the PBR limb...=
in a company's network, you may have:
| Article list | Name | Date |
| Click Here | seph |
||
| Click Here | Nick Morrison |
||
| Click Here | seph |
||
| Click Here | Logan Rawlins |
||
| Click Here | Nick Morrison |
||
| Click Here | Randy McAnally |
||
| Click Here | seph |
||
| Currently Viewing : This Article | Nick Morrison | 2010-02-05 22:27:19 |