Brad Grant
Executive Director for Campus Technology Systems
Savannah - Atlanta - Lacoste - Hong Kong
Savannah College of Art and Design
Date: Sat, 06 Feb 2010 12:00:08
http://puck.nether.net/mailman/listinfo/foundry-nsp
or, via email, send a message with subject or body 'help' to
You can reach the person managing the list at
When replying, please edit your Subject line so it is more specific
than "Re: Contents of foundry-nsp digest..."
Today's Topics:
1. Re: Policy based routing? (Nick Morrison)
Message: 1
Date: Fri, 5 Feb 2010 22:27:19 +0000
Message-ID:
as an example of why you might decide to go out on the PBR limb...
in a company's network, you may have:
a network edge (foundry) with servers with lots of data on them
a dmz network edge (foundry) with servers with lots of data on them
for most things, this is fine. data is routed through the whole kit and
kaboodle.
the core firewall, though, is not capable of 10Gbps (or higher),
so for *some* traffic - massive file transfers, etc - we want to skip the
firewall layer. for this, we'd use PBR on the core layer and on the dmz
distribution layer, using a (say) 20Gbps link between the two (configured
with a /30 - the far side is the next-hop.) nothing but the selected
special traffic is allowed over this 20Gbps link; everything else goes
through the firewalls.
for musing.
n
An HTML attachment was scrubbed...
URL:
End of foundry-nsp Digest, Vol 85, Issue 5
******************************************
| Article list | Name | Date |
| Click Here | Brad Grant |
||
| Click Here | Brad Grant |
||
| Currently Viewing : This Article | Brad Grant | 2010-02-06 18:18:16 |