I come form the days when a switch was a switch and routers were glad of it - to miss quote. So what's the difference?
We want to connect 2 subnets with some access control between them. I presume that I could use either a L3 switch or a router with ACLs to manage this. I also presume that Stateful Packet inspection in only on a router using CBAC.
Am I correct? Any guidance/insight warmly welcomed.
Jon, Thanks your reply which is very helpful, I (also) have done a lttle more digging on this and as far as I can tell CBAC is only available on Routers with the Firewall FS, whereas Switches support 'reflexive' ACL's, so for what I want to achieve this is the key differentiator. Do you think I am correct in this?
[toc:faq]The ProblemOn traditional switches whenever we have a trunk
interface we use the VLAN tag to demultiplex the VLANs. The switch needs
to determine which MAC Address table to look in for a forwarding
decision. To do this we require the switch to do...
[toc:faq]Introduction:Netdr is a tool available on a RSP720, Sup720 or
Sup32 that allows one to capture packets on the RP or SP inband. The
netdr command can be used to capture both Tx and Rx packets in the
software switching path. This is not a substitut...
IntroductionOSPF, being a link-state protocol, allows for every router
in the network to know of every link and OSPF speaker in the entire
network. From this picture each router independently runs the Shortest
Path First (SPF) algorithm to determine the b...