mailing list archives
Re: Layer 2 firewalls ...
From: "Dale W. Carder" <dwcarder () doit wisc edu>
Date: Tue, 30 Aug 2005 14:29:14 -0500
I doubt that there's much gained from the marketing material,
but some pluses for layer-2 firewalls include not having to
renumber end stations during integration and the ability to
pass through non-ipv4 or non-unicast traffic easily.
The downsides are that you better know your layer 2. Not everyone
thinks about layer 2 because it usually just "works". You need
to be careful about vlans, stp roots, bpdu's and other fun stuff
when layer2 firewalls bridge lans.
Dale W. Carder - Network Engineer
University of Wisconsin at Madison
firewall-wizards mailing list
firewall-wizards () honor icsalabs com