NBAR and performance

From: Andrew Dorsett (zerocool@netpath.net)
Date: Thu Aug 09 2001 - 16:40:13 EDT

Next message: micky: "Re: NBAR and performance"
Previous message: Thomas Kernen: "Re: [nsp] Opening TAC P3 or P4"
Next in thread: micky: "Re: NBAR and performance"
Reply: micky: "Re: NBAR and performance"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Mail actions: [ respond to this message ] [ mail a new topic ]

Hey, I'm looking at the NBAR solution for stopping Code Red and actually
do traffic filtering. I know this is a performance hit, but exactly how
hard and what are the limits? Can it take up to a T3 of data, or
more? Amazing that this hasn't been used on the edge right before
customer machines to temporarly let the worm die off. I know everyone is
worried about performance, but what exactly is the packet delay?

Thanks,
Andrew
---
<zerocool@netpath.net>
http://www.andrewsworld.net/
ICQ: 2895251
Cisco Certified Network Associate
Development Assistant: Netpath/Stratonet, Inc.
(http://www.netpath.net/)
Email: dorsett@netpath.net

"Learn from the mistakes of others. You won't live long enough to make all of them yourself."

Next message: micky: "Re: NBAR and performance"
Previous message: Thomas Kernen: "Re: [nsp] Opening TAC P3 or P4"
Next in thread: micky: "Re: NBAR and performance"
Reply: micky: "Re: NBAR and performance"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Mail actions: [ respond to this message ] [ mail a new topic ]

This archive was generated by hypermail 2b29 : Sun Aug 04 2002 - 04:12:48 EDT