[c-nsp] Modern BGP peering border router and DDoS attack defense
recommendations?
sthaug at nethelp.no
sthaug at nethelp.no
Sat Jun 11 09:44:14 EDT 2005
> > The 3550 can do L4 ACL's (i.e. not only IP addresses, but also
> > protocol and port numbers)
>
> That doesn't answer my question. Can it apply ACLs to *switched* traffic
> (as the 2950) or only to *routed* traffic (as a "normal" IOS router)?
Both.
The fact the L3 ACLs can be applied to switched traffic is not obvious,
but it works. Used it quite a bit at my previous employer.
Steinar Haug, Nethelp consulting, sthaug at nethelp.no
More information about the cisco-nsp
mailing list