[c-nsp] Nexus V1000 - Feedback?
Roland Dobbins
rdobbins at arbor.net
Tue Jun 9 07:54:32 EDT 2009
On Jun 9, 2009, at 6:12 PM, Sam Stickland wrote:
> only offers non-stateful ACLs and no inspection so I'm not sure
> it's really that useful?
Stateful inspection in front of front-end servers is generally not
only useless, but counterproductive, as it greatly increases
susceptibility to DDoS. Especially with a software-based switch/
router/what-have-you.
-----------------------------------------------------------------------
Roland Dobbins <rdobbins at arbor.net> // <http://www.arbornetworks.com>
Unfortunately, inefficiency scales really well.
-- Kevin Lawton
More information about the cisco-nsp
mailing list