[c-nsp] Cisco Security Advisory: TCP State Manipulation Denial ofService Vulnerabilities in Multiple Cisco Products

Kevin Graham kgraham at industrial-marshmallow.com
Mon Sep 14 16:07:34 EDT 2009



> > that is not feasible, completely abandon IOS and provide XE or NX-OS

> > on *all* platforms)
> 
> NX-OS on all platforms? nothanks - some of us want functionality ;-)

No, that's exactly the problem. The balkanization of the OS platforms
only amplifies this; "non-core" functionality such as IOS's incredibly
rich SNMP support is simply infeasible without the combined support of
a broad base of platforms.

I would eagerly and enthusiastically embrace NX-OS if there was an
interest in consolidating IOS/XR/XE in that direction. 

XE is the most promising migration path, IMHO, as they've embraced
modularity and a proprietary forwarding plane, while still providing
commonality with the control plane (I believe it is still that team's
intent to regularly re-sync with 12.2S for management features).



More information about the cisco-nsp mailing list