[c-nsp] Cisco Security Advisory: TCP State Manipulation Denial ofService Vulnerabilities in Multiple Cisco Products

[Kevin Graham]

> I think this is really the thing that annoys me most - they know how
> to do it right, and conciously decided to go the other way.

Yep. The single biggest reason I'm not advocating Nexus 5000/7000's today
is the lack of NX-OS on the Sup720. If there was roadmap for it to also
include existing DSBU hardware in the 'FEX' role, I would be implementing
fervently, ignoring every missing feature that wasn't absolutely critical
to passing packets.

> Then they split the 6500 and 7600 BUs.  Down the drain goes the happy

> customer base.

All of which could be forgiven 20 times over had the plan been to have
7600/XE with EARL taking the place of QFP, allowing the 7600 to be the
brutish dumb big brother to the ASR1k.

Sorry, the thought of being able to plan forward-looking purchases and
technology migrations this beautifully makes me tingly... _These_ 
would be the moves of a dominant market leader with a rich innovative
history. Thankfully there's a weekend ahead before it has to crash
back down again.