[c-nsp] list wisdom please, Cisco switches
Mark Tinka
mark.tinka at seacom.mu
Fri Jun 7 13:21:52 EDT 2013
On Tuesday, January 15, 2013 05:58:12 PM Nick Hilliard
wrote:
> I don't get why people shouldn't be able to ping each
> other / etc. Isn't this traffic functionally equivalent
> to any other Internet traffic? What's different about
> it?
GPON implementations standardize this already, i.e., users
are unable to directly communicate with one another via
Layer 2.
They can communicate with one another via the upstream Layer
3 aggregation device (which becomes IP communications rather
than Layer 2 communications), at which point operators can
institute various security mechanisms to protect both their
customers and their network.
If you're interested, TR-156 from the Broadband Forum speaks
to some pretty cool security features required in GPON
implementations that the Ethernet switching world could
learn from for these kinds of deployment scenarios.
Mark.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: This is a digitally signed message part.
URL: <https://puck.nether.net/pipermail/cisco-nsp/attachments/20130607/731bb510/attachment.sig>
More information about the cisco-nsp
mailing list