[rbak-nsp] PPPoE tunnel and Firewall
Yuri Schefer
shefys at gmail.com
Fri Jul 25 00:26:35 EDT 2008
Hi!
Maybe, you should use ACL's on the subscriber circuits or use firewall
between BRAS and border router? Also, you can connect subscribers with
firewall service to another context with content filtering, etc...
On Fri, Jul 25, 2008 at 12:32 AM, Masood Ahmad Shah
<masood at nexlinx.net.pk> wrote:
> I'm really getting confused while adding firewall for DSL subscribers. I
> want to protect my PPPoE subscriber from malicious traffic. Adding a
> firewall between DSLAMs and BRAS is kinda confused for me. The final
> topology is going to be like
>
>
>
>
>
> CPEß------>DSLAMß-------àFirewallß------BRAS------->Ineternet
>
>
>
> From CPE to BRAS is PPPoE tunnel. The question " Can firewall protect PPPoE
> customers from malicious traffic while sitting in transparent mode in front
> of BRAS". I wonder , firewall will skip the PPPoE tunnels traffic.
>
>
>
> If yes, than how do you guys protect BRAS internal traffic from one
> subscriber to another.
>
>
>
>
>
>
>
> _______________________________________________
> redback-nsp mailing list
> redback-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/redback-nsp
>
>
--
WBR, Yuri
More information about the redback-nsp
mailing list