> to bring this back into the Cisco realm, Cisco NBAR ( network based > application recognition ) I believe was intended to provide another > dimension to the QoS classification process. now it can also be used as a > filter against certain virus / macro virus attacks.
NBAR thus far does a poor job of what products like Radware and Fortigate do very well. Network-based virus screening implemented in ASIC is a very exciting development, in my opinion. Fortinet can do it fast enough on some of their boxes for the provider edge. NBAR is perhaps better than nothing, but it is neither sophisticated enough nor granular enough to do much. I really hope more providers start adopting these technologies. It will save us all allot of grief. Geoff Zinderdine CCIE #10410 Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=60288&t=60114 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
