> -----Original Message-----
> From: Buddy Venne [mailto:[EMAIL PROTECTED]]
> Sent: Thursday, 21 December 2000 7:00
> To: [EMAIL PROTECTED]
> Subject: RE: Recommended blocking for Internet-router
[...]
> On a separate question:
> Any ideas why cisco would recommend "no ip route cache" on a perimeter
> router like this?
Either because someone is really paranoid and doesn't trust the security of
fast switching versus process switching (unlikely) or because in some IOS
versions in some cases fast switching is a little buggy.
Was this a recommendation made during troubleshooting? I find it's one of
the "This shouldn't be the problem, but we'll give it a go" techniques
employed by troubleshooters at the TAC (and others).
Any of you Cisco emplyees wanna comment?
> Buddy Venne, MCSE, CCNP Security Specialist
> WAN/LAN Specialist
> Onyx Acceptance Corp.
> (949) 465-3775
Cheers,
--
Ben Nagy
Marconi Services
Network Integration Specialist
Mb: +61 414 411 520 PGP Key ID: 0x1A86E304
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
