On Wed, 19 Jun 2024 at 20:35, heasley wrote:
> And enemy of security is lack of effort? Current BMCs would be
> a step backward, imiho. I wish they were better; a lot of
> potential..
What is the benchmark? Is benchmark NOS fate-sharing control-plane
ethernet? Or RS232? How do they outperform
Wed, Jun 19, 2024 at 08:58:01AM +0300, Saku Ytti:
> To me none of the above matters. I don't care how insecure the BMC is.
> I just want a true OOB port that works when my router does not work. I
> want an OOB port that won't break my router, when my OOB LAN has a
> broadcast storm or some other
On Tue, 18 Jun 2024 at 21:23, heasley wrote:
> Yes, do that, please, but that does not really address the security
> problems. BMCs typically are not updated by their owners, s/w updates
> for them are rarely offered by the vendor, usually have limited filtering
> & security capabilities, and
Tue, Jun 18, 2024 at 07:20:12PM +0300, Saku Ytti via juniper-nsp:
> If you must use MGMT ETH, keep asking your vendors for true lights out
> ethernet, with its own CPU, DRAM and storage.
Yes, do that, please, but that does not really address the security
problems. BMCs typically are not updated
Can always count on you. Thanks.
On Tue, Jun 18, 2024 at 12:20 PM Saku Ytti wrote:
> On Tue, 18 Jun 2024 at 18:56, Jason Iannone via juniper-nsp
> wrote:
>
> > I suppose the root question is do I have to apply a management filter on
> my
> > transit interfaces for in-band management traffic?
On Tue, 18 Jun 2024 at 18:56, Jason Iannone via juniper-nsp
wrote:
> I suppose the root question is do I have to apply a management filter on my
> transit interfaces for in-band management traffic? Does ACX have a new (not
> fxp1) relationship between the RE and the external re0:mgmt-0/em0/fxp0
Hi all,
I'm working on an ACX multiservice PE test plan and can't quite parse the
difference between network control loopback filter for RE and the
management filters. The EVO Overview says, "firewall filters applied to the
loopback interface apply only to network control traffic. You must
7 matches
Mail list logo
