On Wed, Feb 13, 2002 at 09:50:16AM -0800, Jake Khuon wrote:
EB> Without control plane seperation (and it's not possible with Cisco, EB> Juniper, or most other routers out there), management services are EB> listening on the public network, and that makes this very scary, EB> regardless of filtering policies, etc.
Huh? Junipers have the fxp0 interface which can be used for management. You're just not supposed to route between the management fxp0 and your production interfaces.
As do Cisco GSR's.. on their e0 interface. Same difference. You can even enable or disable CEF on it :) -- ------------------------------------------------------------------------------- : Steven Noble / Network Janitor / Be free my soul and leave this world alone : : My views = My views != The views of any of my past or present employers : -------------------------------------------------------------------------------