From: Miller, Nathan - Perot (NHMiller@xxxxxxx)
Date: Fri Oct 12 2001 - 14:40:49 GMT-3
Checkpoint will tell you that their product sits between layer 2 and layer
3. It reads packets after they hit their layer 2 destination but before
they are passed up to the layer 3 component of the network stack. IF
someone is suggesting that there is a firewall product that filters based on
layer 2 information I guess that I do not see much use for that anywhere
other than sitting on a LAN segment doing packet (frame) filtering by MAC
address. If this is the case I think that this can be done by ACL on a
router provided the router can keep up.
Nathan
-----Original Message-----
From: louie kouncar [mailto:lkouncar@UU.NET]
Sent: Friday, October 12, 2001 10:02 AM
To: ccielab@groupstudy.com
Subject: A firewall Question
All,
I have been working with Check point firewall for a while, and just today I
heard a guy say that there is a kind of firewall that is a layer 2 device,
anyone can comment on that please....
Thank you
Louie J. Kouncar CCIE #7994
This archive was generated by hypermail 2.1.4 : Thu Jun 20 2002 - 22:33:18 GMT-3