Chapter 16. Wire Speed Access Control Lists
This book’s part focuses on how to use Ethernet switches to enhance a network’s overall security. Access control lists (ACL) provide a simple way to enforce a security policy at the core of a network where the bandwidth can easily reach tens of gigabits per second (Gbps). This chapter explains why enforcing ACLs in the network’s core are important and the different flavors of ACL featured in switches (router ACL, VLAN ACL [VACL], and port-based ACL). The chapter also dives into hardware architectures that make wire speed processing of ACLs possible.
Previous chapters detailed the multiple vulnerabilities (and the mitigation techniques) that can exist in a network based on Ethernet switches. This chapter ...
Get LAN Switch Security: What Hackers Know About Your Switches now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
