Peering VLANs and MAC addresses
Mike Hughes
mike at smashing.net
Thu Nov 10 07:17:23 UTC 2005
On Thu, 10 Nov 2005, Alexander Koch wrote:
> I know the changes the LINX has implemented, and I am
> curious... and this might affect other folk as well.
>
> What is better - the LINX approach (blocking the port,
> trying again in x minutes when too many MACs were seen)
> or the Equinix approach (we hardcode your MAC per VLAN/
> per port if untagged, all else we just drop)?
Much of a muchness really.
With the former approach, it's easier for the participants to effect
changes to their IX equipment without having to ask the IX operator to
clear the locking/reconfigure the static MAC.
The protection against badness is pretty equal, whatever you do.
Cheers,
Mike
More information about the NANOG
mailing list