Vyatta as a BRAS

Mailman List Mirror (Read Only)
1

Routing.

We can route that. If it were targeting the box itself it would depend if the attack were getting through.

Certainly iptables can't handle something like that but pf does well with high PPS rates. If it were all 'DROP' traffic then likely higher. If it were hitting the box directly and getting past the firewall, yes it would be substantially lower.

We were talking about routing though.

2

I was talking about packeting the boxes directly, apologies for being unclear - that's what I meant when I said that the era of software-based edge boxes is long past.