"Elmar K. Bins" <[email protected]> writes: > This forces everyone with out-of-band management and monitoring > equipment to sacrifice one of the "power ports" for management > and again run ACL based security there. Just like in the olden > days...
It allows the rest of us to get rid of the terminal servers and the managed power bars. Assuming you can power cycle a failed router through the management ports, of course. The port should be sufficiently isolated that there is no risk of an intrusion providing the attacker access to the management network, even if the attacker can run arbitrary code on the router. Again, just like a serial port. It's about time the router vendors give us the remote management capabilities that server vendors have provided for years or decades. /Benny _______________________________________________ cisco-nsp mailing list [email protected] https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
