network segmentation without using vlans
James Knott
james.knott-bJEeYj9oJeDQT0dZR+AlfA at public.gmane.org
Wed Feb 20 00:03:48 UTC 2008
Kristian Erik Hermansen wrote:
> On Feb 19, 2008 1:25 PM, James Knott <james.knott-bJEeYj9oJeDQT0dZR+AlfA at public.gmane.org> wrote:
>
>> Given the hand shaking that goes on between the switch and a device
>> plugged into it, I doubt it as the device couldn't connect to the switch.
>>
>
> http://en.wikipedia.org/wiki/Unidirectional_network
>
And from that:
"However protocols normally used over network connections, such as
TCP/IP <http://en.wikipedia.org/wiki/TCP/IP>, that require
acknowledgments <http://en.wikipedia.org/wiki/Acknowledgments> to be
sent back, cannot be used over a unidirectional network. This prevents a
large number of programs from being able to function normally over such
a network. Importantly the Unidirectional Network does not prevent
viruses or other malicious programs from being transferred on to the
high network and compromising the integrity and availability of the
data. Furthermore since the low side cannot receive data from the high
side, it can never reliably establish that data has been successfully
transferred^[1]
<http://en.wikipedia.org/wiki/Unidirectional_network#_note-Slay_1> ."
As I mentioned, there is hand shaking that goes on, when a device is
plugged into a switch. This is called the link integrity test. Also,
most equipment now performs auto-negotiation, to determine speed &
duplex etc. How will either of these work, if one device can't hear the
other?
--
Use OpenOffice.org <http://www.openoffice.org>
--
The Toronto Linux Users Group. Meetings: http://gtalug.org/
TLUG requests: Linux topics, No HTML, wrap text below 80 columns
How to UNSUBSCRIBE: http://gtalug.org/wiki/Mailing_lists
More information about the Legacy
mailing list