On Feb 25, 2010, at 3:42 PM, Philip D'Ath wrote:
I don't think it is common, but I have seen it done where the cost of receiving traffic for the customer is very high, such as mobile barriers, satellite providers, some less well developed countries, etc.
The place do to this is at the edges via routing policies and stateless ACLs, not in firewalls.
And, no, the largest enterprise firewalls make all these marketing claims about the numbers they can handle, but the reality is quite different - having spent the better part of a decade working for the largest vendor of firewalls in the world, I can assure you of that.
;>
Again, you may wish to read the relevant presos and NANOG threads, all this has already been covered in copious details.
-----------------------------------------------------------------------
Roland Dobbins