04-12-2007 05:39 AM - edited 03-03-2019 04:31 PM
Greets.
There is a way to allow a router to forward Layer 2 broadcast across a WAN?
For example, the feature "wake-on lan" used on some ethernet NIC, can be deployed also across a wan?
Thank you
Solved! Go to Solution.
04-12-2007 07:37 AM
For WOL the work over the WAN, you need to first configure this command on the router connected to the server sending the WOL magic packet:
ip forward-protocol
And on the specific interface connected to the WOL server:
ip helper-address
for instance the directed broadcast address would be 192.168.2.255 if the subnet address is 192.168.2.0/24.
You also need to configure the interface connected to subnet where the workstations to be awaken reside as follow:
ip directed-broadcast
note that the ACL is optional but it is recommended to configure it so that just wake on lan packet sourced from the specific server(s) are forwarded. This will make sure that you don't open the door to Smurf attacks, which is the reason "ip directed-broadcast" is disabled by default.
Hope this helps,
04-12-2007 06:00 AM
Hi
How is ur WAN connected.r u talking about a PtoP wan connection and if routers are used then the broadcast will not be forwarded.I guess u can forward the broadcast using ip helper-address.
Thanks
Mahmood
04-12-2007 07:37 AM
For WOL the work over the WAN, you need to first configure this command on the router connected to the server sending the WOL magic packet:
ip forward-protocol
And on the specific interface connected to the WOL server:
ip helper-address
for instance the directed broadcast address would be 192.168.2.255 if the subnet address is 192.168.2.0/24.
You also need to configure the interface connected to subnet where the workstations to be awaken reside as follow:
ip directed-broadcast
note that the ACL is optional but it is recommended to configure it so that just wake on lan packet sourced from the specific server(s) are forwarded. This will make sure that you don't open the door to Smurf attacks, which is the reason "ip directed-broadcast" is disabled by default.
Hope this helps,
04-12-2007 07:47 AM
By the way, certain WOL softwares can be configured to send the WOL magic packet to the directed broadcast address of the LAN to be awaken. In this case, you would not need to configure anything on the router connected to the server sending the WOL magic packet.
Hope this helps,
04-13-2007 01:26 AM
Well, the wan is a FR.
The subnet at the main office is 10.37.4.0/22 and at the branch office 10.37.8.0/22.
For what i read, then, it is enough to send the packet to the broadcast IP 10.37.11.255, eventually configuring the allow-protocol or the ip helper-address, i'm right?
A doubt: does the ip helper-address work only for DHCP or also other services?
Thank you
04-13-2007 04:30 AM
Carlo,
If your WOL sotware allows you to send the magic packet to 10.37.11.255 then you don't even need to configure an ip-helper address.
Just configuring "ip directed-broadcast" on the interface connected to subnet 10.37.8.0/22 would be sufficient.
To your second question, ip helper-address is used not only for DHCP but for any protocol configured using the "ip forward-protocol" command. By default, only the following protocols are forwarded to the ip helper address:
Trivial File Transfer Protocol (TFTP) (port 69)
?Domain Naming System (port 53)
?Time service (port 37)
?NetBIOS Name Server (port 137)
?NetBIOS Datagram Server (port 138)
?Boot Protocol (BOOTP) client and server packets (ports 67 and 68)
?TACACS service (port 49)
?IEN-116 Name Service (port 42)
For more information on "ip forward-protocol", please see the Cisco IOS Documentation.
http://www.cisco.com/univercd/cc/td/doc/product/software/ios124/124tcr/tiad_r/adressht.htm#wp1144779
Hope this helps,
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: