broadcast traffic

Unanswered Question
May 10th, 2007

This has been a kind of nagging question I've had for a while, why would netbios port 137 traffic from another subnet be trying to cross my ASA's inside interface. 10.4.2.0/24 -> router -> p2p T1 -> router 10.4.0.0/16 -> ASA -> Internet

the following gets periodically logged on my ASA

4 May 10 2007 11:45:52 106023 10.4.2.39 10.255.255.255 Deny udp src inside:10.4.2.39/137 dst inside:10.255.255.255/137 by access-group "inside_access_in" [0x0, 0x0]

I always thought layer 3 devices blocked this sort of broadbcast traffic??

thanks,

Bill

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Jon Marshall Thu, 05/10/2007 - 10:41

Hi Bill

10.255.255.255 is a directed broadcast. Have you turned these off under the router interfaces ie.

router(config)# int fa0

router(config-if)# no ip directed broacast

HTH

Jon

Actions

This Discussion