05-10-2007 08:00 AM - edited 03-11-2019 03:12 AM
This has been a kind of nagging question I've had for a while, why would netbios port 137 traffic from another subnet be trying to cross my ASA's inside interface. 10.4.2.0/24 -> router -> p2p T1 -> router 10.4.0.0/16 -> ASA -> Internet
the following gets periodically logged on my ASA
4 May 10 2007 11:45:52 106023 10.4.2.39 10.255.255.255 Deny udp src inside:10.4.2.39/137 dst inside:10.255.255.255/137 by access-group "inside_access_in" [0x0, 0x0]
I always thought layer 3 devices blocked this sort of broadbcast traffic??
thanks,
Bill
05-10-2007 10:41 AM
Hi Bill
10.255.255.255 is a directed broadcast. Have you turned these off under the router interfaces ie.
router(config)# int fa0
router(config-if)# no ip directed broacast
HTH
Jon
05-10-2007 11:05 AM
thank you Jon.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: