08-27-2007 01:28 PM - edited 03-05-2019 06:07 PM
We are running c6513-sup720. IOS version: s72033-advipservicesk9_wan-vz.122-18.SXF9.
If we do a snmp get to the router from a host, the router is doing a broadcast (255.255.255.255) with the reply instead of just replying to the host.
Any ideas ?
08-28-2007 02:29 PM
Hi. I'm suspecting that the address doing the polling is a network or broadcast address (typically used for discovery-type functions). Do you notice the same behavior with Ping?
Here's more info:
the IP/ping behaviour as follows:
As defined in RFC919, a Cisco device will answer to broadcast requests.
RFC919 leaves the option open for a vendor to also recognize the network address as a broadcast address and Cisco implemented it in this way.
Specific to SNMP:
The Cisco SNMP part of IOS is programmed to respond to broadcasts address (which can be used for discovery).
If you do not want this behaviour, you can use the "no ip directed-broadcast" option on an interface to disable the interface from
routing broadcast packages. This will only work if routing is done and not if the address is local. You could implement this feature on your first router/switch.
You can also implement an ACL on broadcasts addresses causing the router/switch to drop the broadcast packages.
HTH,
-J
08-29-2007 11:22 AM
Hi,
Thanks for the reply. We only see this behaviour during the snmp operation. Right now we have an ACL to block this but that's not an ideal solution.
It almost looks like a image bug but not sure.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide