We are running Cisco VPN 3030 on version 4.7.2.J. For some reason we see a lot of UDP datagrams to the internal broadcast address on port 137 and 138. This seems to be NetBIOS name and datagram service. We do not have any WINS servers and we want to block these broadcasts from flooding the local subnet (where no servers are available). We have defined a filter that drop all traffic to the internal broadcast address and applied it to the group where the users come in, but the packets still passing into the internal network.
Does anyone have any clues to how to solve this issue?