Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3287
Views
0
Helpful
2
Replies

broadcast frames (gratuitous ARP) filtered by WLC ?

sagou.brahim
Level 1
Level 1

‎08-10-2009 11:15 PM - edited ‎07-03-2021 05:55 PM

Hi all,

I am making some tests with a wireless architecture based on WLC4402. (I am rather new to wireless world...)

There is a gateway which sends gratuitous ARPs from the wired part of the network, and these broadcasts needs to reach wireless clients. (That gateway is of course put in the same vlan as the wireless clients).

These broadcast frames never reach wireless clients, while they reach wired clients put in the same vlan.

With some sniffing, I can see that the gratuitous ARPs are correctly sent from the LAN to the WLC, but it seems that they never come back to reach the wireless clients.

I enabled the option "Broadcast Forwarding" but without result.

The DHCP proxy feature is disabled.

I tried versions 4.2, 5.2 and 6.0.

So the ARP tables of the wireless clients are correctly updated only when I flush them or when I wait for the ARP entries to time out.

Do someone have any idea about what could filter the broadcasts? I am suspecting a security issue but I thought that the WLAN is supposed to be totally bridged with wired part of the LAN!!

Thanks in advance

Regards,

Brahim

Labels:
0 Helpful
2 Replies 2

zhenningx
Level 4
Level 4

‎08-11-2009 06:33 PM

WLC does suppress the broadcast frames. Please check this link:

http://www.cisco.com/en/US/docs/solutions/Enterprise/Mobility/emob41dg/ch2_Arch.html#wp1028269

To me, it is a nice feature. Some malwares may act as rouge DHCP server in the LAN and we don't need to worry about it in wireless LAN.

0 Helpful

sagou.brahim
Level 1
Level 1
In response to zhenningx

‎08-12-2009 02:03 PM

Hi,

Ok thanks for the link. I noticed two main points :

- The WLC forwards only IP Ethertype frames --> so ARP is not included ?

- WLC (by default) will not forward broadcasts or multicasts toward the wireless users.

Ok for these elements. But what happens during my tests is that the request ARP frames (which are broadcasted from the wired network) correctly reaches wireless clients (they are converted in unicast frames, with destination MAC address being wireless client address).

But gratuitous ARPs (which are also broadcasted from the wired network) seems to not receive the same treatment as they are not converted in unicast frames and do not reach the wireless user.

So I am wondering if the WLC is designed to forward only certain types of broadcasts, and if there is a documentation explaining clearly that behaviour.

Thanks very much,

Regards

brahim

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card