Hi all. I have several L2 switches with a single connection to both core switches. The core switches are L3 and running HSRP for all vlans.
In our environment clients have Office 2010 installed. Because of this an executable named Groove.exe, SharePoint Workspace is running on clients and broadcasting with source udp port 57733 to destination 255.255.255.255 port 1211.
If I'm correct routers do not forward broadcasts. So, is it better to let the router perform as its supposed, or create an ACL that drops this specific traffic?
I know the ideal solution would be to have Groove.exe disabled via group policy, but I'd like to try some things in the meantime.
Correct, routers do not forward broadcast. There are other applications that use broadcast. For example: when you power up host, it will send out a broadcast to get an IP address from the DHCP, and the router intercept the broadcast if the DHCP is located in a different subnet. So, if broadcast from Groove.exe is not harming your network in any way then you don't need to do anything. And as you said, let the router do its job.
We are pleased to announce availability of Beta software for 16.6.3. 16.6.3 will be the second rebuild on the 16.6 release train targeted towards Catalyst 9500/9400/9300/3850/3650 switching platforms. We are looking for early feedback from custome...