Re: Directed Broadcasts

From: JR (contactjrnow@hotmail.com)
Date: 12/19/02 

From: "JR" <contactjrnow@hotmail.com>
Date: Thu, 19 Dec 2002 15:32:44 -0500

I'm kind of suprised that there has been no mention of M$ ISA Server. I am
personally not a M$ fan, but it is fairly tight.
Price should not be an issue, as ISA is no where near as expensive as W2K
Adv Server, so it normally can be acquired from the same locations :)
JR

"Mark Moore" <lists@circleox.com> wrote in message
news:c728b397.0212190907.5c246104@posting.google.com...
> WINs will not solve my problem. I need my VPLS to get UDP broadcasts.
> I understand the issues behind disabling directed broadcasts on
> routers, but what I do not understand is why a VPLS falls into this
> category. Once connected, it should be considered as part of the
> trusted network and therefore recieve broadcast traffic (IMO).
>
> ~mark
>
>
> "shope" <stephen_hope@ntlworld.xx.com> wrote in message
news:<zW4M9.3544$V81.90020@newsfep1-gui.server.ntli.net>...
> > "Mark Moore" <lists@circleox.com> wrote in message
> > news:c728b397.0212180743.16194c01@posting.google.com...
> > > I am currently setting up a VPN (using Win 2000 Server now, but plan
> > > to move to FreeSWAN eventually). Clients connected to the VPN do not
> > > get directed broadcasts. Anyone have any idea why?
> >
> > The VPN boxes act as routers. Routers are not supposed to forward
directed
> > broadcasts by default, and many do not let you turn this feature on at
all.
> >
> > A long time ago routers used to forward directed broadcasts by default.
> >
> > However, attacks using a broadcast address and spoof source IP used this
to
> > do denial of service on Internet hosts, so the standards were changed so
> > that directed broadcasts had to be off by default. It also tended to
cause
> > major broadcast storms where there were dual routers between subnets for
> > resilience.
> >
> > On a full function router you can usually turn this on interface by
> > interface (all the cisco routers and L3 switches that i have worked on
> > support this).
> >
> > The most common reason for this is to support etBIOS over IP in a
microsoft
> > environment - you can get equivalent functionality by using a WINs
server as
> > a central name to address translation cache - search microsoft for the
> > various papers they have written on using WINs.

Relevant Pages

  • Re: Best approach for broadcasting a notifivation to another progr
    ... I think that normally routers block all broadcasts by default, ... I have found that many admins will allow broadcasts between them (at least ... As for the Terminal server issue, I don't know how that would do. ... I have a customer that has two subnets joined by Cisco pix ...
    (microsoft.public.vb.general.discussion)
  • Re: DNS resolution of file server...
    ... WINS server. ... The one's which are working are likely using broadcasts ... but failing across routers. ... >>> fileserver has the IP setting at "auto assign IP ...
    (microsoft.public.win2000.dns)
  • Re: Directed Broadcasts
    ... Clients connected to the VPN do not ... The VPN boxes act as routers. ... A long time ago routers used to forward directed broadcasts by default. ... environment - you can get equivalent functionality by using a WINs server as ...
    (comp.security.firewalls)
  • Re: Directed Broadcasts
    ... I need my VPLS to get UDP broadcasts. ... I understand the issues behind disabling directed broadcasts on ... > The VPN boxes act as routers. ...
    (comp.security.firewalls)
  • Re: Directed Broadcasts
    ... > I'm kind of suprised that there has been no mention of M$ ISA Server. ... I need my VPLS to get UDP broadcasts. ... >> I understand the issues behind disabling directed broadcasts on ... >>> The VPN boxes act as routers. ...
    (comp.security.firewalls)