Re: Directed Broadcasts

From: JR (contactjrnow@hotmail.com)
Date: 12/19/02 

From: "JR" <contactjrnow@hotmail.com>
Date: Thu, 19 Dec 2002 15:34:17 -0500

"JR" <contactjrnow@hotmail.com> wrote in message
news:p5qM9.50457$lj.1234475@read1.cgocable.net...
> I'm kind of suprised that there has been no mention of M$ ISA Server. I am
> personally not a M$ fan, but it is fairly tight.
> Price should not be an issue, as ISA is no where near as expensive as W2K
> Adv Server, so it normally can be acquired from the same locations :)
> JR
>
>
>
> "Mark Moore" <lists@circleox.com> wrote in message
> news:c728b397.0212190907.5c246104@posting.google.com...
> > WINs will not solve my problem. I need my VPLS to get UDP broadcasts.
> > I understand the issues behind disabling directed broadcasts on
> > routers, but what I do not understand is why a VPLS falls into this
> > category. Once connected, it should be considered as part of the
> > trusted network and therefore recieve broadcast traffic (IMO).
> >
> > ~mark
> >
> >
> > "shope" <stephen_hope@ntlworld.xx.com> wrote in message
> news:<zW4M9.3544$V81.90020@newsfep1-gui.server.ntli.net>...
> > > "Mark Moore" <lists@circleox.com> wrote in message
> > > news:c728b397.0212180743.16194c01@posting.google.com...
> > > > I am currently setting up a VPN (using Win 2000 Server now, but plan
> > > > to move to FreeSWAN eventually). Clients connected to the VPN do
not
> > > > get directed broadcasts. Anyone have any idea why?
> > >
> > > The VPN boxes act as routers. Routers are not supposed to forward
> directed
> > > broadcasts by default, and many do not let you turn this feature on at
> all.
> > >
> > > A long time ago routers used to forward directed broadcasts by
default.
> > >
> > > However, attacks using a broadcast address and spoof source IP used
this
> to
> > > do denial of service on Internet hosts, so the standards were changed
so
> > > that directed broadcasts had to be off by default. It also tended to
> cause
> > > major broadcast storms where there were dual routers between subnets
for
> > > resilience.
> > >
> > > On a full function router you can usually turn this on interface by
> > > interface (all the cisco routers and L3 switches that i have worked on
> > > support this).
> > >
> > > The most common reason for this is to support etBIOS over IP in a
> microsoft
> > > environment - you can get equivalent functionality by using a WINs
> server as
> > > a central name to address translation cache - search microsoft for the
> > > various papers they have written on using WINs.
>
>
Sorry wrong thread.....need coffee
JR

Relevant Pages

  • Re: Best approach for broadcasting a notifivation to another progr
    ... I think that normally routers block all broadcasts by default, ... I have found that many admins will allow broadcasts between them (at least ... As for the Terminal server issue, I don't know how that would do. ... I have a customer that has two subnets joined by Cisco pix ...
    (microsoft.public.vb.general.discussion)
  • Re: DNS resolution of file server...
    ... WINS server. ... The one's which are working are likely using broadcasts ... but failing across routers. ... >>> fileserver has the IP setting at "auto assign IP ...
    (microsoft.public.win2000.dns)
  • Re: Directed Broadcasts
    ... Clients connected to the VPN do not ... The VPN boxes act as routers. ... A long time ago routers used to forward directed broadcasts by default. ... environment - you can get equivalent functionality by using a WINs server as ...
    (comp.security.firewalls)
  • Re: Directed Broadcasts
    ... I need my VPLS to get UDP broadcasts. ... I understand the issues behind disabling directed broadcasts on ... > The VPN boxes act as routers. ...
    (comp.security.firewalls)
  • Re: Directed Broadcasts
    ... I'm kind of suprised that there has been no mention of M$ ISA Server. ... I need my VPLS to get UDP broadcasts. ... > I understand the issues behind disabling directed broadcasts on ... >> The VPN boxes act as routers. ...
    (comp.security.firewalls)