Solved

Stopping IP croadcasts from reaching a device

Posted on 2002-06-20
5
307 Views
Last Modified: 2010-04-11
I am testing an IP device on our LAN and need to stop all IP broadcasts such as browser announcements from reaching that device. I did it by putting a router inbetween our LAN and the control network that this device is on and this worked fine. My question is: Are there any other ways of doing this without having to segment it with a router? I think that maybe a VLAN might be able to accomplish this using a Cisco Catalyst switch but I'm not positive. Could someone verify this for me and also suggest any other options or switch brands (If it is possible to do it with a switch at all) that might work? This device still needs to be accessible to all traffic specifically destined for it but the IP broadcasts should not reach it. Thanks!
0
Comment
Question by:GBP
5 Comments
 
LVL 8

Accepted Solution

by:
scraig84 earned 25 total points
ID: 7097097
By implementing VLANs you still need a router to make this VLAN accessible to the other VLANs and segments.  VLANS are simply multiple segments within the confines of a single device or group of devices.  They give more flexibility than the traditional segmentation by a single device.

However, getting back to your question, the router (or corresponding segment it serves) is still the basic boundary of a broadcast domain.  So there is really not many options that you have aside from placing some type of filtering software on the machine itself that does not listen to anything but packets destined specifically for it.  However, this still causes packet processing :).
0
 
LVL 79

Assisted Solution

by:lrmoore
lrmoore earned 25 total points
ID: 7097240
Agree with scraig84. Ethernet by design is comprised of both broadcast and collision domains. Setting up VLANs makes each broadcast domain smaller, but each VLAN is still considered a broadcast domain. A router is required to move packets between brodcast domains. If your goal is to have an application/server that cannot receive broadcasts then there are not many options other than using a router. That is the best way, but you could also use a layer 3 switch which is basically a very fast slimmmed down router with multiple ports.
One option would be Cisco's 3550 intelligent switches:
http://www.cisco.com/warp/public/cc/pd/si/casi/ca3550/prodlit/c355e_ds.htm

0
 

Expert Comment

by:boiledfrog
ID: 7097920
Sorry if if this has been covered...

What kind of device?

If it's a PC running winXP Pro you can run the built in firewall - this can be set to ignore pretty much anything!
0
 
LVL 1

Expert Comment

by:Cbracker
ID: 7293466
This may not work - I haven't tested it w/broadcast IP addresses, but if you are using Catalyst switch, have you tried putting an access list on the port blocking the broadcast IP?  
0
 

Expert Comment

by:CleanupPing
ID: 9155589
GBP:
This old question needs to be finalized -- accept an answer, split points, or get a refund.  For information on your options, please click here-> http:/help/closing.jsp#1 
EXPERTS:
Post your closing recommendations!  No comment means you don't care.
0

Featured Post

Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

PRTG Network Monitor lets you monitor your bandwidth usage, so you know who is using up your bandwidth, and what they're using it for.
For many of us, the  holiday season kindles the natural urge to give back to our friends, family members and communities. While it's easy for friends to notice the impact of such deeds, understanding the contributions of businesses and enterprises i…
Internet Business Fax to Email Made Easy - With  eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, f…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

776 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question