ArubaOS and Controllers

Reply
Occasional Contributor II
Posts: 17
Registered: ‎04-29-2009

Block Symantec Ghost multicast traffic from entering controller?

Symantec Ghost multicast traffic keeps making my 3400 controller freeze up.

Interestingly my two 800 controllers running in local mode don’t freeze when I run a Ghost cast season.

I simply just want to stop Ghost multicast traffic entering the controller and hope it fixes the problem

What is the best way to block Symantec Ghost multicast traffic from entering the 3400 controller?
Aruba Employee
Posts: 77
Registered: ‎04-11-2007

Block Symantec Ghost multicast traffic from entering controller?

Looks like you can write a session acl on the uplink interface to block
what you need.

Something like this.

!
ip access-list session ghost
any network 224.77.0.0 255.255.0.0 any deny
any any any permit
!
!
interface gigabitethernet 1/1
description "gig1/1"
trusted
ip access-group ghost session
!

http://service1.symantec.com/SUPPORT/ghost.nsf/ppfdocs/2002101612025325

Sent By Source Port Destination Address Destination Port
Type Volume
Stage 1 (Server Discovery)
Client 1347 229.55.150.208* 1345 UDP Low
Client 1347 WINS server 137 UDP Low
Server 1345 Client IP Varies** UDP Low

Stage 2 (Status Update)
Client 1347 Server IP 1346 UDP Low
Server 1346 Client IP Varies** UDP Low

Stage 3 (Executing Task)
Client 1347 Server IP 1346 TCP Low
Server 1346 Client IP Varies** TCP Med

File transfer steps using Multicast
Client 7777 Server IP Varies** UDP Med
Server varies 224.77.xxx.xxx 7777 UDP High
Occasional Contributor II
Posts: 17
Registered: ‎04-29-2009

Re: Block Symantec Ghost multicast traffic from entering controller?

Thanks Gary,

That looks like what I need to do but I can’t get the commands to work in “config t”.

The “ip access-list” doesn’t seam to exist on my controller.

But when I do a show running there are some pre set ACL’s running?

So how do I set up new additional ACL’s?
Aruba Employee
Posts: 77
Registered: ‎04-11-2007

Block Symantec Ghost multicast traffic from entering controller?

Creating firewall rules requires the firewall (PEF) license. If you have
a Master Local design with the PEF license installed you will need to
create the ACL on the Master.

# show license

License Table
-------------
Key Installed Expires Flags
Service Type
--- --------- ------- -----
------------
O1aqG+fC-e2OOukq+-fMf2bXWM-O47mK... 2007-06-21 Never E
Policy Enforcement Firewall
08:55:27
mlga19XI-EPHMqTd1-Rgl5ARPz-nCJHa... 2007-06-21 Never E VPN
Server
08:55:27
3CPyGvkm-gy4oxCpl-W6Tgury0-K6Ikx... 2007-06-21 Never E
Remote Access Points: 1
08:55:27

Gary
Search Airheads
Showing results for 
Search instead for 
Did you mean: