Wireless Access

Reply
Highlighted
Frequent Contributor I

Filter UDP on VLAN on Portchannel

Hi,

 

we got serveral Guest Networks. In each of them is a firewall the gateway. The controllers got a Port-Channel with a few VLANs in these L2 Networks. When I am sniffing I'll see a lot of UDP Broadcasts which are sourced by the HA protocol of the firewall Cluster.

Is there a way to filter UDP Broadcasts on the VLAN on the Port-Channel? They are not needed in the air. The Firewall has no option so the only way would be an ACL? Maybe someone has the same problem in the guest-network. The VLAN itself on the controller has no BC-MC Option enabled. The "Air" part of the VLAN has it enabled.

 

Thanks for feedback

 

ACMP
Occasional Contributor I

Re: Filter UDP on VLAN on Portchannel

Hello,

 

Enabling BC-MC Optimisation on the VLAN would stop any broadcast or multicast packets being forwarded.

 

Word of caution, enabling BC-MC Optimisation at the VLAN level, if APs sit in that VLAN as well and require ADP to locate a controller, this would stop ADP working as the controller would not respond to the multicast requests when the AP boots.

 

Thanks,

 

J

Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: