Wireless Access

last person joined: yesterday 

Access network design for branch, remote, outdoor, and campus locations with HPE Aruba Networking access points and mobility controllers.
Back to discussions
Expand all | Collapse all

Filter UDP on VLAN on Portchannel

This thread has been viewed 0 times

  • 1.  Filter UDP on VLAN on Portchannel

    Posted Oct 01, 2019 05:54 AM

    Hi,

     

    we got serveral Guest Networks. In each of them is a firewall the gateway. The controllers got a Port-Channel with a few VLANs in these L2 Networks. When I am sniffing I'll see a lot of UDP Broadcasts which are sourced by the HA protocol of the firewall Cluster.

    Is there a way to filter UDP Broadcasts on the VLAN on the Port-Channel? They are not needed in the air. The Firewall has no option so the only way would be an ACL? Maybe someone has the same problem in the guest-network. The VLAN itself on the controller has no BC-MC Option enabled. The "Air" part of the VLAN has it enabled.

     

    Thanks for feedback

     



  • 2.  RE: Filter UDP on VLAN on Portchannel

    Posted Oct 04, 2019 11:03 AM

    Hello,

     

    Enabling BC-MC Optimisation on the VLAN would stop any broadcast or multicast packets being forwarded.

     

    Word of caution, enabling BC-MC Optimisation at the VLAN level, if APs sit in that VLAN as well and require ADP to locate a controller, this would stop ADP working as the controller would not respond to the multicast requests when the AP boots.

     

    Thanks,

     

    J