Originally Posted by micxz
how about some thing like:
$IPTABLES -A udp_packets -p UDP -i $INET_IFACE -d 255.255.255.255 --destination-port 67:68 -j DROP
Since nothing jumps to udp_packets table, its probably simpler as follows (I'll put in the sudo command too):
sudo iptables -A INPUT -p UDP -i $INET_IFACE -d 255.255.255.255 --destination-port 67:68 -j DROP
$INET_IFACE is your ip address.
Also be advised that many ip addresses can get used for broadcasting. I don't know what your Avaya traffic uses. So be prepared to replace the 255.255.255.255 with that address too. Note also this will shut off ALL broadcasts, including those from printers coming online, misc other servers, lotsa things (anything that might be using 255.255.255.255). You need to stay aware of that too.