LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Networking (https://www.linuxquestions.org/questions/linux-networking-3/)
-   -   Ignoring Broadcast traffic (https://www.linuxquestions.org/questions/linux-networking-3/ignoring-broadcast-traffic-877323/)

survient 04-27-2011 12:46 AM
Ignoring Broadcast traffic
 
Ok so our network has avaya phones all over the place and the DHCP server(separate from mine) is constantly broadcasting over UDP ports 67 and 68, so my NIC is showing a constant influx of connections averaging ~90KBps. Is there any way on my end I can ignore this traffic so I don't show that 90KBps, or am I SOL?

micxz 04-27-2011 01:03 AM
how about some thing like:
Code:
$IPTABLES -A udp_packets -p UDP -i $INET_IFACE -d 255.255.255.255 --destination-port 67:68 -j DROP

linuxStudent11 04-27-2011 08:23 AM
Quote:
Originally Posted by micxz (Post 4337643)
how about some thing like:
Code:
$IPTABLES -A udp_packets -p UDP -i $INET_IFACE -d 255.255.255.255 --destination-port 67:68 -j DROP
Since nothing jumps to udp_packets table, its probably simpler as follows (I'll put in the sudo command too):
sudo iptables -A INPUT -p UDP -i $INET_IFACE -d 255.255.255.255 --destination-port 67:68 -j DROP
where:
$INET_IFACE is your ip address.
Also be advised that many ip addresses can get used for broadcasting. I don't know what your Avaya traffic uses. So be prepared to replace the 255.255.255.255 with that address too. Note also this will shut off ALL broadcasts, including those from printers coming online, misc other servers, lotsa things (anything that might be using 255.255.255.255). You need to stay aware of that too.


All times are GMT -5. The time now is 05:35 PM.