HPE Community read-only access December 15, 2018
This is a maintenance upgrade. You will be able to read articles and posts, but not post or reply.
Hours:
Dec 15, 4:00 am to 10:00 am UTC
Dec 14, 10:00 pm CST to Dec 15, 4:00 am CST
Dec 14, 8:00 pm PST to Dec 15, 2:00 am PST
Comware Based
cancel
Showing results for 
Search instead for 
Did you mean: 

Block IP Protocol from specific IP-Adress (5500G)

 
Olbrich
Occasional Contributor

Block IP Protocol from specific IP-Adress (5500G)

Hi,



Situation: We have a cluster. The server of the cluster use "Heartbeat" to control if the other one is still alive. Now these heartsbeats are send as a broadcast. (IP Protocol 224). These broadcasts slow down our firewall because every packet will be logged.



Question: Is it possible to block the IP Protocol 224 for the ip address of the server (e.g. 192.168.0.3) on the port of the switch (e.g. 192.168.0.4), where the internal port of the firewall (192.168.0.1) is connected to?



The switch is a 3Com Switch 5500G-EI SFP 24 Port.



Thanks in advance



Matthias

1 REPLY
Fred_Mancen_1
Super Advisor

Re: Block IP Protocol from specific IP-Adress (5500G)

Maybe your cluster can work using multicast instead broadcast. If this scenario is possible in your environment, you can enable IGMP Snooping in the VLAN where the cluster is connected to, so your cluster will communicate just between the cluster members, and will stop the broadcasts.



HTH