HPE Community
Comware Based
1752810 Members
5756 Online
108789 Solutions
New Discussion

Block IP Protocol from specific IP-Adress (5500G)

 
Olbrich
Occasional Contributor

‎01-20-2010 07:24 AM

‎01-20-2010 07:24 AM

Block IP Protocol from specific IP-Adress (5500G)

Hi,



Situation: We have a cluster. The server of the cluster use "Heartbeat" to control if the other one is still alive. Now these heartsbeats are send as a broadcast. (IP Protocol 224). These broadcasts slow down our firewall because every packet will be logged.



Question: Is it possible to block the IP Protocol 224 for the ip address of the server (e.g. 192.168.0.3) on the port of the switch (e.g. 192.168.0.4), where the internal port of the firewall (192.168.0.1) is connected to?



The switch is a 3Com Switch 5500G-EI SFP 24 Port.



Thanks in advance



Matthias

0 Kudos
1 REPLY 1
Fred_Mancen_1
Super Advisor

‎01-21-2010 02:07 PM

‎01-21-2010 02:07 PM

Re: Block IP Protocol from specific IP-Adress (5500G)

Maybe your cluster can work using multicast instead broadcast. If this scenario is possible in your environment, you can enable IGMP Snooping in the VLAN where the cluster is connected to, so your cluster will communicate just between the cluster members, and will stop the broadcasts.



HTH



Regards,
Fred Mancen
0 Kudos
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.