I still got icmp echo replys from router when send request to

directed-broadcast address ( both to [subnet | 0] and [subnet | -1].

It's not forwarded. It's just handled as if destination ip was the router.

Hi

What icmp type/code do you get?

Regards

Roger

8/0 sent 0/0 received.

cisco.com seem have same situation.

try ping 198.133.219.0 or 198.133.219.255

It depends what subnetmask there is in place. but i do not

get you point.....if you ping the broadcast addrees basically all station in the subnet should answer that. If you ping the network address nobody should answer it and that's normal behavior.

I think there is also a command on the switch which will help you to overgo that.

Regards

Roger

Here is a quote from rfc2644 (bcp34):

Directed Broadcast - a broadcast directed to the specified network

prefix. It MUST NOT be used as a source address. A router MAY

originate Network Directed Broadcast packets. A router MAY have a

configuration option to allow it to receive directed broadcast

packets, however this option MUST be disabled by default, and thus

the router MUST NOT receive Network Directed Broadcast packets

unless specifically configured by the end user.

so it is NOT normal behavior.

And I also hope there is a command which changes this behavior.

But could anyone help me find it?

Sorry mixed up some points in the last posting. In my posting above i meant broadcast to all host on the same subnet....but you are talking about the directed ones.

Directed broadcasts will be tropped by the router, because as in the config guide stated "no ip directed-broadcast" command is on by default . I posted the link to the config guide in an earlier posting. The router will issue an icmp packet which states that the net is not

reachable...i do not think you can turn that off. I think you wanted to turn this icmp message off am i correct.

Regards

Roger

Yes, "no ip directed-broadcast" is on by default but is only disables translation directed-broadcast to Layer2 broadcast(s) and do nothing with

router's replys. Router will issue net-unreach only if interface associated with network is down. Still it seams the problem only with icmp traffic as no

tcp-rst/icmp-portunreach response sent to tcp/udp requests.

Hi

An add on to my last posting....You can turn of the sending of icmp unreachable messages with the following command on the interface level:

no ip unreachables

Regards

Roger

I think you are referring to arp-proxy, a situation in which the router responds to an arp request because it has knowledge of the destined network. This feature is enable by default on cisco interfaces. Try to disable it by using

no ip proxy-arp,

and see whether it solves your problem.

Another option might be to change the broadcast address of the router, but I am not sure what impact this will have on the operation and connectivity of the interface.

Regards