General discussion

Locked

NT and NETBios Issues

By elfer ·
So, I filtered ports 137 and 138 on my VLAN so that I can get rid off the constant browser elections (using IP helper address in the cisco gear to forward the udp broadcasts). This worked, but now users also cannot authenticate anymore. MS did not say that in their article(s) dealing with the browsing issue(s). Does any one have any suggestions how to solve the browser announcement issues WITHOUT killing other MS services ?

D

This conversation is currently closed to new comments.

6 total posts (Page 1 of 1)  
| Thread display: Collapse - | Expand +

All Comments

Collapse -

NT and NETBios Issues

by satch In reply to NT and NETBios Issues

Put the value of "No" in the key of the registry HKEY_Local_Machine\System\CurrentControlSet\Services\Browser\Parameters

In this way the computer never participates in browser elections.

It doesn't solve the problem of broadcasts because the traffic to call for the election is still there but there would be no response so you can expect at least some less traffic than before.

Collapse -

NT and NETBios Issues

by elfer In reply to NT and NETBios Issues
Collapse -

NT and NETBios Issues

by DVN In reply to NT and NETBios Issues

Broadcasts don't cross routers, so I'm not sure why you blocked ports 137& 138,But this is you problem.You blocked almost all NetBIOS traffic so nobody will be able to authenticate to a DC on another VLAN. When you create a VLAN on a switch it keepsall broadcast local to this VLAN, you don't need to block any traffic on a router.
Dmitri

Collapse -

NT and NETBios Issues

by elfer In reply to NT and NETBios Issues

I know that. Hence the IP helper address, which forward udp broadcast so that users can use MS services across the VLAN.

Collapse -

NT and NETBios Issues

by -Q-240248 In reply to NT and NETBios Issues

I agree with DVN. VLANS are done within switches and have nothing to do with routers, unless by some remote chance, they are capable of VLAN trunking, but this is also a switch only option. Usually.

Routers do not propogate browser elections. They are kept on a local subnet. That what WINS is for. I don't understand how you say u filtered those ports, unless u used the no ip-forward command on the router. Do not 'filter' them unless the IP helper address is point to a DC.

I wouldn't worry too much about borwser elections, unless you have a serious traffic problem.

Collapse -

NT and NETBios Issues

by elfer In reply to NT and NETBios Issues

???? Ever heard of layer 3 switching ? Of course VLAN's have to do with routers ! IP helper address forwards udp broadcasts to a specific ip address.

Back to Windows Forum
6 total posts (Page 1 of 1)  

Related Discussions

Related Forums