R3303-HP HSR6800 Routers Layer 3 - IP Services Configuration Guide
118
Optimizing IP performance
This chapter describes multiple features for IP performance optimization.
Enabling receiving and forwarding of directed
broadcasts to a directly connected network
A directed broadcast packet is destined for all hosts on a specific network. In the destination IP address
of the directed broadcast, the network ID identifies the target network, and the host ID is made up of all
ones.
If a device is allowed to forward directed broadcasts to a directly connected network, hackers can
exploit this vulnerability to attack the target network. However, this feature must be enabled for the
following functions:
• UDP Helper—Converts broadcasts to unicasts and forwards them to a specific server.
• Wake on LAN—Forwards directed broadcasts to wake up a specific host.
Enabling receiving directed broadcasts to a directly connected
network
If a device is enabled to receive directed broadcasts, the device determines whether to forward them
according to the configuration on the output interface.
To enable the device to receive directed broadcasts:
Step Command Remarks
1. Enter system view.
system-view N/A
2. Enable the device to receive
directed broadcasts.
ip forward-broadcast
By default, the device is disabled from
receiving directed broadcasts.
Enabling forwarding directed broadcasts to a directly
connected network
Follow these guidelines when you enable the device to forward directed broadcasts:
• If an ACL is referenced in the ip forward-broadcast command, only packets permitted by the ACL
can be forwarded.
• If you execute the ip forward-broadcast command multiple times on an interface, the most recent
configuration takes effect. If the command executed last does not include acl acl-number, the ACL
configured previously is removed.
To enable the device to forward directed broadcasts: