An IP diected broadcast is an IP packet destined for the network or broadcast address.
So for example let's say you have a subnet of 192.168.1.0/24 192.168.1.0 is the network address. 192.168.1.255 is the broadcast address. An IP packet destined for 192.168.1.255 (the destination address) would by default get broadcasted out to all ports in the VLAN/LAN/etc that are on the 192.168.1.0 network. (something like the FF:FF:FF:FF:FF:FF address on a Layer 2 segment). Putting that command in disables that 'feature'. Ken Matlock Network Analyst Exempla Healthcare (303) 467-4671 [EMAIL PROTECTED] -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of chloe K Sent: Monday, December 01, 2008 1:47 PM To: cisco-nsp@puck.nether.net Subject: [c-nsp] security Hi I read doc about "no ip direct broadcast" but I still don't understand. Can you give me example? Thank you --------------------------------- Yahoo! Canada Toolbar : Search from anywhere on the web and bookmark your favourite sites. Download it now! _______________________________________________ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ _______________________________________________ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/