I've always thought layer 2 VPN tunnels were bad due to broadcast packets propagating over the internet (routers usually drop these).
Would it be best to use a firewall to filter/drop broadcast packets from transversing the WAN or is it possible to use only layer 3 vpn?
Thoughts?
Broadcast Packets
-
dnobori
- Posts: 230
- Joined: Tue Mar 05, 2013 10:04 am
Re: Broadcast Packets
Actually the recent-days Internet connections are capable to carry the broadcast packets via VPN tunnels, for typical environment with a few hundred computers.
Anyway if you want to reduce the number of broadcast packets, consider to filter them by the security policy setting of the user or group object.
Anyway if you want to reduce the number of broadcast packets, consider to filter them by the security policy setting of the user or group object.