It seems that I have continual LAN broadcast traffic spilling over to my WLAN interface (X3). I have switches with basic LAN traffic and then for each switch, I have a few ports configured to connect to a SonicPoint AP. PVID of these SonicPoint ports is 2 and then I am also allowing VLAN 200 tagged traffic (for guest). These ports all trunk back to the X3 WLAN interface on my SonicWall and access between LAN and WLAN/WLAN guest are managed with access rules. Right now, LAN and WLAN have access to each other but WLAN guest only has access to WAN.
Common sense as well as SW support says that I should only be getting these messages if there is something else plugged into the ports besides SonicPoints or if something is mis-configured. The firewall rules don't seem to be a factor at all as I have both set deny any any and allow any any to and from LAN/WLAN. I have also checked all the physical connections as well as the configurations and nothing seems to have changed. I can't figure out the cause of this. It started a few weeks ago which coincidentally is around the time I upgraded the SW firmware & replaced the switch that it connects to. I want to say it's probably in related to one of those two things, but I was careful not to mess anything up and I can not spot any configurations that appear to be wrong.
Details: SonicWall Zones
- X0 LAN - 10.1.2.0/24
- X3 Wifi (connect to switch ports with PVID 2) 10.1.3.0/24
- X3:200 Wifi-Guest (connected to switch ports PVID 2) 192.168.1.0/24
SonicWall logs is constantly spouting these messages:
- Message: "Drop WLAN traffic from non-SonicPoint devices
- Source: 10.1.2.X (LAN devices), [port #], X3
- Destination IP & MAC: 10.1.2.255/FF:FF:FF:FF:FF:FF (broadcast traffic), [port #]
- IP Protocol: UDP
My Dell N3000 switch configs look like this (ports configured for SonicPoints):
switchport mode general
switchport general pvid 2
switchport general allowed vlan add 2
switchport general allowed vlan add 200 tagged
Any help is appreciated!
No comments:
Post a Comment