Chapter 42 Configuring IP Multicast Routing

Configuring IP Multicast Routing

 

Command

Purpose

Step 1

 

 

configure terminal

Enter global configuration mode.

Step 2

 

 

ip pim rp-announce-filter rp-list

Filter incoming RP announcement messages.

 

access-list-number group-list

Enter this command on each mapping agent in the network. Without

 

access-list-number

 

this command, all incoming RP-announce messages are accepted by

 

 

 

 

default.

 

 

For rp-listaccess-list-number, configure an access list of candidate RP

 

 

addresses that, if permitted, is accepted for the group ranges supplied

 

 

in the group-listaccess-list-numbervariable. If this variable is

 

 

omitted, the filter applies to all multicast groups.

 

 

If more than one mapping agent is used, the filters must be consistent

 

 

across all mapping agents to ensure that no conflicts occur in the

 

 

Group-to-RP mapping information.

Step 3

 

 

access-listaccess-list-number {deny

Create a standard access list, repeating the command as many times as

 

permit} source [source-wildcard]

necessary.

 

 

For access-list-number, enter the access list number specified in

 

 

Step 2.

 

 

The deny keyword denies access if the conditions are matched.

 

 

The permit keyword permits access if the conditions are matched.

 

 

Create an access list that specifies from which routers and

 

 

multilayer switches the mapping agent accepts candidate RP

 

 

announcements (rp-list ACL).

 

 

Create an access list that specifies the range of multicast groups

 

 

from which to accept or deny (group-list ACL).

 

 

For source, enter the multicast group address range for which the

 

 

RP should be used.

 

 

(Optional) For source-wildcard, enter the wildcard bits in dotted

 

 

decimal notation to be applied to the source. Place ones in the bit

 

 

positions that you want to ignore.

 

 

Recall that the access list is always terminated by an implicit deny

 

 

statement for everything.

Step 4

 

 

end

Return to privileged EXEC mode.

Step 5

 

 

show running-config

Verify your entries.

Step 6

 

 

copy running-config startup-config

(Optional) Save your entries in the configuration file.

 

 

 

To remove a filter on incoming RP announcement messages, use the no ip pim rp-announce-filterrp-listaccess-list-number[group-listaccess-list-number] global configuration command.

This example shows a sample configuration on an Auto-RP mapping agent that is used to prevent candidate RP announcements from being accepted from unauthorized candidate RPs:

Switch(config)# ip pim rp-announce-filter rp-list 10 group-list 20

Switch(config)# access-list 10 permit host 172.16.5.1

Switch(config)# access-list 10 permit host 172.16.2.1

Switch(config)# access-list 20 deny 239.0.0.0 0.0.255.255

Switch(config)# access-list 20 permit 224.0.0.0 15.255.255.255

 

 

Catalyst 3750-E and 3560-E Switch Software Configuration Guide

 

 

 

 

 

 

OL-9775-02

 

 

42-19

 

 

 

 

 

Page 1025
Image 1025
Cisco Systems 3750E manual Ip pim rp-announce-filter rp-list, Access-list-number group-list, 42-19