41-10
Cisco ME 3400 Ethernet Access Switch Software Configuration Guide
OL-9639-06
Chapter 41 Configuring MSDP
Configuring MSDP
To remove the filter, use the no ip msdp redistribute global configuration command.
Filtering Source-Active Request Messages
By default, only switches that are caching SA information can respond to SA requests. By default, such
a switch honors all SA request messages from its MSDP peers and supplies the IP addresses of the active
sources.
However, you can configure the switch to ignore all SA requests from an MSDP peer . You can also honor
only those SA request messages from a peer for groups described by a standard access list. If the groups
in the access list pass, SA request messages are accepted. All other such messages from the peer for other
groups are ignored.
Step 3 access-list access-list-number {deny |
permit} source [source-wildcard]
or
access-list access-list-number {deny |
permit} protocol source source-wildcard
destination destination-wildcard
Create an IP standard access list, repeating the command as many times
as necessary.
or
Create an IP extended access list, repeating the command as many times
as necessary.
For access-list-number, the range is 1 to 99 for standard access lists
and 100 to 199 for extended lists. Enter the same number created in
Step 2.
The deny keyword denies access if the conditions are matched. The
permit keyword permits access if the conditions are matched.
For protocol, enter ip as the protocol name.
For source, enter the number of the network or host from which the
packet is being sent.
For source-wildcard, enter the wildcard bits in dotted decimal
notation to be applied to the source. Place ones in the bit positions
that you want to ignore.
For destination, enter the number of the network or host to which
the packet is being sent.
For destination-wildcard, enter the wildcard bits in dotted decimal
notation to be applied to the destination. Place ones in the bit
positions that you want to ignore.
Recall that the access list is always terminated by an implicit deny
statement for everything.
Step 4 end Return to privileged EXEC mode.
Step 5 show running-config Verify your entries.
Step 6 copy running-config startup-config (Optional) Save your entries in the configuration file.
Command Purpose