Re: ip multicast boundary [filter-autorp]

From: Arun Arumuganainar (aarumuga@hotmail.com)
Date: Fri Sep 01 2006 - 12:53:49 ART

• Next message: Brian Dennis: "RE: Virtual Link"
• Previous message: Sreenivasa Reddy.Kaki: "Re: BGP regexp"
• Maybe in reply to: Tim Chan: "ip multicast boundary [filter-autorp]"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hi ,

Your solution 1 will work out to be best .

Solution 1 :
========
> > access-list 10 deny 224.0.1.39
> > access-list 10 deny 224.0.1.40
> > access-list 10 permit any
> > !
> > interface ethernet 0/0
> > ip multicast boundary 10

What it does ???
~~~~~~~~~~~~
It blocks all traffic sent to 224.0.1.39 and 224.0.1.40 ... Hence it
effectively controls all the advertisements of Auto RP . But still it will
allow Traffic from other groups to flow across the interface.

For ex :

    1) Traffic from any Dense-mode groups will reach the back bone
    2) If backbone router is configured with static RP then the traffic will
still reach the back bone.

To summaraise : You only block Auto-rp information . All the other groups
will flow as normal .

Solution 2 :-
========
> > access-list 10 deny 224.0.0.0 15.255.255.255
> > access-list 10 permit any
> > !
> > interface ethernet 0/0
> > ip multicast boundary 10 filter-autorp

What it does
~~~~~~~~~
Here none of Multicast traffic will be able to pass through it . This
includes Traffi on Auto-RP groups.

Hence you really need to decide based on what the question asks you to do .
Hence if the question says Block only Auto-RP then Solution 1 will only
fetch you marks .

Thanks and Regards
Arun

----- Original Message -----
From: "Petr Lapukhov" <petr@internetworkexpert.com>
To: "Tim Chan" <timanji@yahoo.com>
Cc: <ccielab@groupstudy.com>
Sent: Friday, September 01, 2006 2:02 PM
Subject: Re: ip multicast boundary [filter-autorp]

> Hi Tim,
>
> the idea is that filter-autorp filters "denied" groups from Auto-RP
> messages, hence permitting Auto-RP announces to pass-through
> boundary, but cutting out certain unwanted groups.
>
> HTH
>
> 2006/9/1, Tim Chan <timanji@yahoo.com>:
> >
> > Hi all,
> >
> > I'm not 100% sure what the "filter-autorp" keyword means.
> >
> > It's applied after the acl, so does that mean that for those prefixes in
> > the acl
> > it will also block auto-rp messages for those specific prefixes?
> >
> > So if I'm trying to block auto-rp messages from being sent out to a
> > backbone
> > router...are these the same then?
> >
> > access-list 10 deny 224.0.1.39
> > access-list 10 deny 224.0.1.40
> > access-list 10 permit any
> > !
> > interface ethernet 0/0
> > ip multicast boundary 10
> >
> > vs.
> >
> > access-list 10 deny 224.0.0.0 15.255.255.255
> > access-list 10 permit any
> > !
> > interface ethernet 0/0
> > ip multicast boundary 10 filter-autorp
> >
> > Any comments would be helpful..
> > -tim
> >
> > _______________________________________________________________________
> > Subscription information may be found at:
> > http://www.groupstudy.com/list/CCIELab.html
> >
>
>
>
> --
> Petr Lapukhov, CCIE #16379
> petr@internetworkexpert.com
>
> Internetwork Expert, Inc.
> http://www.InternetworkExpert.com
> Toll Free: 877-224-8987
> Outside US: 775-826-4344
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html

• Next message: Brian Dennis: "RE: Virtual Link"
• Previous message: Sreenivasa Reddy.Kaki: "Re: BGP regexp"
• Maybe in reply to: Tim Chan: "ip multicast boundary [filter-autorp]"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Sun Oct 01 2006 - 16:55:39 ART