Users Guide

ManualsBrandsDell ManualsAccess PlatformsPowerSwitch S4112F-ON/S4112T-ON

1061

● Do not to configure a PIM join-filter on a source connected interface (IIF) on first hop router (FHR) node. Applying PIM join-

filter with the rule, deny ip any any might block creation of the S,G entries.

● When you configure a join filter, it applies for both incoming and outgoing joins. There is no option to specify in or out

parameters while configuring a join filter.

Configure PIM join filters

Before you configure a PIM join filter, enable multicast routing globally and establish PIM neighborship between routers. For

more information, see the ip multicast-routing command.

To configure a join filter that applies an ACL to the interface:

1. Configure an ACL in CONFIGURATION mode. You can specify the ACL name up to 140 characters.

OS10# configure terminal

OS10(config)# ip access-list pim_joinfilter

OS10(config-ipv4-acl)# permit ip 10.10.10.0/24 226.1.1.0/24

OS10(config-ipv4-acl)# permit ip any 225.1.1.0/24

PIM join filter uses both source and group information from the access-list for filtering joins. In this example, the first

permit ip command is used to filter Join messages for an (S,G) pair. The second permit ip command is used to filter

all join messages for a Group (G) irrespective of the sources.

2. Configure an Ethernet interface. This command enables INTERFACE configuration mode.

OS10(config)# interface ethernet 1/1/1

3. Configure a join filter that applies the previously created ACL (pim_joinfilter) on the PIM interface.

OS10(conf-if-eth1/1/1)# ip pim join-filter pim_joinfilter

PIM neighbor filters

The PIM neighbor filter allows you to control a PIM router from forming an adjacency with a neighbor router.

By default, PIM-enabled neighbor devices exchange Hello packets at regular intervals and through these message exchanges

become PIM neighbors. You can use a neighbor filter ACL to ensure that the switch accepts only the appropriate PIM neighbors.

The ACL is configured on a per-interface basis to filter PIM Hello packets from sources you want to deny or permit. If the

access list is applied for the neighbor filter, then the destination prefix is ignored.

To use PIM neighbor filtering on an IPv4 PIM-enabled interface, use the following command:

ip pim neighbor-filter <acl-name>

NOTE:

This feature does not filter Candidate-RP advertisements and is intended only to filter PIM Hello messages between

PIM neighbors.

Configure PIM neighbor filter

Before you configure a PIM neighbor filter, enable multicast routing globally and PIM on the participating interfaces. For more

information, see the ip multicast-routing and ip pim sparse-mode commands.

To configure a neighbor filter that applies an ACL to the interface:

1. Configure an ACL in CONFIGURATION mode. You can specify the ACL name up to 140 characters.

OS10# configure terminal

OS10(config)# ip access-list pim_nbr_filter

OS10(config-ipv4-acl)# permit ip 10.10.10.2/32 any

The PIM neighbor filter uses only the source information from access-list for filtering neighbors.

1066

Multicast