BLADE OS™ Application Guide HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Version 5.1 Advanced Functionality Software
Table Of Contents
- Contents
- Figures
- Tables
- Preface
- Part 1: Basic Switching
- Accessing the Switch
- The Management Network
- Local Management Using the Console Port
- The Command Line Interface
- Remote Management Access
- Client IP Address Agents
- Securing Access to the Switch
- Setting Allowable Source IP Address Ranges
- RADIUS Authentication and Authorization
- TACACS+ Authentication
- LDAP Authentication and Authorization
- Secure Shell and Secure Copy
- Configuring SSH/SCP Features on the Switch
- Configuring the SCP Administrator Password
- Using SSH and SCP Client Commands
- SSH and SCP Encryption of Management Messages
- Generating RSA Host and Server Keys for SSH Access
- SSH/SCP Integration with Radius Authentication
- SSH/SCP Integration with TACACS+ Authentication
- End User Access Control
- Ports and Trunking
- Port-Based Network Access Control
- VLANs
- Spanning Tree Protocol
- RSTP and MSTP
- Link Layer Discovery Protocol
- Quality of Service
- Accessing the Switch
- Part 2: IP Routing
- Basic IP Routing
- Routing Information Protocol
- IGMP
- OSPF
- OSPF Overview
- OSPF Implementation in BLADE OS
- OSPF Configuration Examples
- Remote Monitoring
- Part 3: High Availability Fundamentals
- High Availability
- Layer 2 Failover
- Server Link Failure Detection
- VRRP Overview
- Failover Methods
- BLADE OS Extensions to VRRP
- Virtual Router Deployment Considerations
- High Availability Configurations
- High Availability
- Part 4: Appendices
- Index
BLADE OS 5.1 Application Guide
188 Chapter 11: IGMP BMD00113, September 2009
IGMP Filtering
With IGMP Filtering, you can allow or deny a port to send and receive multicast traffic to certain
multicast groups. Unauthorized users are restricted from streaming multicast traffic across the
network.
If access to a multicast group is denied, IGMP Membership Reports from the port are dropped, and
the port is not allowed to receive IP multicast traffic from that group. If access to the multicast
group is allowed, Membership Reports from the port are forwarded for normal processing.
To configure IGMP Filtering, you must globally enable IGMP filtering, define an IGMP filter,
assign the filter to a port, and enable IGMP Filtering on the port. To define an IGMP filter, you must
configure a range of IP multicast groups, choose whether the filter will allow or deny multicast
traffic for groups within the range, and enable the filter.
Configuring the Range
Each IGMP Filter allows you to set a start and end point that defines the range of IP addresses upon
which the filter takes action. Each IP address in the range must be between 224.0.1.0 and
239.255.255.255.
Configuring the Action
Each IGMP filter can allow or deny IP multicasts to the range of IP addresses configured. If you
configure the filter to deny IP multicasts, then IGMP Membership Reports from multicast groups
within the range are dropped. You can configure a secondary filter to allow IP multicasts to a small
range of addresses within a larger range that a primary filter is configured to deny. The two filters
work together to allow IP multicasts to a small subset of addresses within the larger range of
addresses.
Note – Lower-numbered filters take precedence over higher-number filters. For example, the
action defined for IGMP Filter 1 supersedes the action defined for IGMP Filter 2.