Sunday, June 7, 2009

Controlling access to RP

PIM has the functionality to specify the multicast groups that an RP will allow joins from.

This allows central control over the mcast groups serviced by the RP.

The following config will only allow joins to mcast groups and for the RP This can be enabled on the RP itself, or altenatively on routers on the path to the RP.

ip access-list st 5

ip pim accept-rp 5

With 'debug ip pim' enabled failed attempts to the join RP are logged

*Jun 8 07:03:13.039: PIM(0): Join-list: (*,,, ignored, invalid RP from

No comments: