Limiting The Range Of Legal Bsr; Limiting The Range Of Legal C-Rp - H3C S9500 Series Operation Manual
Multicast protocol routing switches
Hide thumbs
Also See for S9500 Series:
- Command manual (1842 pages) ,
- Operation manual (1504 pages) ,
- Operating manual (76 pages)
Table of Contents
Advertisement
Operation Manual – Multicast Protocol
H3C S9500 Series Routing Switches
Table 7-6 Configuring RP to filter the register messages sent by DR
Configure RP to filter the register messages
sent by DR
Cancel the configured filter of messages
If an entry of a source group is denied by the ACL, or the ACL does not define operation
to it, or there is no ACL defined, the RP will send RegisterStop messages to the DR to
prevent the register process of the multicast data stream.
Caution:
Only the register messages matching the ACL permit clause can be accepted by the
RP. Specifying an undefined ACL will make the RP deny all register messages.
7.2.12 Limiting the range of legal BSR
To prevent the legal BSR from being replaced maliciously in the network, you can limit
the range of legal BSR. Other BSR messages beyond the range are not received by the
router and thus ensure the BSR security.
Perform the following configuration in PIM view.
Table 7-7 Limiting the range of legal BSR
Set the limit legal BSR range
Restore to the default setting
For detailed information of bsr-policy, refer to the H3C S9500 Series Routing Switches
Command Manual.
7.2.13 Limiting the range of legal C-RP
To avoid C-RP spoofing, you can limit the range of legal C-RP and limit the groups that
each C-RP servers.
Perform the following configuration in PIM view.
Operation
Operation
7-8
Chapter 7 PIM-SM Configuration
Command
register-policy acl-number
undo register-policy
Command
bsr-policy acl-number
undo bsr-policy
Advertisement
Table of Contents
