This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

How to block multicast traffic in specific VLAN?

How to block multicast traffic in specific VLAN?

eyeV
New Contributor III

‎05-20-2014 06:41 AM

Hi everybody.
I'd like to block all ingress multicast traffic in specific VLAN. Can anybody suggest me how I can do this?

0 Kudos
5 REPLIES 5

eyeV
New Contributor III

‎05-20-2014 10:55 AM

I remember about protocols which use multicast, but we don't use any in this VLAN.
Thanks!

0 Kudos

Paul_Russo
Extreme Employee

‎05-20-2014 10:55 AM

Hey eyeV

That looks correct. Note that multicast can be in the range of 224.0.0.0 - 239.255.255.255. Also be aware that this may affect multicast traffic needed for route protocols etc.

Thanks
P

eyeV
New Contributor III

‎05-20-2014 10:51 AM

Thanks for suggests. I've created ACL and added it to VLAN.

entry multicast {
if {
source-address 224.0.0.0/4;
}
then {
deny;
packet-count mcast-deny;
}
}


0 Kudos

Paul_Russo
Extreme Employee

‎05-20-2014 10:44 AM

Hello eyeV what switch are you doing this on? As David mentioned above you can create an ACL to block the traffic on the VLAN. Using XOS this is doe using a policy file that can then be assigned to the VLAN.

If you just need to limit traffic you can also use the Multicast/broadcast thresholds on a per port perspective. You could set a very low threshold, possibly even 0pps to handle this but that is per port not per VLAN so trunk ports would affect all VLANs.

Thanks
P
li.common.scroll-to.top
GTM-P2G8KFN