5-9
By default, no multicast group filter is configured.
The ACL rule defines a multicast address or a multicast address range (for example 224.0.0.1 to
239.255.255.255) and is used to:
z
Allow the port(s) to join only the multicast group(s) defined in the rule by a permit statement.
z
Inhibit the port(s) from joining the multicast group(s) defined in the rule by a deny statement.
z
A port can belong to multiple VLANs, you can configure only one ACL rule per VLAN on a port.
z
If no ACL rule is configured, all the multicast groups will be filtered.
z
Since most devices broadcast unknown multicast packets by default, this function is often used
together with the function of dropping unknown multicast packets to prevent multicast streams from
being broadcast as unknown multicast packets to a port blocked by this function.
z
The configuration performed in system view takes effect on all ports of the switch if no VLAN is
specified; if one or more VLANs are specified, the configuration takes effect on all ports in the
specified VLAN(s).
z
The configuration performed in Ethernet port view takes effect on the port no matter which VLAN it
belongs to if no VLAN is specified; if one or more VLANs are specified, the configuration takes
effect on the port only if the port belongs to the specified VLAN(s).
Examples
# Configure a multicast group filter to allow receivers attached to Ethernet 1/0/1 to access the multicast
streams for groups 225.0.0.0 to 225.255.255.255.
z
Configure ACL 2000.
<Sysname>system-view
System View: return to User View with Ctrl+Z.
[Sysname] acl number 2000
[Sysname-acl-basic-2000] rule permit source 225.0.0.0 0.255.255.255
[Sysname-acl-basic-2000] quit
z
Create VLAN 2 and add Ethernet1/0/1 to VLAN 2.
[Sysname] vlan 2
[Sysname-vlan2] port Ethernet 1/0/1
[Sysname-vlan2] quit
z
Apply ACL 2000 on Ethernet1/0/1 to allow it to join only the IGMP multicast groups defined in the
rule of ACL 2000.
[Sysname] interface Ethernet 1/0/1
[Sysname-Ethernet1/0/1] igmp-snooping group-policy 2000 vlan 2
[Sysname-Ethernet1/0/1] quit
# Configure a multicast group filter to allow receivers attached to Ethernet 1/0/2 to access the multicast
streams for any groups except groups 225.0.0.0 to 225.0.0.255.
z
Configure ACL 2001.
[Sysname] acl number 2001
[Sysname-acl-basic-2001] rule deny source 225.0.0.0 0.0.0.255
Summary of Contents for 5500-EI PWR
Page 43: ...2 6...
Page 76: ...1 17...
Page 228: ...ii stp transmit limit 1 44 vlan mapping modulo 1 45 vlan vpn tunnel 1 46...
Page 477: ...5 24 Sysname vlan 2 Sysname vlan2 service type multicast...
Page 503: ...2 3 System View return to User View with Ctrl Z Sysname dot1x url http 192 168 19 23...
Page 519: ...iii...
Page 597: ...2 2 security policy server 192 168 0 1 user name format without domain...
Page 648: ...1 9 Examples Clear static ARP entries Sysname reset arp static...
Page 663: ...4 3 Sysname resilient arp interface vlan interface 2...
Page 767: ...1 28 From 12 00 Jan 1 2008 to 12 00 Jun 1 2008...
Page 1111: ...ii xmodem get 3 18...
Page 1314: ...A 44 Z...