If I configure HSRP in vlan interface, which is the best place to put the config below? Physical interface or vlan interface and why?
FYI, I put it in vlan interface because the routing information is there (i.e ip address and HSRP).
access-list 30 remark Multicast-filtering-ACL
access-list 30 deny 220.127.116.11 log
access-list 30 deny 18.104.22.168 log
access-list 30 deny 22.214.171.124 log
access-list 30 deny 126.96.36.199 log
access-list 30 deny 188.8.131.52 log
access-list 30 deny 184.108.40.206 log
access-list 30 deny 220.127.116.11 0.0.0.255 log
access-list 30 deny 18.104.22.168 0.255.255.255 log
access-list 30 permit 22.214.171.124 126.96.36.199 log
no ip redirects
no ip directed broadcast
no ip mask-reply
no ip unreachables
no ip proxy-arp
ip accounting access-violations
ip multicast boundary 30
no ip mroute-cache
no cdp enable
Not sure i fully understand. The layer 3 interface is the SVI so that is the logical place to put the layer 3 access-list that you have created.
When you say the physical interface which physical interface were you thinking of ?
If the physical interface was configured as a routed port then the access-list would go on there but this isn't what you have done.
Could you clarify ?