Limit HSRP multicast to HSRP speakers only!

Unanswered Question
Oct 24th, 2007

Hi All,

Is there any way to limit the HSRP multicast traffic (udp 1895) to only the HSRP speakers.

My downstream firewalls are being bombing with the unwanted HSRP udp traffic every second!!!

Thanks a lot for your expertise.

Oct 24 2007 21:56:42: %ASA-7-710005: UDP request discarded from x.x.x.x/1985 to touchdown:224.0.0.2/1985

Oct 24 2007 21:56:43: %ASA-7-710005: UDP request discarded from x.x.x.x/1985 to touchdown:224.0.0.2/1985

Oct 24 2007 21:56:45: %ASA-7-710005: UDP request discarded from x.x.x.x/1985 to touchdown:224.0.0.2/1985

Oct 24 2007 21:56:46: %ASA-7-710005: UDP request discarded from x.x.x.x/1985 to touchdown:224.0.0.2/1985

Richard

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
aghaznavi Tue, 10/30/2007 - 14:24

May be the problem is that they you used inside interface set to x.x.x.x instead of y.y.y.y ( Correct Ip address ) verify that one. I think after you changed the right ip address it will work.

Mark Walters Sat, 01/18/2014 - 13:16

It is possible to limit only the HSRP routers on a segment from receiving the HSRP messages, perhaps by using a Port ACL on the connecting switch.  But it sounds like you just want your firewall to ignore these messages. To do that simply disable that log message or change the message severity level on the ASA.

ASA(config)# no logging message 710005

http://www.ciscopress.com/articles/article.asp?p=424447&seqNum=3

cheers

mark

Actions

This Discussion