cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1444
Views
0
Helpful
2
Replies

Limit HSRP multicast to HSRP speakers only!

hongwei272
Level 1
Level 1

Hi All,

Is there any way to limit the HSRP multicast traffic (udp 1895) to only the HSRP speakers.

My downstream firewalls are being bombing with the unwanted HSRP udp traffic every second!!!

Thanks a lot for your expertise.

Oct 24 2007 21:56:42: %ASA-7-710005: UDP request discarded from x.x.x.x/1985 to touchdown:224.0.0.2/1985

Oct 24 2007 21:56:43: %ASA-7-710005: UDP request discarded from x.x.x.x/1985 to touchdown:224.0.0.2/1985

Oct 24 2007 21:56:45: %ASA-7-710005: UDP request discarded from x.x.x.x/1985 to touchdown:224.0.0.2/1985

Oct 24 2007 21:56:46: %ASA-7-710005: UDP request discarded from x.x.x.x/1985 to touchdown:224.0.0.2/1985

Richard

2 Replies 2

aghaznavi
Level 5
Level 5

May be the problem is that they you used inside interface set to x.x.x.x instead of y.y.y.y ( Correct Ip address ) verify that one. I think after you changed the right ip address it will work.

Mark Walters
Level 1
Level 1

It is possible to limit only the HSRP routers on a segment from receiving the HSRP messages, perhaps by using a Port ACL on the connecting switch.  But it sounds like you just want your firewall to ignore these messages. To do that simply disable that log message or change the message severity level on the ASA.

ASA(config)# no logging message 710005

http://www.ciscopress.com/articles/article.asp?p=424447&seqNum=3

cheers

mark

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: