Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2416
Views
0
Helpful
6
Replies

How to Block Rip Multicast

karthick78
Level 1
Level 1

‎06-30-2008 05:25 AM - edited ‎03-03-2019 10:32 PM

Hi ,

Some of my customers using rip as routing protocols .. I'm getting updates from customer .Is it possible to block 224.0.0.9 multicast address ?

Regards

Karthick.M

Labels:
0 Helpful
6 Replies 6

Collin Clark
VIP Alumni
VIP Alumni

‎06-30-2008 05:36 AM

So you're running RIP as well? You could turn on passive interface (and should) if you don't need to share routes. You could also assist your customers in configuring RIP on their routers so they don't send RIP out their respective interfaces. There are other options as well, but we need a little more info to give you a more elegant response.

0 Helpful

Pavel Bykov
Level 5
Level 5

‎06-30-2008 05:58 AM

So do you want to NOT receive the updates, or you want to receive it using other method? like unicast/broadcast?

Passive-interface command under rip process will disable sending out updates on that interface.

Eg.

router rip

passive-interface fastethernet 0/1

will disable sending out updates on that interface.

0 Helpful

Pavel Bykov
Level 5
Level 5

‎06-30-2008 06:03 AM

To use broadcast instead of multicast, use "ip rip v2-broadcast" command on the INTERFACE where updates are being sent out.

To use unicast, you have to manually specify neighbor using "neighbor" command under the routing process. The catch is, that RIP is still going to send multicasts out the interface, so you have to combine "neighbor command" with the passive interface command.

0 Helpful

lee.reade
Level 4
Level 4
In response to Pavel Bykov

‎06-30-2008 06:11 AM

Hi,

If you want to block rip going out an interface then make that interface a passive interface, as mentioned by earlier poster.

If you want to block any rip routes coming into your router from a specific interface then just configure an access-list and apply to interface in the inbound direction, eg.

access-list 101 deny udp any eq rip any eq rip

access-list 101 permit any any

HTH,

Cheers,

LR

0 Helpful

karthick78
Level 1
Level 1
In response to lee.reade

‎06-30-2008 07:28 PM

Hi,

Thanks to everyone ... I hope access list will work out for me ...

Thanks buddy

Regards,

Karthik

0 Helpful

bvsnarayana03
Level 5
Level 5
In response to karthick78

‎06-30-2008 11:05 PM

ACL will completely block the updates from neighbor, which may leave you with no alternate path in case pri path fails.

It would be good to turn on the connected interface to passive, & specify a neighbor command so that updates are sent unicast,

"passive-interface se0/0"

"neighbor x.x.x.x"

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card