Unanswered Question
Feb 23rd, 2009
User Badges:


Configure R2 as the RP for the multicast group

R5 should be the RP for all other multicast groups.


1. access-list 10 permit

2. access-list 11 deny

3.access-list 11 permit any

ip pim rp-address 10

ip pim rp-address 11


R2 ip address is

R5 ip address is

According to the above PIM question,since there is an exclusive deny at the end of all access-list (10) statement, is the second line of the access-list needed?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Harold Ritter Mon, 02/23/2009 - 07:33
User Badges:
  • Cisco Employee,

The second line is actually for ACL 11, not ACL 10.

The logic for ACL 11 is to first deny group, which is taken care of by R2 and then accept everything else.


Just Kennie Tue, 02/24/2009 - 10:08
User Badges:

But since access-list is executed in branches,then group would have been taken care of by access-list 10 and it wont get to the second statement....Is the second statement still neccessary ?

Jon Marshall Tue, 02/24/2009 - 10:17
User Badges:
  • Super Blue, 32500 points or more
  • Hall of Fame,

    Founding Member

  • Cisco Designated VIP,

    2017 LAN, WAN

As Harold has pointed out the deny statement is part of acl 11.

You are correct in what you say about lines within an access-list being executed in order but this doesn't apply to different access-lists ie. without the deny line at the start of acl 11 then R5 would become the RP for as well.



This Discussion