Drop multicast (RIP) mac address in the CAM

Unanswered Question
Dec 18th, 2009
User Badges:

Hello,

I'm trying to figure out if this is possible or how else it could be done. I would like to drop any traffic on a switch going to the multicast mac address of RIPv2 updates.


So I tried this:

SW4(config)#mac address-table static 0100.5e00.0009 vlan 146 drop
%Only unicast addresses can be configured to be dropped


But it does not let me do that. Does anyone else have any other ideas if this is possible another way?


Thank you.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 3.5 (2 ratings)
Loading.
Federico Coto F... Fri, 12/18/2009 - 19:56
User Badges:
  • Green, 3000 points or more

There are Port Access Lists (PACLs) or VLAN Access Lists (VACLs) that can filter traffic based on L2 parameters (MAC addresses)

There are also EtherType ACLs that filter based on L2


I haven't tried it, and I'm not sure but I think the're only supported on the 6500 series.


What model of Switch are you trying to implement this into?


Federico.

Reza Sharifi Fri, 12/18/2009 - 20:04
User Badges:
  • Super Bronze, 10000 points or more
  • Cisco Designated VIP,

    2017 LAN

Hi,


If you are trying to block RIP updates towards a certain device, you can just do a "passive-interface" for that particular interface so no updates are send for that interface, or do a "passive-interface default" which turns off updates to all interfaces and then enable specific interfaces you want to send RIP updates.


HTH

Reza

Actions

This Discussion

Related Content