Drop multicast (RIP) mac address in the CAM

Unanswered Question
Dec 18th, 2009

Hello,

I'm trying to figure out if this is possible or how else it could be done. I would like to drop any traffic on a switch going to the multicast mac address of RIPv2 updates.

So I tried this:

SW4(config)#mac address-table static 0100.5e00.0009 vlan 146 drop
%Only unicast addresses can be configured to be dropped

But it does not let me do that. Does anyone else have any other ideas if this is possible another way?

Thank you.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 3.5 (2 ratings)
Loading.
Federico Coto F... Fri, 12/18/2009 - 19:56

There are Port Access Lists (PACLs) or VLAN Access Lists (VACLs) that can filter traffic based on L2 parameters (MAC addresses)

There are also EtherType ACLs that filter based on L2

I haven't tried it, and I'm not sure but I think the're only supported on the 6500 series.

What model of Switch are you trying to implement this into?

Federico.

Reza Sharifi Fri, 12/18/2009 - 20:04

Hi,

If you are trying to block RIP updates towards a certain device, you can just do a "passive-interface" for that particular interface so no updates are send for that interface, or do a "passive-interface default" which turns off updates to all interfaces and then enable specific interfaces you want to send RIP updates.

HTH

Reza

Actions

This Discussion