We have a switch with two Vlans configured, Vlan 210 and 61.
We have a server on Vlan 210 (172.20.210.150 port gi2/21) which transmits multicast traffic throughout this switch and beyond onto our network.
We would like to prevent the multicast traffic originating from the server 172.20.210.150 (gi2/21) from reaching a WAN router on Vlan 61 (172.20.61.50 port gi2/23).
The multicast traffic from 172.20.210.150 must be filtered before it reaches the port on the switch (gi2/23) where the WAN router is patched too.
All other traffic, including multicast from a different source, must be allowed to pass through to the WAN router and therefore over our WAN infrastructure.
Many other servers are using the 210 Vlan but the WAN router is isolated on it’s own in vlan 61.
Please can someone advise if this can be done and the ACL config required. I assume as we require the multicast traffic to be filtered before it reaches the WAN router interface we’d apply the access-list group to the VLAN rather than the port interface?