Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Limit HSRP multicast to HSRP speakers only!

Hi All,

Is there any way to limit the HSRP multicast traffic (udp 1895) to only the HSRP speakers.

My downstream firewalls are being bombing with the unwanted HSRP udp traffic every second!!!

Thanks a lot for your expertise.

Oct 24 2007 21:56:42: %ASA-7-710005: UDP request discarded from x.x.x.x/1985 to touchdown:224.0.0.2/1985

Oct 24 2007 21:56:43: %ASA-7-710005: UDP request discarded from x.x.x.x/1985 to touchdown:224.0.0.2/1985

Oct 24 2007 21:56:45: %ASA-7-710005: UDP request discarded from x.x.x.x/1985 to touchdown:224.0.0.2/1985

Oct 24 2007 21:56:46: %ASA-7-710005: UDP request discarded from x.x.x.x/1985 to touchdown:224.0.0.2/1985

Richard

2 REPLIES
Silver

Re: Limit HSRP multicast to HSRP speakers only!

May be the problem is that they you used inside interface set to x.x.x.x instead of y.y.y.y ( Correct Ip address ) verify that one. I think after you changed the right ip address it will work.

New Member

Limit HSRP multicast to HSRP speakers only!

It is possible to limit only the HSRP routers on a segment from receiving the HSRP messages, perhaps by using a Port ACL on the connecting switch.  But it sounds like you just want your firewall to ignore these messages. To do that simply disable that log message or change the message severity level on the ASA.

ASA(config)# no logging message 710005

http://www.ciscopress.com/articles/article.asp?p=424447&seqNum=3

cheers

mark

826
Views
0
Helpful
2
Replies