Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Drop multicast (RIP) mac address in the CAM

Hello,

I'm trying to figure out if this is possible or how else it could be done. I would like to drop any traffic on a switch going to the multicast mac address of RIPv2 updates.

So I tried this:

SW4(config)#mac address-table static 0100.5e00.0009 vlan 146 drop
%Only unicast addresses can be configured to be dropped

But it does not let me do that. Does anyone else have any other ideas if this is possible another way?

Thank you.

Everyone's tags (2)
2 REPLIES

Re: Drop multicast (RIP) mac address in the CAM

There are Port Access Lists (PACLs) or VLAN Access Lists (VACLs) that can filter traffic based on L2 parameters (MAC addresses)

There are also EtherType ACLs that filter based on L2

I haven't tried it, and I'm not sure but I think the're only supported on the 6500 series.

What model of Switch are you trying to implement this into?

Federico.

VIP Super Bronze

Re: Drop multicast (RIP) mac address in the CAM

Hi,

If you are trying to block RIP updates towards a certain device, you can just do a "passive-interface" for that particular interface so no updates are send for that interface, or do a "passive-interface default" which turns off updates to all interfaces and then enable specific interfaces you want to send RIP updates.

HTH

Reza

1172
Views
7
Helpful
2
Replies