Filtering msdp source-group pairs, Filtering incoming source-active messages – Brocade TurboIron 24X Series Configuration Guide User Manual
Page 869
Brocade TurboIron 24X Series Configuration Guide
835
53-1003053-01
Multicast Source Discovery Protocol (MSDP)
Filtering MSDP source-group pairs
The following commands allow you to filter individual source-group pairs in MSDP Source-Active
messages:
•
sa-filter in – Filters source-group pairs received in Source-Active messages from an MSDP
neighbor
•
sa-filter originate – Filters source-group pairs in Source-Active messages in advertisements to
an MSDP neighbor
Filtering incoming source-active messages
The following example configures filters for incoming Source-Active messages from three MSDP
neighbors:
•
For peer 2.2.2.99, all source-group pairs in Source-Active messages from the neighbor are
filtered out (dropped).
•
For peer 2.2.2.97, all source-group pairs except those with 10.x.x.x as the source are
permitted.
•
For peer 2.2.2.96, all source-group pairs except those associated with RP 2.2.42.3 are
permitted.
Example
The following commands configure an IP address on port 3/1. This is the port on which the MSDP
neighbors will be configured.
TurboIron(config)#interface ethernet 3/1
TurboIron(config-if-3/1)#ip address 2.2.2.98/24
TurboIron(config-if-3/1)#exit
The following commands configure a loopback interface. The Layer 3 Switch will use this interface
as the source address for communicating with the MSDP neighbors.
TurboIron(config)#interface loopback 1
TurboIron(config-lbif-1)#ip address 9.9.9.8/32
TurboIron(config-lbif-1)#exit
The following commands configure extended ACLs. The ACLs will be used in route maps, which will
be used by the Source-Active filters.
The following commands configure the route maps.
The following commands enable MSDP and configure the MSDP neighbors on port 3/1.
TurboIron(config)#access-list 123 permit 10.0.0.0 0.255.255.255 any
TurboIron(config)#access-list 124 permit 2.2.42.3 0.0.0.0 any
TurboIron(config)#access-list 125 permit any any
TurboIron(config)#route-map msdp_map deny 1
TurboIron(config-routemap msdp_map)#match ip address 123
TurboIron(config-routemap msdp_map)#exit
TurboIron(config)#route-map msdp2_map permit 1
TurboIron(config-routemap msdp2_map)#match ip address 125
TurboIron(config-routemap msdp2_map)#exit
TurboIron(config)#route-map msdp2_rp_map deny 1
TurboIron(config-routemap msdp2_rp_map)#match ip route-source 124
TurboIron(config-routemap msdp2_rp_map)#exit