8 ipv6 mld snooping vlan limit – PLANET WGSW-50040 User Manual

Commands for Security Function Chapter 6 Commands for TACACS+

command, MLD snooping is not enabled on this VLAN, this command will no be executed. When

disabling the L2 general querier function, MLD snooping will not be disabled along with it. Main

function of this command is sending general queries periodically to help the switches within this

segment learn mrouter port.

Comment:

There are three ways to learn mrouter port in MLD Snooping:

1. The port which receives MLD query messages

2. The port which receives multicast protocol packets and support PIM

3. The port statically configured.

Example:

Set VLAN 100 to L2 general querier.

Switch (config)# ipv6 mld snooping vlan 100 l2-general-querier

19.1.8 ipv6 mld snooping vlan limit

Command:

ipv6 mld snooping vlan < vlan-id > limit {group <g_limit> | source <s_limit>}

no ipv6 mld snooping vlan < vlan-id > limit

Function:

Configure number of groups the MLD snooping can join and the maximum number of sources in

each group.

Parameter:

vlan-id: VLAN ID, the valid range is <1-4094>

g_limit: <1-65535>, max number of groups joined

s_limit: <1-65535>, max number of source entries in each group, consisting of include source and

exclude source

Command Mode:

Global Mode

Default:

Maximum 50 groups by default, with each group capable with 40 source entries.

Usage Guide:

When number of joined group reaches the limit, new group requesting for joining in will be rejected

for preventing hostile attacks. To use this command, MLD snooping must be enabled on VLAN. The

“no” form of this command restores the default other than set to “no limit”. For the safety

considerations, this command will not be configured to “no limit”. It is recommended to use default

value and if layer 3 MLD is in operation, please make this configuration in accordance with the MLD

configuration as possible.