[c-nsp] Passive pim interface
Pekka Savola
pekkas at netcore.fi
Tue May 16 02:01:05 EDT 2006
On Tue, 16 May 2006, Sergey Velikanov [Intelsoft] wrote:
> Brandon Bennett wrote:
>> Wouldn't passive interface be the same as turning pim off for his vlan
>> interface? I am not quite sure I understand what you want.
...
> if I turn off pim on interface vlan3 users in client's net lost ability to watch ipTV.
Yes, implementations typically require PIM to be enabled to be able to
use multicast on the interface.
Your best bet is probably filtering out PIM messages in interface
input/output access lists. That's probably the effect you're looking
for..
There's some discussion of PIM threats in this context, also calling
out for 'pim passive mode' at:
http://www.netcore.fi/pekkas/ietf/draft-savola-pim-lasthop-threats-01.txt
--
Pekka Savola "You each name yourselves king, yet the
Netcore Oy kingdom bleeds."
Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings
More information about the cisco-nsp
mailing list