[c-nsp] Securing multicast
Eugeniu Patrascu
eugen at imacandi.net
Fri May 16 07:51:32 EDT 2014
On Thu, May 15, 2014 at 11:39 PM, selamat pagi <ketimun at gmail.com> wrote:
> We just introduces Pim-SM to our network.
> Now we encuntered a security issue:
> 2 PC connected to the same switch, 1 is allowed to join group X, the other
> PC should not be able to receive data from group X.
> The switch ports of those PC could be different every day and this issue
> could concern several hundered users in future.
>
> Is there a way to authenticate multicast users?
> Or how can such an issue be solved?
>
> Any ideas highly appreciated
>
You can look at 802.1x authentication which can dynamically apply ACLs on
the ports on which you can block access to specific multicast groups.
Regards,
Eugeniu
More information about the cisco-nsp
mailing list