3Com S7902E Command Reference Manual - page 1168
1-11
crp-policy (PIM view)
Syntax
crp-policy acl-number
undo crp-policy
View
Public instance PIM view, VPN instance PIM view
Default Level
2: System level
Parameters
acl-number
: Advanced ACL number, in the range of 3000 to 3999. When the ACL is defined, the
source
keyword in the
rule
command specifies the address of a C-RP and the
destination
keyword specifies
the address range of the multicast groups that the C-RP will serve.
Description
Use the
crp-policy
command to configure a legal C-RP address range and the range of served
multicast groups, so as to guard against C-RP spoofing.
Use the
undo crp-policy
command to remove the restrictions in C-RP address ranges and the ranges
of served multicast groups.
By default, there are no restrictions on C-RP address ranges and the address ranges of served groups,
namely all received C-RP messages are accepted.
Note that the
crp-policy
command filters the multicast group ranges advertised by C-RPs based on the
group prefixes. For example, if the multicast group range advertised by a C-RP is 224.1.0.0/16 while the
legal group range defined by the
crp-policy
command is 224.1.0.0/30, the multicast groups in the
range of 224.1.0.0/16 are allowed to pass.
Related commands:
c-rp
.
Examples
# In the public instance, configure a C-RP address range so that only routers in the address range of
1.1.1.1/24 can be C-RPs
[Sysname] acl number 3000
[Sysname-acl-adv-3000] rule permit ip source 1.1.1.1 0 0.0.255
[Sysname-acl-adv-3000] quit
[Sysname] pim
[Sysname-pim] crp-policy 3000
display pim bsr-info
Syntax
display pim
[
all-instance
|
vpn-instance vpn-instance-name
]
bsr-info