How to create Multicast access list

alonro002 · ‎05-04-2016

Hello,

On my Cisco 6500 i am getting error message :

039454: May 4 12:40:31.985 IDT: %MCAST-SP-3-QUERY_INT_MISMATCH: Snooping Querier received a non-matching query interval (125000 msec),
from querier address (192.168.254.254) on VLAN(85).Configured query-interval (60000 msec) .

information from sniffer :

13:28:04.562411 b2:c3:88:76:11:cc > 01:00:5e:00:00:01, ethertype IPv4 (0x0800), length 60: 192.168.254.254 > 224.0.0.1: igmp query v3 [max resp time 10s]

interface : Gi3/4

How can i create access list that prevent connection to the destination mac address : 01:00:5e:00:00:01 (igmp connection as u can see in the sniffer output).

thanks.

Mark Malone · ‎05-04-2016

Looks very similar to this bug if your on that image

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCts38007/?referring_site=bugquickviewredir

Bug Search

CSCts38007

Help |

Feedback

Saves search parameters so query can be run again in the future

*Search Name:

Select a group:

Group Name:

Search for:

Software:

Release:

No email updates

Send email updates to:

Query Interval mismatch msg appears on a sw where no querier configs

CSCts38007

Description

Symptom:

1) Following error message for vlan which is not configured for multicast/igmp.

<http://www.cisco.com/cgi-bin/Support/Errordecoder/index.cgi?action=search&c
ounter=0&paging=5&links=reference&index=all&query=MCAST-SP-3-QUERY_INT_MISMA
TCH> %MCAST-SP-3-QUERY_INT_MISMATCH: Snooping Querier received a
non-matching query interval (125000 msec),
from querier address (172.16.12.2) on VLAN(2015).Configured
query-interval (60000 msec)

2) only 1 line of the error message is visible in the local
logging. "Term mon" command has to be issued in order to see the entire
error message.

Conditions:

Seen in 12.2(33)SXJ1

Workaround:

The work around is to configure the same IGMP snooping querier interval on all
the boxes which are part of a Layer 2 network . This has to be done even if the
snooping querier is not configured on the box for a given VLAN.

Customer Visible

Add Notification

Save Bug

Open Support Case

The resolution of this defect introduces a change in behavior, or additional functionality, over previous releases

Was the description about this Bug Helpful?

(5)

Details

Last Modified:

Apr 18,2016

Status:

Fixed

Severity:

3 Moderate

Product:

Cisco Catalyst 6000 Series Switches

Support Cases:

34

Known Affected Releases:

(1)

12.2(32.8.11)SX503

Known Fixed Releases:

(8)

12.2(33)SXJ3

12.2(33)SXJ4

12.2(33)SXJ5

12.2(33)SXJ6

12.2(33)SXJ7

12.2(33)SXJ8

15.0(1)IA273.146

15.1(1)SY

Download software for Cisco Catalyst 6000 Series Switches

alonro002 · ‎05-05-2016

Hi,

thanks for the reply.

the multicast traffic came from this port :

interface GigabitEthernet3/4
switchport
switchport access vlan 85
switchport mode access
logging event link-status
spanning-tree bpdufilter enable

what i need to do ?

thanks !

Mark Malone · ‎05-05-2016

Theres a couple of things you can try depending what your IOS supports

Whats connected to that port ,just wondering as see bpdufilter on it

1 switchport block multicast under the interface

2 IGMP filter block the actual multicast address on the port from communicating with igmp snooping examples in doc below

http://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst4500/12-2/50sg/configuration/guide/Wrapper-46SG/multi.html

3 Use a mac access-list

http://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst3560/software/release/12-2_55_se/configuration/guide/3560_scg/swacl.html

4 Turn off multicast traffic on the edge device if its not required and causing issues