Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
716
Views
0
Helpful
0
Replies

C9500 - Issue when using Multicast with ACL

jhenkenhaf
Level 1
Level 1

‎03-07-2019 04:43 AM

Hi everybody,

 

today I did some troubleshooting on customer site. 

Following setup:

 - L2 Multicast, one source and multiple end-devices on the same vlan

 - inbound ACL on the core-VLAN-interface that only permits certain traffic (DNS, DHCP, ...)

 

We now realized that, when a multicast-stream is active, DHCP packets are not handled correctly. Debug on the Core-Router (which handles DHCP-relay) shows that there are very few requests, and they come with a huge delay. So we run into timeouts and clients will not get an IP address.

What intrigues me the most is, that other VLANs (that have nothing to do with the one where multicast is active, nor are affected by the ACL) also are affected. 

 

Fixing is possible in 2 ways (at least, those 2 we found)

 - disable the streamer port (or set it to a different vlan)

 - remove/change the ACL (to specifically allow UDP:1234, the port that is used for our VLC-stream receivers)

None of these (at least from what I learned about Routing/Switching so far) should have an impact on DHCP/relay.

 

HW: C9500X, SW: 16.10.1, Virtual Stackwise

 

Any ideas and help are welcome :)

 

best regards,

Jochen

1 person had this problem
Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card