Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
387
Views
0
Helpful
2
Replies

NACLs and Multicast

jthomp7626
Level 1
Level 1

‎01-08-2014 09:17 AM - edited ‎03-04-2019 10:01 PM

   Hello,

I am trying to see if the following can work.

access-list extended Out

     permit udp host 239.10.10.1 range 1020 1030 any

access-list extended In

     permit udp any host 239.10.10.1 range 1020 1030

int vlan 10

     ip access-group Out out

     ip access-group In in

So far no luck. Any ideas? thank you

Labels:
0 Helpful
2 Replies 2

Richard Burts
Hall of Fame
Hall of Fame

‎01-08-2014 09:24 AM

Especially as far as your Out access list is concerned - the source address of an IP packet will never the be multicast address. The source is always a unicast host.

HTH

Rick

HTH

Rick
0 Helpful

margalla
Cisco Employee
Cisco Employee

‎01-09-2014 07:56 PM

As already said, a multicast address shouled never be a source address so the Out ACL is wrong on its face.

The In ACL should allow udp traffic to destinaton 239.10.10.1 and ports 1020-1030 into the router on vlan 10. Is that what you are trying to do?

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card