hi, I am _not_ doing multicast routing on 6500 platform, but would like to enable IGMP snooping. I am currently facilitating snooping by using an ASA firewall configured for just IGMP (no PIM, no inter-vlan mrouting). Apparently, the 6509 needs a Vlan interface with IGMP querier/mrouter enabled to facilitate setup of IGMP snooping in a vlan. So I have this configured and it appears to work with ASA. I am seeing very low PPS count for IGMP snooping, but am concerned about protecting the switch from any form of multicast "broadcast storms":

my_6509#sh ip igmp snooping rate-limit

Max IGMP messages incoming rate : Not configured
Vlan    Incoming IGMP rate (in pps)   
-----+---------------------------------
258     3

Can anyone direct me toward a IGMP multicast rate-limiting & tweaks best practice guidelines for the 6500 with a VS-S720-10G supervisor? I have two 6509 in a VSS pair configuration.

thx in advance,

Will

PS, here is sample ASA interface configuration if anyone is interested in making this work in a similar fashion. In my case, I wanted to _NOT_ create vlan interfaces on the 6500, as it seems like somewhat of a security violation, when everything should flow through ASA for L3 "routing":

!turn of mrouting on all interfaces:

Interface vlan1

  no mfib forwarding

Interface vlan2

  no mfib forwarding

!enable mcast routing

multicast-routing

!enable just igmp on the interface i need (vlan1 by default), disable PIM on all interfaces:

interface vlan2

  no igmp

interface vlan1

  no pim

interface vlan2

  no pim