12-28-2010 05:49 AM - edited 03-06-2019 02:44 PM
Just a quick question if I configure an ACL on an interface and a boundary list on the same interface will the interface ACL override the boundary ACL? For example.
access list 101 permit tcp any any eq 443
access list 101 deny any
access list 99 permit host 226.10.10.10
acesss list 99 deny any
interface fa0/0
ip add 10.1.1.1 255.255.255.252
ip access-group 101 out
ip multicast boundary 99
With this would i essentially deny all multicast?
Solved! Go to Solution.
12-28-2010 01:31 PM
Hello Frank,
your understanding is correct only multicast packets locally generated like an OSPF hello can be sent out this interface
so you need to modify ACL 101 or to use a different one in order to allow multicast packets to be forwarded out this interface
the boundary ACL does a different job deciding which multicast streams can have the interface in their outgoing interface list.
see
http://www.cisco.com/en/US/docs/ios/ipmulti/command/reference/imc_03.html#wp1068105
Hope to help
Giuseppe
12-28-2010 01:31 PM
Hello Frank,
your understanding is correct only multicast packets locally generated like an OSPF hello can be sent out this interface
so you need to modify ACL 101 or to use a different one in order to allow multicast packets to be forwarded out this interface
the boundary ACL does a different job deciding which multicast streams can have the interface in their outgoing interface list.
see
http://www.cisco.com/en/US/docs/ios/ipmulti/command/reference/imc_03.html#wp1068105
Hope to help
Giuseppe
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide