Tanks for your answer, do I need to keep the command "ip multicast boundary {access-list}" ?

Br,

Jean-Yves

I think you can use the two for safety:

- inside your vlan your receivers will are only allowed to join some multicast group via igmp access-group

- ip multicast boundary add another security by filtering control and also data plane traffic in multicast

Stephane

OK,

I redo my configuration to have the following one :

!Access-list 101 permit igmp 10.0.1.0 0.0.0.255 any

!Access-list 101 permit igmp 10.0.2.0 0.0.0.255 any

!Access-list 101 deny igmp any any

!Access-list 102 permit igmp 10.0.3.0 0.0.0.255 any

!Access-list 102 permit igmp 10.0.4.0 0.0.0.255 any

!Access-list 102 deny igmp any any

!Access-list 103 permit igmp 10.0.5.0 0.0.0.255 any          

!Access-list 102 deny igmp any any

!

!interface vlan 11

! description VLAN 1

! ip address 10.0.1.253 255.255.255.0

! ip pim dense-mode

! ip multicast boundary 101

! ip igmp access-group 101

! ip igmp version 3

! mls rp vtp-domain {VTP_Domain}

! mls rp ip

!

!interface vlan 12

! description VLAN 2

! ip address 10.0.2.253 255.255.255.0

! ip pim dense-mode

! ip multicast boundary 101

! ip igmp access-group 101

! ip igmp version 3

! mls rp vtp-domain {VTP_Domain}

! mls rp ip

!

!interface vlan 13

! description VLAN 3

! ip address 10.0.3.253 255.255.255.0

! ip pim dense-mode

! ip multicast boundary 102

! ip igmp access-group 102

! ip igmp version 3

! mls rp vtp-domain {VTP_Domain}

! mls rp ip

!

!interface vlan 14

! description VLAN 4

! ip address 10.0.4.253 255.255.255.0

! ip pim dense-mode

! ip multicast boundary 102

! ip igmp access-group 102

! ip igmp version 3

! mls rp vtp-domain {VTP_Domain}

! mls rp ip

!

!interface vlan 15

! description VLAN 5

! ip address 10.0.3.253 255.255.255.0

! ip pim dense-mode

! ip multicast boundary 103

! ip igmp access-group 103

! ip igmp version 3

! mls rp vtp-domain {VTP_Domain}

! mls rp ip

When I try , the multicast packets are not routed.

When I disable the command "ip multicast boundary {access-list}", the multicast packets are routed.

How can you explain this ?

Br,

Jean-Yves ANDREOLETTI

You have misinterpret the configuration i gave to you, you need to have 2 differents access-list in multicast boundary and igmp access-group.

Keep your first access-list you use (101 & 102 with ip statement) in your first post for multicast boundary and use these i gave you for igmp access-group (111 & 112 with igmp statement).

Stephane

OK, I redo my configuration like that:

!

!Access-list 101 permit ip 10.0.1.0 0.0.0.255 any

!Access-list 101 permit ip 10.0.2.0 0.0.0.255 any

!Access-list 102 permit ip 10.0.3.0 0.0.0.255 any

!Access-list 102 permit ip 10.0.4.0 0.0.0.255 any

!Access-list 103 permit ip 10.0.5.0 0.0.0.255 any   

!

!Access-list 111 permit igmp 10.0.1.0 0.0.0.255 any

!Access-list 111 permit igmp 10.0.2.0 0.0.0.255 any

!Access-list 111 deny igmp any any

!Access-list 112 permit igmp 10.0.3.0 0.0.0.255 any

!Access-list 112 permit igmp 10.0.4.0 0.0.0.255 any

!Access-list 112 deny igmp any any

!Access-list 113 permit igmp 10.0.5.0 0.0.0.255 any          

!Access-list 113 deny igmp any any

!

!interface vlan 11

! description VLAN 1

! ip address 10.0.1.253 255.255.255.0

! ip pim dense-mode

! ip multicast boundary 101

! ip igmp access-group 111

! ip igmp version 3

! mls rp vtp-domain {VTP_Domain}

! mls rp ip

!

!interface vlan 12

! description VLAN 2

! ip address 10.0.2.253 255.255.255.0

! ip pim dense-mode

! ip multicast boundary 101

! ip igmp access-group 111

! ip igmp version 3

! mls rp vtp-domain {VTP_Domain}

! mls rp ip

!

!interface vlan 13

! description VLAN 3

! ip address 10.0.3.253 255.255.255.0

! ip pim dense-mode

! ip multicast boundary 102

! ip igmp access-group 112

! ip igmp version 3

! mls rp vtp-domain {VTP_Domain}

! mls rp ip

!

!interface vlan 14

! description VLAN 4

! ip address 10.0.4.253 255.255.255.0

! ip pim dense-mode

! ip multicast boundary 102

! ip igmp access-group 112

! ip igmp version 3

! mls rp vtp-domain {VTP_Domain}

! mls rp ip

!

!interface vlan 15

! description VLAN 5

! ip address 10.0.3.253 255.255.255.0

! ip pim dense-mode

! ip multicast boundary 103

! ip igmp access-group 113

! ip igmp version 3

! mls rp vtp-domain {VTP_Domain}

! mls rp ip

But I have still the same problem of multicast packet routing that I can correct by disabling command ip multicast boundary on all interfaces.

Jean-Yves