Example ACL to block IGMP packets on Port

Question

Hi
&nbsp;
I'm having trouble setting up an ACL to block inbound IGMP traffic on port 7.
I can see others have had this problem in the past but no solutions were posted. Even if i deny all on port 7 the IGMP packets are still getting through. I'd really appreciate it if someone could help me with this, The packets getting trough are IGMP Src 0.0.0.0 and dest 224.0.0.1

LaurentMa · Answer

Hi&nbsp;Pete0302
&nbsp;
Let me try to&nbsp;create these ACLs with you:&nbsp;
&nbsp;

Log into the M4300-8X8F CLI, enter the Enable mode then these commands:

(M4300-8X8F) #config(M4300-8X8F) (Config)#access-list 101 deny ip any 224.0.0.1 0.255.255.0(M4300-8X8F) (Config)#access-list 101 permit ip any any(M4300-8X8F) (Config)#ip access-list Rule102(M4300-8X8F) (Config-ipv4-acl)#deny igmp any host 224.0.0.1(M4300-8X8F) (Config-ipv4-acl)#permit ip any any(M4300-8X8F) (Config-ipv4-acl)#exit
&nbsp;
&nbsp;

Apply the rules to inbound traffic on port 1/0/7:&nbsp;

(M4300-8X8F) (Config)#interface 1/0/7(M4300-8X8F) (Interface 1/0/7)#ip access-group 101 in 1(M4300-8X8F) (Interface 1/0/7)#ip access-group Rule102 in 2(M4300-8X8F) (Interface 1/0/7)#exit(M4300-8X8F) (Config)#exit
&nbsp;
Let us know how it goes!
Regards,

Pete0302 · Answer

Sorry should have mentioned, the switch in question is a M4300-8X8F

&nbsp;

Forum Discussion

Example ACL to block IGMP packets on Port

2 Replies

Related Content

DHCP Snooping Block DNS Packet

Disneyplus.com blocked

Websites Blocked

Switch blocks EAPol packets despite EAPol Flood

RBR850 blocking certain websites

NETGEAR Academy

ProSupport for Business