Downloads |
Table Of Contents
Per Interface mroute State Limit
Prerequisites for Per Interface mroute State Limit
Information About Per Interface mroute State Limit
Per Interface mroute State Limit Feature Design
Benefits of Per Interface mroute State Limit
How to Configure Per Interface mroute State Limit
Enabling mroute State Limit on the Outgoing Interfaces
Enabling mroute State Limit on the Incoming Interface
Verifying the Per Interface mroute State Limit
Configuration Examples for Per Interface mroute State Limit
Per Interface mroute State Limit: Example
Per Interface mroute State Limit
The mroute state is maintained by multicast routers for the incoming and outgoing interfaces for each source and group (S,G) pair. The state is used to determine which packets are to be discarded and which packets are to be forwarded, and each state entry in the routing table is referred to as an mroute. The Per Interface mroute State Limit feature limits the number of mroute states on an individual interface basis.
History for the Per Interface mroute State Limit Feature
Finding Support Information for Platforms and Cisco IOS Software Images
Use Cisco Feature Navigator to find information about platform support and Cisco IOS software image support. Access Cisco Feature Navigator at http://www.cisco.com/go/fn. You must have an account on Cisco.com. If you do not have an account or have forgotten your username or password, click Cancel at the login dialog box and follow the instructions that appear.
Contents
•
Prerequisites for Per Interface mroute State Limit
•
•
•
Prerequisites for Per Interface mroute State Limit
•
Information About Per Interface mroute State Limit
Before you configure the Per Interface mroute State Limit feature, you should understand the following concepts:
•
•
Per Interface mroute State Limit Feature Design
The state being limited is specified by a standard or extended access list.
•
•
•
•
The Per Interface mroute State Limit feature implements a method of limiting the amount of (*,G) and (S,G) mroute state by limiting the total number of times specific interfaces are allowed to appear respectively in the outgoing interface list (olist), as an incoming interface (rpf interface), or as an interface in which the multicast source (S) is connected.
Each time an mroute gets added or deleted, the first rpf, connected, or the in and out access list matches the mroute and has the interface as the incoming interface, the mroute is consulted. Source (S) must be on the incoming interface in order to match the connected access list.
Each time the interface gets added to or deleted from an mroute olist, the first out or in plus out access list that matches the mroute is consulted. The consulted access list is called the "limiter" or "accounter."
The accounter is incremented or decremented; however, if incrementing would exceed the configured maximum, adding is not allowed. Deleting is always allowed.
If the interface is a subinterface, the same algorithm applies to the corresponding main interface which accumulates its subinterface access accounting with its own limiters. Accounting is not aware of the main interface as the incoming interface and the main interface is not added to any outgoing access list.
If the group is Source Specific Multicast (SSM), accounting is not done for (*,G) because it is an internal invisible Cisco IOS state.
For optimization the following should be checked: If an IGMP or PIM join message on an interface would result in the creation of a state for which the interface already reached its out limit, then no state is created as it would serve no purpose without an olist.
Benefits of Per Interface mroute State Limit
•
•
How to Configure Per Interface mroute State Limit
This section contains the following procedures:
•
•
•
Enabling mroute State Limit on the Outgoing Interfaces
Perform this task to enable the outgoing interface for any mroute.
SUMMARY STEPS
1.
2.
3.
4.
5.
DETAILED STEPS
Enabling mroute State Limit on the Incoming Interface
This task shows how to enable the incoming interface for any mroute.
SUMMARY STEPS
1.
2.
3.
4.
5.
DETAILED STEPS
Enabling mroute State Limit on the Incoming Interface Where the Sender Source is Connected to the Interface
Perform this task to configure mroute limits for incoming interfaces where the source is connected to the interface.
SUMMARY STEPS
1.
2.
3.
4.
5.
DETAILED STEPS
Verifying the Per Interface mroute State Limit
To verify the configuration, use the show ip multicast limit command. Sample output is located in the "Configuration Examples for Per Interface mroute Limit" section on page 7.
SUMMARY STEPS
1.
2.
DETAILED STEPS
Step 1
This command displays the counters that the interfaces currently have for each configured access list.
Router# show ip multicast limitInterface Ethernet1/0Multicast Access Limitsout acl out-list (1 < max 32) exceeded 0rpf acl rpf-list (6 < max 32) exceeded 0con acl conn-list (0 < max 32) exceeded 0Step 2
The debug ip mrouting command can be used to display a limit increment, a decrement, or a denial to add an mroute in which the maximum for a standard access list was reached.
Router# debug ip mrouting limitMRL(0): incr-ed acl `rpf-list' to (13 < max 32), [n:0,p:0], (main) Ethernet1/0, (40.202.60.41, 225.30.200.60)MRL(0): decr-ed acl `rpf-list' to (10 < max 32), [n:0,p:0], (main) Ethernet1/0, (*, 225.40.202.60)MRL(0): Add mroute (42.43.0.43, 225.30.200.60) denied for Ethernet0/2, acl std-list, (16 = max 16)Configuration Examples for Per Interface mroute State Limit
This section provides the following configuration example:
•
Per Interface mroute State Limit: Example
The following example shows how to configure FastEthernet interface 1 to appear a maximum of 100 times in any mroute:
interface FastEthernet 1ip multicast limit out 15 100access-list 15 permit anyAdditional References
The following sections provide references related to the Per Interface mroute State Limit feature.
Related Documents
Multicast commands: complete command syntax, command mode, command history, defaults, usage guidelines, and examples
Cisco IOS IP Command Reference, Volume3 of 4: Multicast, Release 12.3T
Multicast configuration tasks
"Configuring IP Multicast Routing" chapter of Part 3 of the Cisco IOS IP Configuration Guide, Release 12.3
Standards
No new or modified standards are supported by this feature, and support for existing standards has not been modified by this feature.
—
MIBs
RFCs
No new or modified RFCs are supported by this feature, and support for existing RFCs has not been modified by this feature.
—
Technical Assistance
Command Reference
This section documents new and modified commands only.
•
•
•
•
clear ip multicast limit
To clear IP multicast limit exceeded counters, use the clear ip multicast limit command in privileged EXEC mode.
clear ip multicast limit [interface type number]
Syntax Description
interface type number
(Optional) An interface that has been limited by the ip multicast limit command.
Command Modes
Privileged EXEC
Command History
Usage Guidelines
Use this command to clear limit exceeded counters for IP multicast limits.
The following example shows how to delete the limit exceeded counters for FastEthernet interface 1:
clear ip multicast limit interface FastEthernet 1Related Commands
ip multicast limit
Configures an interface to be limited to a maximum number of entries in multicast state for all groups and channels matched by an access list.
debug ip mrouting limit
To debug mroute limiting and to display the reason for the limiting, use the debug ip mrouting limit command in privileged EXEC mode. To disable debugging output, use the no form of this command.
debug ip mrouting limit [group-name]
no debug ip mrouting limit
Syntax Description
Privileged EXEC
Command History
Usage Guidelines
This command may generate a substantial amount of output. Use the optional group-name argument to limit the output to a single multicast group.
Examples
The following example shows a limit increment, a decrement, and a denial to add an mroute in which the maximum for a standard access list was reached:
Router# debug ip mrouting limitMRL(0): incr-ed acl `rpf-list' to (13 < max 32), [n:0,p:0], (main) Ethernet1/0, (40.202.60.41, 225.30.200.60)MRL(0): decr-ed acl `rpf-list' to (10 < max 32), [n:0,p:0], (main) Ethernet1/0, (*, 225.40.202.60)MRL(0): Add mroute (42.43.0.43, 225.30.200.60) denied for Ethernet0/2, acl std-list, (16 = max 16)Related Commands
ip multicast limit
To configure an interface to be limited to a maximum number of entries in the multicast state for all groups and channels permitted by an access list, use the ip multicast limit command in interface configuration mode. To remove the limit, use the no form of this command.
ip multicast limit [connected | rpf | out out-list] access-list max-entries
no ip multicast limit [connected | rpf | out out-list] access-list max-entries
Syntax Description
Defaults
Multicast limit is disabled.
Command Modes
Interface configuration
Command History
Usage Guidelines
Use the ip multicast limit command to configure an interface to be limited to a maximum number of entries in the multicast state for all groups and channels permitted by the access list.
The following rules govern the ip multicast limit command:
•
•
•
•
•
Examples
The following example shows how to set up a limit for directly connected sources on an interface:
interface FastEthernet 1ip multicast limit connected 3 2endRelated Commands
show ip multicast
To display IP multicast limit information, use the show ip multicast command in user EXEC or privileged EXEC mode.
show ip multicast [global | interface | limit | vrf] interface-type interface-number
Syntax Description
Command Modes
User EXEC
Privileged EXECCommand History
Usage Guidelines
The multicast routing table is populated by creating (S,G) entries from (*,G) entries. The asterisk (*) refers to all source addresses, the "S" refers to a single source address, and the "G" is the destination multicast group address. In creating (S,G) entries, the software uses the best path to that destination group found in the unicast routing table (that is, through Reverse Path Forwarding [RPF]).
The output for the show ip multicast command will display the IP multicast information configured on each interface.
Examples
The following sample output shows the counters that the interfaces currently have for each configured access list.
Router# show ip multicast limit
Interface Ethernet1/0Multicast Access Limitsout acl out-list (1 < max 32) exceeded 0rpf acl rpf-list (6 < max 32) exceeded 0con acl conn-list (0 < max 32) exceeded oThe following sample output shows that there have been 36 attempts to increase the counter above the configured maximum.
Router# show ip multicast limit
Interface Ethernet0/2Multicast Access Limitsi+o acl std-list (15 < max 16) exceeded 36Related Commands
ip multicast limit
Configures an interface to limit the multicast state for all groups and channels permitted by an access list to a maximum number of entries.
Copyright © 2005 Cisco Systems, Inc. All rights reserved.
