Gian,
I honestly don't remember. But it seems based on the information that the following is wrong. Specifies the standard IP access list number or name that describes a multicast group address. If no access list is specified, all SA request messages are ignored. Based on the configuration example it filters that SA requests from MSDP peer clients. It seems to make logical sense to me that way. But I would have to test to be certain though. If I have tested this in the past I don't remember. Regards, Tyson Scott - CCIE #13513 R&S, Security, and SP Managing Partner / Sr. Instructor - IPexpert, Inc. Mailto: <mailto:[email protected]> [email protected] Telephone: +1.810.326.1444, ext. 208 Live Assistance, Please visit: <http://www.ipexpert.com/chat> www.ipexpert.com/chat eFax: +1.810.454.0130 IPexpert is a premier provider of Self-Study Workbooks, Video on Demand, Audio Tools, Online Hardware Rental and Classroom Training for the Cisco CCIE (R&S, Voice, Security & Service Provider) certification(s) with training locations throughout the United States, Europe, South Asia and Australia. Be sure to visit our online communities at <http://www.ipexpert.com/communities> www.ipexpert.com/communities and our public website at <http://www.ipexpert.com/> www.ipexpert.com From: [email protected] [mailto:[email protected]] On Behalf Of Gian Paolo Sent: Tuesday, December 14, 2010 4:06 PM To: CCIE_RS OnlineStudyList Subject: [OSL | CCIE_RS] ip msdp filter-sa-request Hi, I've a question about the command: ip msdp filer-sa-request http://www.cisco.com/en/US/docs/ios/ipmulti/command/reference/imc_03.html#wp 1055553 ip msdp [vrf vrf-name] filter-sa-request {peer-address | peer-name} [list access-list] In the command reference description the access list should contain a multicast group address: list access-list (Optional) Specifies the standard IP access list number or name that describes a multicast group address. If no access list is specified, all SA request messages are ignored. In the example from the same command reference the access list contains a unicast address. ip msdp filter-sa-request 172.16.2.2 list 1 access-list 1 permit 192.4.22.0 0.0.0.255 The filter should permit SA requests from a MSDP peer only for groups matching the access-list. Is it an error in the command reference? Even in the configuration guide description the ACL should containt multicast group(s): http://www.cisco.com/en/US/docs/ios/ipmulti/configuration/guide/imc_msdp_im_ pim_sm_ps6441_TSD_Products_Configuration_Guide_Chapter.html#wp1055820 You can filter a subset of SA request messages from a specified peer based on groups defined in a standard access list by configuring the ip msdp filter-sa-request command with the optional list keyword and access-list argument. Issuing the form of the command effectively configures the router to honor only SA request messages from the MSDP peer that match the groups defined in a standard access list. SA request messages from the specified peer for other groups will be ignored. Gian Paolo
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com
