The pim neighbor-policy command configures a policy for filtering PIM neighbors on an interface.
The undo pim neighbor-policy command restores the default setting.
By default, PIM neighbors on the interface are not filtered.
| Parameter | Description | Value |
|---|---|---|
| basic-acl-number | Specifies the basic ACL number. | The value is an integer that ranges from 2000 to 2999. |
GE interface view, XGE interface view, MultiGE interface view, 25GE interface view, 40GE interface view, 100GE interface view, Eth-Trunk interface view, GE sub-interface view, XGE sub-interface view, MultiGE sub-interface view, 25GE sub-interface view, 40GE sub-interface view, 100GE sub-interface view, Eth-Trunk sub-interface view, VLANIF interface view, loopback interface view, tunnel interface view
Usage Scenario
To prevent unauthorized neighbors from being involved in the PIM protocol, run the pim neighbor-policy command to configure a policy for filtering PIM neighbors and set the address range of PIM neighbors. The switch sets up neighbor relationships with the addresses matching the filtering rules and deletes the neighbors that do not match the filtering rules.
Prerequisites
IP multicast routing has been enabled using the multicast routing-enable command.
Configuration Impact
The pim neighbor-policy command and the acl command are used together. In the ACL view, set the address range of PIM neighbors by specifying source in the rule command.
Precautions
This command is valid for both PIM-DM and PIM-SM.
When configuring the neighbor filtering function on the interface, you must also configure the neighbor filtering function correspondingly on the PIM neighbor of the interface.
If a PIM device has established a neighbor relationship with the switch but its IP address is not in the configured range of valid neighbor addresses, the switch will no longer receive Hello messages from this PIM neighbor. When the holdtime of Hello messages expires, the neighbor relationship between the PIM device and the switch is terminated.
<HUAWEI> system-view [HUAWEI] acl number 2001 [HUAWEI-acl-basic-2001] rule permit source 10.4.4.4 0.0.0.0 [HUAWEI-acl-basic-2001] quit [HUAWEI] multicast routing-enable [HUAWEI] interface vlanif 100 [HUAWEI-Vlanif100] pim neighbor-policy 2001
<HUAWEI> system-view [HUAWEI] acl number 2001 [HUAWEI-acl-basic-2001] rule permit source 10.4.4.4 0.0.0.0 [HUAWEI-acl-basic-2001] quit [HUAWEI] multicast routing-enable [HUAWEI] interface gigabitethernet 0/0/1 [HUAWEI-GigabitEthernet0/0/1] undo portswitch [HUAWEI-GigabitEthernet0/0/1] pim neighbor-policy 2001