register-policy (IPv6)

Usage Scenario

To prevent the attack of invalid Register messages, you can configure devices to receive or deny Register messages according to the packet filtering rules.

If the ACL rejects an (S, G) entry contained in a Register message or the ACL does not filter this entry, the RP sends a Register-Stop message to the DR on the source side to stop the registration of this multicast data stream.

The register-policy command and the acl ipv6 command are used together. In the ACL6 view, you can set the multicast source address range by specifying the source parameter in the rule command, and set the multicast group address range by specifying the destination parameter in the rule command.

The configurations of the IPv6 Named ACL and the advanced ACL are the same, and can implement filtering of both source addresses and multicast group addresses. The Named ACL can also be configured with the time-range parameter.

Prerequisites

IPv6 multicast routing has been enabled globally using the multicast ipv6 routing-enable command in the system view.

Precautions

When the register-policy command is used on the RP, only Register messages matching the rule of the ACL are received by the RP. If an undefined ACL is specified, the RP denies all Register messages.

This command is valid for only PIM-SM (IPv6).

The register-policy command takes effect for only subsequently received Register messages. The multicast entries that have been registered successfully are not deleted and can still be used for multicast data forwarding.