System information

Traffic/Security Filters

Filter Types and Operation

This list shows the filter created

to block (drop) traffic from

source port 5 (workstation "X") to

destination port 7 (server "A").

Notice that the filter allows

traffic to move from source port

5 to all other destination ports.

Figure 8-3. The Filter for the Actions Shown in Figure 8-2

Static Multicast Filters (5300xl Only)

This filter type enables the switch to forward or drop multicast traffic to a

specific set of destination ports. This helps to preserve bandwidth by reducing

multicast traffic on ports where it is unnecessary, and to isolate multicast

traffic to enhance security.

You can configure up to 16 static multicast filters (defined by the filter

command—page

8-12). However, if an IGMP-controlled filter for a joined

multicast group has the same multicast address as a static multicast filter

configured on a given port, the IGMP-controlled filter overrides the static

multicast filter configured on that port. Note that in the default configuration,

IGMP is disabled on VLANs configured in the switch. To enable IGMP on a

specific VLAN, use the vlan < vid > ip igmp command. (For more on this

command, refer to the chapter titled “Multimedia Traffic Control with IP

Multicast (IGMP)” in the Advanced Traffic Management Guide for your

switch.)

On the 5300xl switches, the total of static multicast filters and IGMP multicast

filters together can range from 389 to 420, depending on the current max-vlans

setting in the switch. If multiple VLANs are configured, then each filter is

counted once per VLAN in which it is used.

8-6