25-7
Catalyst 3550 Multilayer Switch Software Configuration Guide
78-11194-03
Chapter 25 Configuring MSDP
Configuring MSDP
Beginning in privileged EXEC mode, follow these steps to enable the caching of source/group pairs:
Note
An alternative to this command is the ip msdp sa-request global configuration command, which
causes the multilayer switch to send an SA request message to the MSDP peer when a new member
for a group becomes active. For more information, see the next section.
To return to the default setting (no SA state is created), use the no ip msdp cache-sa-state global
configuration command.
This example shows how to enable the cache state for all sources in 171.69.0.0/16 sending to
groups 224.2.0.0/16:
Switch(config)# ip msdp cache-sa-state 100
Switch(config)# access-list 100 permit ip 171.69.0.0 0.0.255.255 224.2.0.0 0.0.255.255
Command
Purpose
Step 1
configure terminal
Enter global configuration mode.
Step 2
ip msdp cache-sa-state [list
access-list-number]
Enable the caching of source/group pairs (create an SA state). Those
pairs that pass the access list are cached.
For list access-list-number, the range is 100 to 199.
Step 3
access-list access-list-number {deny |
permit} protocol source source-wildcard
destination destination-wildcard
Create an IP extended access list, repeating the command as many times
as necessary.
•
For access-list-number, the range is 100 to 199. Enter the same
number created in Step 2.
•
The deny keyword denies access if the conditions are matched. The
permit keyword permits access if the conditions are matched.
•
For protocol, enter ip as the protocol name.
•
For source, enter the number of the network or host from which the
packet is being sent.
•
For source-wildcard, enter the wildcard bits in dotted decimal
notation to be applied to the source. Place ones in the bit positions
that you want to ignore.
•
For destination, enter the number of the network or host to which
the packet is being sent.
•
For destination-wildcard, enter the wildcard bits in dotted decimal
notation to be applied to the destination. Place ones in the bit
positions that you want to ignore.
Recall that the access list is always terminated by an implicit deny
statement for everything.
Step 4
end
Return to privileged EXEC mode.
Step 5
show running-config
Verify your entries.
Step 6
copy running-config startup-config
(Optional) Save your entries in the configuration file.