Configuring PIM Neighbor Filtering

To prevent some unknown devices from being involved in PIM, filtering PIM neighbors is required. An interface sets up neighbor relationships with only the addresses matching the filtering rules and deletes the neighbors unmatched with the filtering rules.

Prerequisites

Before adjusting control parameters for maintaining neighbor relationships, complete the following tasks:

Configuring a unicast routing protocol
Configuring Basic PIM-DM Functions

Context

To prevent some FW from being involved in PIM, filtering PIM neighbors is required.

Procedure

Access the system view.
system-view
Create a basic ACL and access its view.
acl [ number ] acl-number [ vpn-instance vpn-instance-name ]
Configure rules for the basic ACL.
rule [ rule-id ] { deny | permit } source { source-ip-address { 0 | source-wildcard } | address-set address-set-name | any }
Return to the system view.
quit
Access the interface view.
interface interface-type interface-number
Configure PIM neighbor filtering.
pim neighbor-policy basic-acl-number

When configuring the neighbor filtering function on the interface, you must also configure the neighbor filtering function correspondingly on the FW that sets up the neighbor relationship with the interface.
- If a peer matches an ACL and the action is permit, the local FW sets up a neighbor relationship with this peer.
- If a peer matches an ACL and the action is deny, the local FW does not set up a neighbor relationship with this peer.
- If a peer does not match any ACL rule, the local FW does not set up a neighbor relationship with this peer.
- If a specified ACL does not exist or does not contain rules, the local FW does not set up neighbor relationships with any peers.