pim silent

By default, the PIM silent function is not enabled on an interface.

To prevent malicious hosts from constructing pseudo PIM Hello messages to attack the FW, you can configure the pim silent command on the interface directly connected to the host network segment to set the interface to PIM silent mode.After the interface enters the silent state, the interface is forbidden to receive or forward any PIM packet. All PIM neighbors and PIM state machines on this interface are deleted. Then, this interface automatically becomes the Designated router (DR). The IGMP function on the interface, however, is not affected.

The PIM silent function applies only to the interface directly connected to the host network segment, and only one PIM device can be connected to this network segment.

You must run the multicast routing-enable command to enable the multicast function before using the command.

If PIM silent is enabled on the interface connected to a FW, the PIM neighbor relationship cannot be set up and a multicast fault may occur.

If the host network segment is connected to multiple FWs and PIM silent is enabled on multiple interfaces, the interfaces become static DRs. Therefore, multiple DRs exist in this network segment, and a fault occurs.

This command and pim timer dr-switch-delay command are mutually exclusive.