Hello,
is it possible, to filter with an IP Filter only wanted/unwanted IP Multicast-Traffic in Bridge-Filter or on Switch-Rule?
Bridge-MDB shows currently many MDB Entrys from Clients, that my Streamers not have. I Think I’ts better to block these Multicast-Requests.
Another Question:
Can i block (evtl. via Script) more than 5 MDB Requests from one Client-Port?
thanks
Christian
You can prevent multicast traffic towards certain multicast MAC addresses from getting forwarded to other switch ports (including the CPU-facing one), so the bridge FDB (MAC-address-to-port mapping table) should not learn the source MAC addresses from these frames, but the FDB of the switch will nevertheless learn them. The switch FDB gets populated before the rules kick in. And the FDB of the switch chip is much smaller than the one of the bridge, as the latter uses the CPU RAM to store it whereas the switch chip uses its own embedded RAM, so even if you prevent those frames from reaching the bridge, your switch chip may start acting as a hub if the number of MAC addresses popping up exceeds its FDB size.
If you don’t need the remote devices connected to the switch chip ports to talk directly to each other and all the traffic goes via the CPU port anyway, you can disable the hardware forwarding on the switch chip, which may prevent the FDB from overflowing, but I have never tested that.