
In a [Multicast](/multicast) topology, it is possible to perform [IGMP](/igmp) filtering.  

Multicast IGMP membership report messages include the [multicast group addresses](/multicast-ipv4-address-space) that our receivers want to join. By default, all multicast groups will be accepted.  It is possible to filter certain multicast groups by configuring IGMP filtering on a multicast router or on a switch where [IGMP snooping](/igmp-snooping) is enabled. 

This can be achieved using either standard or extended [access lists](/acl).  However, there are some peculiarities that must be taken into account when implementing IGMP filtering.

As it is defined, a standard access list will match the source [IPv4](/ipv4) (or [IPv6](/ipv6)) address.  However, this is the case only when you apply the ACL on an interface.  When applied to IGMP filtering,  you are using the `ip igmp access-group` command like so:

```
R1(config)#ip access-list standard LIMIT_IGMP
R1(config-std-nacl)#deny host 239.2.2.2

R1(config)#interface FastEthernet 0/0
R1(config-if)#ip igmp access-group LIMIT_IGMP
```

to reference the ACL to match a particular multicast IP address. In this case, the multicast group will be matched.  So in this scenario there is really no concept of source or destination address. It simply restricts a host from joining the multicast group indicated in the ACL.

Now, when using extended ACLs, the command is used to restrict receiver hosts on a subnet to membership to only the (S,G) channels that are permitted by an extended IP access list.

Note that only IGMPv3 accommodates the extended access lists which allow you to leverage [source-specific multicast (SSM)](/multicast-source-specific-multicast-ssm).  In the extended access list, you can indicate the source of the multicast traffic as an additional parameter. 

Links:

https://forum.networklessons.com/t/igmp-filter/1343/33?u=lagapides

https://networklessons.com/cisco/ccie-routing-switching/igmp-filter

https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/ipmulti/command/imc-cr-book/imc_i1.html#wp9202555670

IGMP - filtering using ACLs

FHRP Load Balancing Behavior

FHRP Protocols

FHRP communication path of keepalives

Fiber optic types

Fiber optics - Multi mode fiber optics characteristics

Fiber optics - Single mode fiber optics characteristics

Fiber optics - color coding

Fiber optics - connectors

FlexVPN Hub and Spoke backup routes

FlexVPN redundant hub with dual cloud

FlexVPN spoke to spoke communication fails with IPSec tunnel

FlexVPN

Frame Relay - is it a relevant technology anymore

Frame-Relay - emulating a Frame-Relay switch

Frame-Relay DLCI values

GNS3 how to obtain Cisco IOS images

GRE - Recursive routing error - AD solution

GRE - Recursive routing error - filtering solution

GRE - Recursive routing error

GRE - Tunnel Addressing

GRE MTU settings

GRE and IPSec

GRE tunnel and multicast

GRE tunnel key operation with only one tunnel key configured

GRE tunnel key

GRE tunnels and how they transmit multicast packets

HSRP - standby group numbers

HTTP - viewing HTTP messages in Wireshark

Hardware - Application Specific Integrated Circuit (ASIC)

High-Level Data Link Control (HDLC)

Home lab computer requirements

Hot Standby Router Protocol (HSRP)

How to practice labbing - best practices

How to prepare for Cisco DNA

IANA

ICANN

ICMP - Mitigating Vulnerabilities

ICMP - Vulnerabilities

ICMP - response to a ping that is blocked by an ACL

ICMP codes and types

ICMP

IEEE

IETF

IGMP - Snooping Querier Election

IGMP - Snooping Querier

IGMP - access group

IGMP - fast leave

IGMP - ip igmp snooping querier command

IGMP - membership report

IGMP - using VLAN access maps to filter multicast traffic

IGMP Snooping internal interface

IGMP default IOS configurations

IGMP last member query interval

IGMP membership query max response time

IGMP membership reports destination

IGMP report suppression

IGMP snooping prevents report suppression

IGMP snooping source IP address for messages

IGMP snooping

IGMP version 1 how hosts stop receiving multicast traffic

IGMP

IGMPv2 - leave group message mechanism

IGRP

IOS - Configuration Archive and Rollback

IOS - Right To Use (RTU) License

IOS - ip http server

IOS - licensing

IOS - show license command

IOS - using ftp or tftp source-interface command

IOS configuration register

IOS install mode vs bundle mode

IOS key chain feature

IP - When is the TTL decremented in a router

IP Address Management (IPAM) Tools

IP Addressing on a Router

IP Fragmentation - effects on network traffic

IP Fragmentation Attack

IP Routing table - process by which entries are matched

IP SLA - Route Flapping Problem

IP SLA Parameters

IP SLA tracking syntax

IP addressing on a Switch

IP routing table - candidate default route

IP routing table - default route

IP routing table - static route

IPSec - Authentication Header (AH)

IPSec - ESP vs AH

IPSec - Encapsulating Security Payload (ESP)

IPSec - Key Exchange Data

IPSec - NAT, AH, and ESP

IPSec - crypto map multiple peers

IPSec ESP Wireshark decrypt payload

IPSec NAT Transparency

IPSec how it works with NAT-T

IPSec profile operation with more than one crypto isakmp policy

IPSec

IPsec - does it support multicast