Hmm, the nsrp msgs do not actually use a multicast mac address:
579369.0: ethernet0/3(i) len=60:0017cb465d87->0110dbf0f0f0/8133
MN:cid=3,flag=0,len=3072,port=7,su=2153596416,du=0
01 10 db f0 f0 f0 00 17 cb 46 5d 87 81 33 00 02 .........F]..3..
03 00 0c 00 07 00 00 00 00 00 00 00 00 00 80 5d ...............]
46 00 31 00 00 00 00 00 00 00 00 00 00 00 00 00 F.1.............
00 00 00 00 00 00 00 00 00 00 00 00 ............
See the snoop above taken from an NSRP setup. The mac will still carry the Netscreen vendor mac in this case 0110db.
So, I dont think igmp snoop will have any effect though. I think it may be worth more effort to see the debugs and snoops on the firewall to try and figure out why the NSRP packets are not going.
Message Edited by WL on 04-23-2009 08:45 AM