Created on 09-10-2010 12:19 AM Edited on 03-24-2022 08:22 PM By Anonymous
Description
This article explains how to filter multicast traffic for a specific port range to add more granularity to the multicast flows allowed through the FortiGate.
Scope
FortiGate (multicast routing)
Solution
# config firewall multicast-policy # edit <ID> id : <ID> action: accept dnat: 0.0.0.0 dstaddr: 0.0.0.0 0.0.0.0 dstintf: <destination interface> end-port: <end-port> nat: 0.0.0.0 protocol: 0 <====== to be set to 17 srcaddr: 0.0.0.0 0.0.0.0 srcintf: <source interface> start-port: <start-port> |
If the protocol is not set, the CLI will allow the configuration of the protocol port range, but the option will be deactivated.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.