The PIM-SM routing examples in the "Networking handbook" are not very clear. Why is there added an access-list, which is never used int the config? Has anyone a really working PIM-routing example from practice?
Thanks.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
On Fortigate, to enable multicast routing, you will need to:
1.
config system settings
set multicast-forward enable
end
2.
config router multicast
set multicast-routing enable
end
3.
config router multicast
config pim-sm-global
config rp-address
...
set ip-address x.x.x.x
4.
config router multicast
config interface
edit xx
set pim-mode sparse-mode
end
5.
config firewall multicast-policy
Here are some trouble shooting commands:
get router info multicast pim sparse-mode table x.x.x.x
get router info multicast pim sparse-mode neighbour
diagnose ip multicast mroute
get router info multicast igmp groups
get router info multicast pim sparse-mode interface
get router info multicast pim sparse-mode rp-mapping
get router info multicast pim sparse-mode bsr-info
diagnose sys mcast-session list
Follow up with this thread with any question please. Thanks!
chrismes wrote:Hi, chrismes asked for the purpose of the access-list in the fortinet configuraion guide. Honestly, this was also not absolutely clear for me, because the ACL ist not referenced somewhere else in one documentation.Why is there added an access-list, which is never used int the config?
http://help.fortinet.com/...%20a%20static%20RP.htm
But I know, that an RP can be restricted to specific Multicastgroups via an ACL. I found another configuration Guide with the following configuration example:
The ACL defines a filter to the multicastgroup 233.254.200.0
config router access-list edit "Source-RP" config rule edit 1 set prefix 233.254.200.0 255.255.255.0 set exact-match disable next
In another step, the ACL is bound to teh RP:
config router multicast config interface edit "internal" set pim-mode sparse-mode config igmp set version 2 end next edit "external" set pim-mode sparse-mode config igmp set version 2 end next end set multicast-routing enable config pim-sm-global config rp-address edit 1 set ip-address 169.254.100.1 set group "Source-RP" next
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1714 | |
1093 | |
752 | |
447 | |
232 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.