Hello everyone,
I am encountering issues with setting up multicast traffic in a Layer 2 environment. Although the PCs can ping each other and are correctly connected to the Wi-Fi network, the VLC client is unable to receive the multicast stream sent by OBS Studio.
The network Lab consists of the following devices:
VLAN 200 for Wi-Fi Network:
IGMP Snooping Enabled on FortiSwitches and FortiAP:
config switch-controller managed-switch
edit <FortiSwitch_serial_number>
config ports
edit <port_name>
set igmp-snooping-flood-reports {enable | disable}
set mcast-snooping-flood-traffic {enable | disable}
end
end
OBS Studio Configuration:
VLC Configuration:
Although the network seems properly configured, VLC is unable to receive the multicast stream from OBS Studio. The two PCs connected to the Wi-Fi network (172.16.0.2 for VLC and 172.16.0.3 for OBS) can ping each other, so there is no basic connectivity issue. Both Windows firewalls are disabled.
Here are the troubleshooting steps I have tried, but without success
It seems like everything is configured properly, but multicast traffic is not being distributed correctly by the FortiSwitch or FortiAP. Has anyone experienced a similar setup or have suggestions on what to check or adjust to make multicast work in Layer 2 with VLC?
Thanks in advance for your support!
Some indications:
The SSIDs are configured in bridge mode, and I have enabled IGMP on both the SSID interfaces and the VLAN 200 interface.
The two APs are connected in native VLAN 100 (Management) and allowed VLAN 200 (Wi-Fi).
I might be making mistakes in enabling multicast and IGMP. I've tried following different guides from Fortinet, but they all say different things, so I'm getting confused.
Solved! Go to Solution.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Hello Thonno,
If the FortiGate configuration includes multicast PIM-SM with a static group entry, multicast forwarding must be disabled. This is because the FortiGate can support either forwarding or routing per VDOM at any given time, not both simultaneously.
Hello Thonno,
Based on your explanation, it seems no further changes to VLAN or trunk configurations are required, as unicast connectivity between the receiver and sender is functioning correctly.
Since your setup only involves a multicast sender and receiver, there is no need for multicast routing. However, ensure that multicast-forwarding is enabled and that the multicast policy between the relevant interfaces is correctly configured. If the issue persists, capturing sniffer logs using the following command may assist with further troubleshooting:
`di sniffer packet any "host xx.xx.xx.xx" 4 0 l`
(Replace xx.xx.xx.xx with the multicast group IP address.)
Created on 10-08-2024 04:09 AM Edited on 10-08-2024 04:11 AM
Hi, I resolved the issue. The problem was caused by the PC running OBS, which had some unknown issues. After changing the PC, the multicast streaming in Layer 2 is now working.
I modified the infrastructure so that the PC with OBS is on a different VLAN than the users connected via Wi-Fi.
Here are the steps I followed:
BASIC CONFIGURATION:
Create a multicast router on:
Enable multicast forwarding:
Enable multicast on SSIDs (multicast-to-unicast):
TUNING:
Enable IGMP snooping on:
Create a static group:
Assign static group to multicast routers (both WIFI_USERS and WIFI_REGIA):
Set FortiGate as Querier (on both WIFI_USERS and WIFI_REGIA):
Disable unknown multicast flooding:
Do you think there are any other adjustments I should make to improve the flow and avoid network congestion? The infrastructure is designed to support more than 1,000 users connected simultaneously to 12 APs (with 12 different SSIDs, all in bridge mode).
The goal is to ensure that the firewall acts as a querier without overloading the network.
Hello Thonno,
If the FortiGate configuration includes multicast PIM-SM with a static group entry, multicast forwarding must be disabled. This is because the FortiGate can support either forwarding or routing per VDOM at any given time, not both simultaneously.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1633 | |
1063 | |
751 | |
443 | |
210 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.