GFI Software Aurea SMB Solutions

Welcome to the GFI Software community forum! For support please open a ticket from https://support.gfi.com.

Home » GFI User Forums » Kerio Control » Retransmitting multicast packets
Retransmitting multicast packets [message #150595] Fri, 03 December 2021 14:08
modezeroltd is currently offline  modezeroltd
Messages: 13
Registered: September 2010
I'm trying to work out if it's possible to setup Kerio Control to support Sonos devices on a "guest" network with the controller app running on a protected "office" network.

A useful post about how to achieve this for Sonos is my starting point here,
https://en.community.sonos.com/troubleshooting-228999/multip le-subnets-vlans-and-sonos-workable-clavister-solution-30950

https://gcdn.pbrd.co/images/0L0DxNGmew9k.png?o=1

Opening up the ports between the two networks is simple enough (see above) but I'm not certain how to meet the multicast requirement:

Quote:
Now, the final piece of the puzzle was the multicast used for finding the players. We use a Clavister firewall, which support something they call SAT multiplex rules (other vendors might have similar functionality but call it something different). This means that it can catch multicast transmissions from one net, and retransmit them on multiple nets. I used this to "relay" the multicast signal from vlan3-5 onto vlan 6. I didn't do the opposite, since that only seems necessary when setting up new controllers (the mute + VOL+ sequence). Today I can attach the controllers by temporarily add computers to vlan6.

So, the firewall needed an Allow rule for the multicast address 239.255.255.250, port 1900 (this is UDP). Then a Multiplex SAT which would catch this multicast IP and port, and then select the interfaces it would relay them to (in this case, vlan6). There was also an option that "Multicast traffic must have been requests using IGMP before it's beeing forwarded" which I unchecked, since I didn't know if the players actually do that.

Is this simply a case of enabling service discovery forwarding on the "guest" network, or is the configuration more involved?
Previous Topic: IPS Rule Update
Next Topic: Log4Shell
Goto Forum:
  


Current Time: Fri Jan 28 22:37:45 CET 2022

Total time taken to generate the page: 0.02860 seconds