Retransmitting multicast packets
I'm trying to work out if it's possible to setup Kerio Control to support Sonos devices on a "guest" network with the controller app running on a protected "office" network.

A useful post about how to achieve this for Sonos is my starting point here, le-subnets-vlans-and-sonos-workable-clavister-solution-30950

Opening up the ports between the two networks is simple enough (see above) but I'm not certain how to meet the multicast requirement:

Now, the final piece of the puzzle was the multicast used for finding the players. We use a Clavister firewall, which support something they call SAT multiplex rules (other vendors might have similar functionality but call it something different). This means that it can catch multicast transmissions from one net, and retransmit them on multiple nets. I used this to "relay" the multicast signal from vlan3-5 onto vlan 6. I didn't do the opposite, since that only seems necessary when setting up new controllers (the mute + VOL+ sequence). Today I can attach the controllers by temporarily add computers to vlan6.

So, the firewall needed an Allow rule for the multicast address, port 1900 (this is UDP). Then a Multiplex SAT which would catch this multicast IP and port, and then select the interfaces it would relay them to (in this case, vlan6). There was also an option that "Multicast traffic must have been requests using IGMP before it's beeing forwarded" which I unchecked, since I didn't know if the players actually do that.

Is this simply a case of enabling service discovery forwarding on the "guest" network, or is the configuration more involved?
