cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
250
Views
0
Helpful
1
Replies

multicast auto-rp mapping issue(firewall along the path)

syjeon
Level 1
Level 1

Hi

please, see the attached,

to sum up, Core#1 can't receive auto-rp information from firewall. I verified auto-rp mapping is successful on WAN.

in Core#1, RPF was successful for RP address, but, failed to map the auto-rp address.

the issue is there is Checkpoint firewall along the path. I confirmed there was no issue between cisco router platform.

I know this issue may reach to checkpoint but, I think it's general isssue we may have.

Lastly, we have the firewall aong the multicast path. PIM neighbor with firewall is successful, but failed to map auto-rp in Core#1.

which action, which we may need? can someone have similar setup like us?

1 Reply 1

Greetings,

If I understand correctly you have a RP/mapping-agent sending the RP and group mapping on your network. This information does not reach Core #1 device.

You need to make sure traffic for destination 224.0.1.40 is allowed through the FW.

This is the group used for sending RP-Discovery messages.

Hope this helps.

JF

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: