We have a switch stack of 3750's and the desktop people are trying to ghost/image. The stack is an access layer stack with no layer 3 and igmp snooping is enabled by default. All machines in this scenario are on 1 vlan and we'll call it X. They start the ghost session using multicast and then join (we'll say 5 computer, could be 20+). The desktops connect fine and the ghosting starts. During the course of the ghosting, there is some hesitation and pausing but after a prolonged amount of time they finish successfully. There is no mrouter defined on upstream layer 3 interface as its all on the same vlan.
Results and findings:
While the ghost session is running I notice that alot of other ports with machines on the same vlan (X) are receiving the ghost/image even though they are not participating. This is bad for us as we have 100+ workstations on that stack/vlan that are receiving an image that they don't need.
If I enable ip pim sparse-dense mode on upstream layer 3 interface, everything seems good and just the clients in the session get the image. So my question is:
Do you HAVE to have a querier/mrouter (either layer 3 interface or switch itself) in order for igmp snooping to actually work even if all traffic is on 1 switch/stack?
the document Multicast Does Not Work in the Same VLAN in Catalyst Switches describes the need for a mrouter port for IGMP snooping to work across switches. As I understand it, it should work without additional configuration when the source is on the same switch. And I wonder about the flooding. Perhaps the stacks have a different logic, I would have to do some readings about that later.
As I understand it, it should work without additional configuration when the source is on the same switch
I am not sure about this, Rolf. A single switch initially learns about the receivers thanks to their IGMP Membership Report messages sent when they first subscribed to the group. However, after that, no more Report messages are sent without the presence of an IGMP Querier on the network, meaning that IGMP Snooping-created entries eventually expire and the IGMP Snooping database remains empty. A good question is what happens now if a switch running IGMP Snooping has no mrouter port identified, has an empty IGMP Snooping database, and receives a multicast stream. Does it block it completely? Or does it flood the stream indiscriminately? I am not sure about this, and I would need to test this in a lab.
Craig, just to make sure - do you happen to know the exact multicast IP address used by the Ghost?
We are pleased to announce availability of Beta software for 16.6.3.
16.6.3 will be the second rebuild on the 16.6 release train targeted
towards Catalyst 9500/9400/9300/3850/3650 switching platforms. We are
looking for early feedback from customers befor...
Introduction Featured Speakers Luis Espejel is the Telecommunications
Manager of IENova, an Oil & Gas company. Currently he works with Cisco
IOS® and Cisco IOS XE platforms, and NX to some extent. He has also
worked as a Senior Engineer with the Routing P...
In this session you can learn more about Layer 3 multicast and the best
practices to identify possible threats and take security measures. It
provides an overview of basic multicast, the best security practices for
use of this technology, and recommendati...