Multicasting issue



  • I have an SSG20 between on my network and need to pass multicast traffic from untrust to trust, there are no intelligent multicast switches etc… on the network so I have been trying to configure static routes from the cookbook without using PIM:
    set vrouter trust-vr mroute mgroup 239.0.0.1 source 10.1.1.1 iif ethernet0/0 oif ethernet0/1
    I also have a policy from untrust to trust allowing anything.

    however despite this my packets are all still being dropped by the firewall below is my debug:
    ****** 708404.0: <untrust 0="" ethernet0="">packet received [1344]******
      ipid = 0(0000), @03297bb0
      packet passed sanity check.
    <untrust 0="" ethernet0="">packet received [1344]******
    Packet dropped,  mcast pak, ttl reach 0

    ****** 708406.0: <untrust 0="" ethernet0="">packet received [1344]******
      ipid = 0(0000), @031e63b0
      packet passed sanity check.
      ethernet0/0:10.40.2.3/50138->239.0.1.1/999,17 <root>no session found
      flow_first_sanity_check: in <ethernet0 0="">, out <n a="">10.40.2.3/50138->239.0.1.1/999,17 <root>no session found
      flow_first_sanity_check: in <ethernet0 0="">, out <n a="">[ Dest] 1.route 10.40.2.3->0.0.0.0, to ethernet0/0

    flow_first_sanity_check: in <ethernet0 0="">, out <n a="">[ Dest] 1.route 10.40.2.3->0.0.0.0, to ethernet0/0
      chose interface ethernet0/0 as incoming nat if.
      packet dropped,  mcast pak, ttl reach 0
    to ethernet0/0
      chose interface ethernet0/0 as incoming nat if.
    <n a="">[ Dest] 1.route 10.40.2.3->0.0.0.0, to ethernet0/0

    flow_first_sanity_check: in <ethernet0 0="">, out <n a="">[ Dest] 1.route 10.40.2.3->0.0.0.0, to ethernet0/0

    flow_first_sanity_check: in <ethernet0 0="">, out <n a="">[ Dest] 1.route 10.40.2.3->0.0.0.0, to ethernet0/0
      chose interface ethernet0/0 as incoming nat if.
      packet dropped,  mcast pak, ttl reach 0
    to ethernet0/0
      chose interface ethernet0/0 as incoming nat if.
      packet dropped,  mcast pak, ttl reach 0
    to ethernet0/0
      chose interface ethernet0/0 as incoming nat if.
      packet dropped,  mcast pak, ttl reach 0

    o ethernet0/0
      chose interface ethernet0/0 as incoming nat if.
      packet dropped,  mcast pak, ttl reach 0

    o ethernet0/0
      chose interface ethernet0/0 as incoming nat if.
      packet dropped,  mcast pak, ttl reach 0

    o ethernet0/0
      chose interface ethernet0/0 as incoming nat if.
      packet dropped,  mcast pak, ttl reach

    ANy help would be greatly appreciated!

    James</n></ethernet0></n></ethernet0></n></n></ethernet0></n></ethernet0></root></n></ethernet0></root></untrust></untrust></untrust>


 

44
Online

38.4k
Users

12.7k
Topics

44.5k
Posts