[j-nsp] SRX240 Multicast
Tyler Christiansen
tyler at adap.tv
Wed Aug 27 23:20:15 EDT 2014
So you have also allowed inbound traffic with
set security zones security-zone <zone_name> host-inbound-traffic protocols
all
? This is different than security policies (and perhaps I wasn't clear on
that).
On Wed, Aug 27, 2014 at 8:18 PM, <kwoody at citywest.ca> wrote:
> > Are you in flow mode or packet mode? If flow mode, don't forget to
> modify
> > the appropriate security policies as these will block messages.
> >
>
> Its in flow mode and have security policy of allow everything as this is an
> isolated network with no outside access of any kind.
>
> I have thought about putting it into packet mode just to try it out anyway.
>
> Thanks,
> Keith
>
> >
> > On Wed, Aug 27, 2014 at 5:07 PM, Keith <kwoody at citywest.ca> wrote:
> >
> >> Hi.
> >>
> >> We have been taking our first foray into multicast the last few days.
> >>
> >> In our test bed we have an SRX240 with all the senders and one receiver
> >> connected.
> >>
> >> Sender is pushing 600megs of traffic on ge-0/0/3
> >>
> >> Receiver is on ge-0/0/8, both interfaces on vlan 100.
> >>
> >> Receiver used to be on vlan 51, but it was not receiving *any* multicast
> >> traffic
> >> at all. So as a test we moved ge-0/0/8 to the same vlan as the sender to
> >> see if
> >> the test set could see the groups and it can.
> >>
> >> But ge-0/0/8 is drowning in traffic from the sender. I have
> >> igmp-snooping,
> >> interfaces
> >> on igmp, pim enabled, but I see 640 megs of traffic input on ge-0/0/3
> >> and
> >> 640 megs
> >> output on ge-0/0/8.
> >>
> >> I have multicast routes showing up in the routing table.
> >>
> >> Couple of show commands says that igmp is not enabled on ge-0/0/8.
> >>
> >> run show igmp statistics interface ge-0/0/8
> >>>>
> >>>
> >> IGMP not enabled on interface ge-0/0/8.0
> >>
> >> IGMP Global Statistics
> >> Bad Length 0
> >> Bad Checksum 0
> >> Bad Receive If 0
> >> Rx non-local 0
> >> Timed out 3
> >> Rejected Report 0
> >> Total Interfaces 4
> >>
> >> I have obviously missed something in the protocols section but I have
> >> no idea what. Anyone lend a clue?
> >>
> >> show protocols
> >>>>
> >>> igmp {
> >> accounting;
> >> interface ge-0/0/8.0;
> >> interface ge-0/0/3.0;
> >> interface vlan.100;
> >> interface vlan.51;
> >> interface vlan.49;
> >> }
> >> inactive: ospf {
> >> area 0.0.0.0 {
> >> interface all;
> >> }
> >> }
> >> pim {
> >> inactive: traceoptions {
> >> file pim-trace.log;
> >> flag all;
> >> flag join detail;
> >> flag prune detail;
> >> }
> >> interface all {
> >> mode sparse;
> >> version 2;
> >> }
> >> interface vlan.51 {
> >> mode sparse;
> >> version 2;
> >> }
> >> interface vlan.49 {
> >> mode sparse;
> >> version 2;
> >> }
> >> interface vlan.100 {
> >> mode sparse;
> >> version 2;
> >> }
> >> interface ge-0/0/8.0 {
> >> mode sparse;
> >> version 2;
> >> }
> >> }
> >> igmp-snooping {
> >> vlan vlan.51;
> >> vlan vlan.49;
> >> vlan vlan.100;
> >> }
> >>
> >> Thanks,
> >> Keith
> >> _______________________________________________
> >> juniper-nsp mailing list juniper-nsp at puck.nether.net
> >> https://puck.nether.net/mailman/listinfo/juniper-nsp
> >>
> >
> >
> >
> > --
> >
> > *Tyler Christiansen | Technical Operations*
> > tyler <http://adap.tv/>@adap.tv <http://adap.tv/> | www.adap.tv
> > *m :* 864.346.4095
> >
>
>
>
--
*Tyler Christiansen | Technical Operations*
tyler <http://adap.tv/>@adap.tv <http://adap.tv/> | www.adap.tv
*m :* 864.346.4095
More information about the juniper-nsp
mailing list