Multicasting over VPN
Bookmark this page:
 Yahoo!
 Google
 Windows Live
 del.icio.us
 digg
 Netscape
|
|
|||||||||||||||||||
|
Posted by Nick Your Company Computer Guy on September 7, 2006, 8:10 pm
Please log in for more thread options remotely over our VPN. We currently have a Cisco ASA that is new to me. I am wondering if anyone knows how to setup the ASA to allow multicast over VPN. TIA for any assistance. Nick | |||||||||||||||||||
|
Posted by on September 7, 2006, 10:13 pm
Please log in for more thread options Nick Your Company Computer Guy wrote: I understand that IPSEC does not support the transport of multicast packets. The usual Cisco solution is to use a GRE tunnel and then IPSEC encrypt that. I don't know if that is supported on the ASA (I suspect it is not) but it is supported on Cisco Routers. http://www.cisco.com/en/US/tech/tk583/tk372/technologies_configuration_example09186a00800a43f6.shtml The IPSEC can be carried out on the Routers instead, possibly eliminating the need for the PIX. I am pretty sure that there is a router only example on CCO however I can't locate it right now. | |||||||||||||||||||
|
Posted by Nick Your Company Computer Guy on September 8, 2006, 11:12 am
Please log in for more thread options Thanks, I am familiar with GRE tunnels but this would be a dialup VPN
not a hardware to hardware VPN. Sorry that I failed to specify that in my original posting. I think I'm going to have to play with this in the lab sometime. Nick Bod43@hotmail.co.uk wrote: > Nick Your Company Computer Guy wrote:
> > We have an application that uses Multicast that I would like to use
> > remotely over our VPN. We currently have a Cisco ASA that is new to me. > > I am wondering if anyone knows how to setup the ASA to allow multicast > > over VPN. TIA for any assistance. > > > > Nick >
http://www.cisco.com/en/US/tech/tk583/tk372/technologies_configuration_example09186a00800a43f6.shtml
> I understand that IPSEC does not support the transport > of multicast packets. The usual Cisco solution is to use > a GRE tunnel and then IPSEC encrypt that. > I don't know if that is supported on the ASA (I suspect > it is not) but it is supported on Cisco Routers. > > >
> The IPSEC can be carried out on the Routers instead, possibly > eliminating > the need for the PIX. > > I am pretty sure that there is a router only example on CCO > however I can't locate it right now. | |||||||||||||||||||
|
Posted by Walter Roberson on September 8, 2006, 11:45 am
Please log in for more thread options >Thanks, I am familiar with GRE tunnels but this would be a dialup VPN
>not a hardware to hardware VPN. Sorry that I failed to specify that in >my original posting. I think I'm going to have to play with this in the >lab sometime. sounds like you need the equivilent of 'mrouted' $ man mrouted [...] DESCRIPTION Mrouted is an implementation of the Distance-Vector Multicast Routing Protocol (DVMRP), an earlier version of which is specified in RFC-1075. It maintains topological knowledge via a distance-vector routing protocol (like RIP, described in RFC-1058), upon which it implements a multicast datagram forwarding algorithm called Reverse Path Multicasting. [...] In order to support multicasting among subnets that are separated by (unicast) routers that do not support IP multicasting, mrouted includes support for "tunnels", which are virtual point-to-point links between pairs of mrouteds located anywhere in an internet. IP multicast packets are encapsulated for transmission through tunnels, so that they look like normal unicast datagrams to intervening routers and subnets. The encapsulation is added on entry to a tunnel, and stripped off on exit from a tunnel. The packets are encapsulated using the IP-in-IP protocol (IP protocol number 4). | |||||||||||||||||||
| Similar Threads | Posted |
| Multicasting over VPN | September 7, 2006, 8:10 pm |
| Multicasting | September 16, 2007, 12:05 am |
| Multicasting b/w VLANs | April 22, 2006, 12:51 am |
| Set up multicasting/ iptv lab | January 24, 2007, 10:00 am |
| multicasting across segments | June 30, 2008, 2:10 pm |
| Aironet 1400 and Multicasting? | May 9, 2006, 7:07 am |
| MultiCasting over Multiple Vlans. | June 21, 2006, 10:11 am |
| Multicasting + Cisco 10k + Juniper E320 | April 24, 2008, 2:26 am |
| understand multicasting from the client/host perspective . | June 25, 2006, 2:07 pm |
> remotely over our VPN. We currently have a Cisco ASA that is new to me.
> I am wondering if anyone knows how to setup the ASA to allow multicast
> over VPN. TIA for any assistance.
>
> Nick