Re: [fw-wiz] Conundrum - IGMP and IPSec

Situation in the case is that we're implementing equipment that uses
multicast to talk between multiple instances of themselves - I'm not
clear yet whether there'll be a designated talker with multiple
listeners, or whether there'll be multiple talkers and multiple
listeners.

I'm reading the doco now - thanks for the tip. This should provide me
with a running start.

I'll be interested in finding out whether I can use a layer3 switch at
each end to do this, or if I need edge routers to set this up.

Kurt

On 1/28/07, Chris Myers <clmmacunix@xxxxxxxxxxx> wrote:
Hi Kurt,

I am not sure what you are exactly needing to use the IGMP for, but
most firewall and vpn solutions can do what you want to do. It's a
matter of creating the right tunnels or forwarding the right ports
and protocols. Cisco is a solution, but Juniper can do it just as
well. It really depends on the implementation you are needing IGMP
for. IGMP is associated with multicast formats, so here is a Cisco
doc that should get you started.

www.cisco.com/application/pdf/en/us/guest/netsol/ns171/c649/
ccmigration_09186a008074f26a.pdf

Thank You,
cmyers



On Jan 26, 2007, at 1:55 PM, Kurt Buff wrote:

Honorable Ones,

I've been handed the task of getting IGMP traffic between remote
offices, over an IPSec tunnel.

I have run into the apparently well-known issue of their not playing
nicely together, and was wondering if I could get recommendations on
making such a thing happen.

We're looking at upgrading/replacing our current hardware soon anyway,
so recommendations as to brands that would help support this would be
useful, as would workarounds that don't require replacement of current
hardware, as I believe that would broaden the choices I have when I do
upgrade.

I'm stumped, not least because my network-fu is not up to the
standards of many on this list, and would really appreciate some
pointers in the right direction.


Kurt
_______________________________________________
firewall-wizards mailing list
firewall-wizards@xxxxxxxxxxxxxxxxxxxxx
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards

Relevant Pages

  • Re: [fw-wiz] Conundrum - IGMP and IPSec
    ... Either one will do the multicast. ... source has 4 tunnels). ... the IGMP I believe over the VPN as it will not handle IGMP traffic. ... multicast to talk between multiple instances of themselves - I'm not ...
    (Firewall-Wizards)
  • Re: Moore versus TPL: The bomb has burst
    ... how to program the GA chips by partitioning problems across multiple ... implementation by quite a large margin in energy per DSP operation, ... extra work for what DSP's do completely in hardware. ...
    (comp.lang.forth)
  • Re: mode switch
    ... However, say for example, enabling lighting multiple times, its likely to be an extremely tiny overhead compared to any meaningful chunk of rendering work. ... This doesn't have to synchronize to anything; it doesn't matter how far behind the hardware is. ... The compressed format has the benefit that the render state which act as cache key data is smaller, and therefore, more quickly sortable in case that is needed in a driver. ... The approach that both compressed and as-is format data is stored, is, that you have two copies of the data: original and translated which may potentially be out-of-sync, which is easy to avoid if the translation is done always when a render state is set. ...
    (comp.graphics.api.opengl)
  • Re: mode switch
    ... However, say for example, enabling lighting multiple times, its likely to be an extremely tiny overhead compared to any meaningful chunk of rendering work. ... This doesn't have to synchronize to anything; it doesn't matter how far behind the hardware is. ... The compressed format has the benefit that the render state which act as cache key data is smaller, and therefore, more quickly sortable in case that is needed in a driver. ... The approach that both compressed and as-is format data is stored, is, that you have two copies of the data: original and translated which may potentially be out-of-sync, which is easy to avoid if the translation is done always when a render state is set. ...
    (comp.graphics.api.opengl)
  • Re: Coding style, wait statement, sensitivity list and synthesis.
    ... > Note that 1076.6 does NOT define that we should mimic the Verilog ... > behavior (with whatever hardware we can). ... It is more likely that this designer is ... The topic of flip-flops triggered from multiple edges keeps cropping ...
    (comp.lang.vhdl)