01-11-2024 12:27 PM
I have a device that is sending data to another. It passes from the sender, through a one-way data diode, into a Cisco 6509, accross a data trunk to a Juniper EX4300, then out and through another one-way data diode before finally getting to the receiver (see diagram). The route used to go through two EX4300's but we're working to convert from Juniper into Cisco. Now the the first 4300 has been replaced, the data no longer gets to the receiver.
Looking at wireshark packet captures, the culprit is the 6509 which isn't forwarding the traffic along the trunk.
The sender sends UDP packets to the multicast address 231.1.10.144 which the receiver listens for.
The two access ports connected to the diodes use VLAN 204 which is also on the trunk between the two switches.
I cannot replace the 4300 at this time nor can I enable 2-way communication for either the source or receiver. That has to stay the same. As these devices are the only two on this VLAN, is there a way to force the 6509 to flood the multicast traffic accross the VLAN by default? Or possibly another way to cause the multicast traffic to forward accross the trunk and to the receiver?
Solved! Go to Solution.
01-12-2024 11:32 AM
NVM, It's working now. Originally I didn't have the VLAN 204 SVI but adding it in with the "no ip igmp snooping" added as well made the difference.
01-11-2024 01:19 PM
The Cat 6500 will flood BUM traffic throughout a broadcast domain (VLAN) by default, no special config needed except proper L2 plumbing between ports. Can you post your port and vlan configs, along with system particulars(Sup and linecard module models, IOS version), for the community to examine?
01-12-2024 10:16 AM
01-12-2024 11:32 AM
NVM, It's working now. Originally I didn't have the VLAN 204 SVI but adding it in with the "no ip igmp snooping" added as well made the difference.
01-12-2024 11:30 AM
As @Ramblin Tech mentioned this should work out of the box, and I can't see anything in the config snippet that should prevent this traffic. Is IGMP snooping enabled globally? Can easily be verified with show run | inc igmp snoop
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide