Solved: Ask the Expert: Installing, Configuring and Troubleshooting Cisc - Page 2

ciscomoderator · ‎05-20-2013

Welcome to the Cisco Support Community Ask the Expert conversation. This is an opportunity to learn and ask questions about IP Multicast and Multicast VPN with Cisco expert Pulikkal Sekharan Raju. With Multicast VPN Cisco provides a practical solution to solve the challenge of manual configuration. MVPN architecture introduces an additional set of protocols and procedures that help enable a service provider to support multicast traffic in a VPN.

Pulikkal Sekharan Raju is a customer support engineer in the High Touch Technical Support group for Cisco. He has over 13 years of experience in electronics and communications. His technical expertise is Border Gateway Protocol, Open Shortest Path First protocol, MPLS, Multicast, Multicast Virtual Private Network Layer 3 Virtual Private Network (MVPN L3VPN), and Layer 2 Virtual Private Network (L2VPN). He has also served as a network engineer for CMC Ltd and a team lead for Remote Management Services. He holds a bachelor of technology degree in electronics and communications from M G University and holds CCIE certification (#25000).

Remember to use the rating system to let Pulikkal know if you have received an adequate response. Pulikkal might not be able to answer each question due to the volume expected during this event. Remember that you can continue the conversation on the WAN, Routing and Switching community sub-community in Network Infrastructure shortly after the event.

This event lasts through Friday May 31, 2013.

Visit this forum often to view responses to your questions and the questions of other community members.

Raju Sekharan · ‎05-26-2013

Hi Giuseppe

I will check this and come back to you

Thanks

Raju

Raju Sekharan · ‎05-28-2013

Hi Giuseppe

I can see that BGP Auto-discovery and BGP C-multicast Routing support added on 15.2(2)S

http://www.cisco.com/en/US/docs/ios-xml/ios/ipmulti_mvpn/configuration/15-s/imc_vpn_bgp_croute.html

These features should be availble on ASR1K

7600 Hardware I am still checking if this is supported on it. Will update you back

Thanks

Raju

Raju Sekharan · ‎05-28-2013

Hi

Also for transport, Juniper supports RSVP TE. But ASR1k does not support this but supports mLDP

Thanks

Raju

Raju Sekharan · ‎05-29-2013

Hi Giuseppe

BGP AD and BGP c-Mc sig are not offcially supported on 7600

Thanks

Raju

James Leinweber · ‎05-29-2013

I'm struggling with multicast support on ASA 5520 firewalls. Recently I upgraded some running a rather archaic 8.2(2) firmware to 9.0(2), in preparation for deployment of some new 5525-x's we bought. In the old configuration I had

multicast-routing

interface Gi0/1

...

igmp forward interface outside

and an access-lists on the outside interface which allowed inbound UDP traffic with the relevant multicast destinations, particularly 239.0.0.0/24.

When I upgraded to 9.0(2), I threw in "no pim", and it broke. However, allowing pim still is broken, as I'm winning the DR election with my upstream router (run by the UW-Madison), when I need to be losing. The real PIM is taking place between the campus router and the campus RP; all I want to do is stub forwarding of IGMP v2 join messages from one LAN vlan through my firewall to the upstream router.

What does a working multicast configuration look like on ASA 9.0? I have hideous memories of months of TAC cases back in the 7.0 days; in 8.2 it was comparatively easy.

-- Jim Leinweber, Wisconsin State Lab of Hygiene

Raju Sekharan · ‎05-30-2013

Hi

Do you have any PIM RP-addres configuration on the ASA?

can you send me the following outputs from ASA

1. Show igmp groups

2. Show ip mroute

Thanks

Raju

James Leinweber · ‎05-30-2013

ASA 5520, firmware 9.0(2). I have gone back to "no pim" on the outside interface; pim variations I have tried on the outside interface only:

1) no pim

2) pim, default pim values

3) pim, dr-priority 0

I haven't tried seting a pim RP address; the upstream router knows that. Multicast joins work from the transit network upstream of the firewall.

No "igmp access-group" or "pim neighbor-filter" restrictions are applied on any interfaces; it's all defaults.

The client interface on the inside ("hm-lan") has:

no pim

igmp forward interface outside

The outside interface currently has:

no pim

There are no explicity "mroute" statements in the configuration; supposedly multicast traffic should follow the unicast default route.

f-slh-hm# show igmp groups

-------------------------------

IGMP Connected Group Membership

Group Address Interface Uptime Expires Last Reporter

224.0.1.24 hm-lan 6d06h 00:03:43 144.92.84.29

226.178.217.5 hm-lan 1w1d 00:03:41 144.92.84.223

230.0.0.1 hm-lan 2d01h 00:03:39 144.92.85.6

239.192.83.80 hm-lan 05:49:34 00:03:41 144.92.85.36

239.255.255.250 hm-lan 6d02h 00:03:37 144.92.84.233

239.255.255.253 hm-lan 05:35:11 00:03:39 144.92.84.208

239.255.255.254 hm-lan 6d03h 00:03:37 144.92.84.29

f-slh-hm# show mroute

--------------------------------

Multicast Routing Table

Flags: D - Dense, S - Sparse, B - Bidir Group, s - SSM Group,

C - Connected, L - Local, I - Received Source Specific Host Report,

P - Pruned, R - RP-bit set, F - Register flag, T - SPT-bit set,

J - Join SPT

Timers: Uptime/Expires

Interface state: Interface, State

(*, 224.0.1.24), 6d06h/never, RP 0.0.0.0, flags: DPC

Incoming interface: Null

RPF nbr: 0.0.0.0