Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1647
Views
0
Helpful
0
Replies

Multicast issue between Cisco switch and Fortigate Firewall

zizou6500
Level 1
Level 1

‎07-06-2021 05:44 AM

Hi Community,

 

I need your help/thoughts regarding a multicast issue between a cisco switch (VSS) and a Fortigate firewall.

 

The mcast data is disseminated from the Cisco device to the Fortigate one , the issue is there are no heartbeats received on the far end and the Fortigate isn't able to build the (S,G).

The appropriate fwpolicies-mcast are in place and the "sh ip route" shows that data is being sent to the Fortigate device as below:

#sh ip mroute 232.0.x.x

Outgoing interface flags: H - Hardware switched, A - Assert winner, p - PIM Join
Timers: Uptime/Expires
Interface state: Interface, Next-Hop or VCD, State/Mode

(*, 232.0.x.x), 7w0d/00:02:55, RP 172.16.x.x, flags: SJC
Incoming interface: Null, RPF nbr 0.0.0.0
Outgoing interface list:
Te1/2/8.16xx, Forward/Sparse, 1w6d/00:02:55

(172.16.x.x, 232.0.x.x), 6w2d/00:02:28, flags: TA
Incoming interface: VlanX, RPF nbr 0.0.0.0
Outgoing interface list:
Te1/2/8.16xx, Forward/Sparse, 1w6d/00:02:55


PS: Te1/2/8.16xx is the interface facing the Fortigate

 

Both devices are working in a sparse-mode.

The multicast groups are defined in the boundary ACL under the cisco switch.

 

Thanks in advance.

 

 

 

 

 

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents