03-12-2010 09:34 AM
Hello
Would any one know if it is possible to run multicast over a site to site vpn
I have the following setup
multicast source ---6500----asa-------site to site vpn----------asa-------6500------multicast clients
if so..... is there any fun and games i should look out for ?
Cheers for any info
Mark
03-12-2010 10:01 AM
Hi Mark,
Ipsec doesnt support multicast, you can configure GRE on 6500 to encapsulate multicast traffic before the encryption.
HTH,
Lei Tian
03-12-2010 02:24 PM
Hi,
Like Letian said, the ASA's only support unicast traffic over IPsec.
You can run OSPF over the IPsec tunnel, but its because OSPF is passed as unicast.
If you need to pass multicast, terminating the VPN on the ASA is not an option, or using GRE on the router/switch to pases the mulsticast traffic
If you want to encrypt the traffic, the best choice is to configure GRE on the 6500 and IPsec on the ASAs.
In this way the ASA can encrypt the GRE packets using IPsec (Multicast will be carried in GRE).
Federico.
04-12-2010 10:04 AM
Hi,
is possible. You could configure L2TP + IPSec.
L2TP permit use of multicast.
Regards.
04-12-2010 10:33 AM
Can you configure a Site-to-Site between two ASAs using L2TP over IPsec?
I've never seen it.
Federico.
04-13-2010 04:48 AM
Sorry,
Is possible only in remote access VPN ("client to site").
Thanks.
07-01-2010 12:26 PM
Hi All,
I have similar requirment , I need to access multicast stream over RAS VPN client machine . please can you help me how to do it
I am having CIsco ASA 5540 VPN device ,
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide