Do any users have experience with passing multicast traffic through
Checkpoint's Firewall-1 or Raptor's Eagle? Other firewall brands?
Multicast issues:
Should the firewall Pretend or Be a multicast router? Or should it
pretend
to be a multicast group member on behalf of the internal node?
What do we call it?
MRE - Multicast Router Emulation?
MAT - Multicast Address Translation?
MGME - Multicast Group Member Emulation?
Multicast Proxy - but it's a transport layer thing....
Passing/accepting IGMP, IP protocol 2, to do a join (source is node).
Passing/accepting IGMP multicasts to poll for group members (source
is router).
Supporting DVMP or MOSPF routing protocol if firewall acts as a
multicast router.
Picking up multicast ethernet packets if router did a "join" for a node
using multicast address translation/emulation.
Retransmitting a multicast (ethernet and IP layers) on internal network.
Address translation to unicast message to specific internal host (and
can the host pick it up off the ethernet & IP levels and pass it to
the multicast application layer?)
;{
--
Adam Safier asafier @
csc .
com
CSC-SED-Infosec (301) 794-1349
Technology Abuse: Netscape Frames on a 14" screen.
The above are my own opinions,
and I'm proud to live in a country where I'm free to express them!
|
|
