Tuesday, July 8, 2008

Test Multicast on FortiOS

1, test tools: mint
download link

2, command:
sender:
#mint -s 239.0.0.1 -p 4321 -n 1 -b 100 ; #default, ttl=1. it will cause some issue
FOS will decrement the ttl by one.

receiver:
#mint -r 239.0.0.1 -p 4321 -d 5
Ready to recieve packets:
Received 323 packets..
Notes: need to change the default route to make it make sense.


mint: invalid option -- -
Usage: mint -[s|r] [OPTIONS] ADDR

OPTIONS:
-h This help.
-N Don't log to file.
-L Specify alternate path for log file.(Default is /var/tmp/mint.log)
-r Configures MINT to be a multicast receiver.
-p specifies the port number MINT should listen to.
Default is 4321.
-d delay in seconds for waiting in receiving state.
Default is 1 second.
-s Configures MINT to be a multicast sender (Default).
-l specifies whether loopback should be enabled(1) or disable(0).
Disabled by default.
-p specifies the port MINT should send data to.
Default is 4321.
-t specifies the TTL MINT should use.
Default is 1.
-q specifies IP TOS.
IP Precedence Values are 0-7, default is 0
-n number of packets to be sent per second,
-1(default) means sends as many packets as possible.
DANGER: -1 creates a great deal of traffic.
-b specifies how much data to send in bytes.
-6 Using IPv6 instead of IPv4 (EXPERIMENTAL).

3, config on fortios:
config firewall multicast-policy
edit 1
set dstaddr 239.0.0.0 255.255.255.0
next
end

4, sniffer on FortiOS;
DS_127 (kontron) # d sniffer pack any udp 4
interfaces=[any]
filters=[udp]
0.517596 kvlan103 in 8.8.103.109.4321 -> 239.0.0.1.4321: udp 400
0.517611 kvlan104 out 8.8.103.109.4321 -> 239.0.0.1.4321: udp 400
0.517615 fabric1 out 8.8.103.109.4321 -> 239.0.0.1.4321: udp 400
1.521307 kvlan103 in 8.8.103.109.4321 -> 239.0.0.1.4321: udp 400
1.521318 kvlan104 out 8.8.103.109.4321 -> 239.0.0.1.4321: udp 400
1.521321 fabric1 out 8.8.103.109.4321 -> 239.0.0.1.4321: udp 400
2.525144 kvlan103 in 8.8.103.109.4321 -> 239.0.0.1.4321: udp 400
2.525153 kvlan104 out 8.8.103.109.4321 -> 239.0.0.1.4321: udp 400

5, IGMP report
http://nemesis.sourceforge.net/manpages/nemesis-igmp.1.html

Posted by shock at 10:50 AM
Labels:

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)