Higher Education

 View Only
last person joined: 21 days ago 

Got questions on how to enable mobility in education? Submit them here!
Back to discussions
Expand all | Collapse all

Multicast support for DSS

This thread has been viewed 15 times

  • 1.  Multicast support for DSS

    Posted Aug 17, 2023 10:23 AM

    Does anyone have experience with allowing multicast, specifically to support the use of the Robot Operating System (ROS)? I have created a new VAP / SSID that allows both broadcast and multicast, however, the ROS communication between two devices isn't working. Based on my troubleshooting it would appear the traffic is getting inspected by the controllers firewall but is ultimately allowed, I don't see any denied sessions, but something seems to be blocking the multicast. 

    Below is the output from a few commands I have run to verify traffic is flowing as expected.

    ----------------------------------------------------------------------------------------------------------------------

    (MC2) [MDC] *#show datapath session table 10.126.16.4


    Datapath Session Table Entries
    ------------------------------

    Flags: F - fast age, S - src NAT, N - dest NAT
           D - deny, R - redirect, Y - no syn
           H - high prio, P - set prio, T - set ToS
           C - client, M - mirror, V - VOIP
           Q - Real-Time Quality analysis
           u - Upstream Real-Time Quality analysis
           I - Deep inspect, U - Locally destined
           E - Media Deep Inspect, G - media signal
           r - Route Nexthop, h - High Value
           A - Application Firewall Inspect
           B - Permanent, O - Openflow
           L - Log, o - Openflow config revision mismatched

    Source IP or MAC  Destination IP  Prot SPort DPort Cntr     Prio ToS Age Destination TAge Packets    Bytes      Flags           CPU ID  
    ----------------- --------------- ---- ----- ----- -------- ---- --- --- ----------- ---- ---------- ---------- --------------- ------- 
    10.126.16.4       239.255.0.1     17   50900 8650   2/22    0    0   1   tunnel 5567 b    6          1448       FCA             19       
                                                       
    10.126.16.4       224.0.0.22      2    2     2      0/0     6    48  0   tunnel 5567 1d   11         440        FCI             19       

    91.189.94.4       10.126.16.4     17   123   56728  0/0     0    18  0   tunnel 5567 4    1          76         F               22       
    10.126.16.4       239.255.0.1     17   38459 8650   2/12    0    0   0   tunnel 5567 1d   8          2048       FCA             19       
    10.126.16.4       91.189.94.4     17   56728 123    0/0     0    4   0   tunnel 5567 4    2          152        FC              19  

    ----------------------------------------------------------------------------------------------------------------------

    (MC2) [MDC] *#show datapath session table 10.126.16.4


    Datapath Session Table Entries
    ------------------------------

    Flags: F - fast age, S - src NAT, N - dest NAT
           D - deny, R - redirect, Y - no syn
           H - high prio, P - set prio, T - set ToS
           C - client, M - mirror, V - VOIP
           Q - Real-Time Quality analysis
           u - Upstream Real-Time Quality analysis
           I - Deep inspect, U - Locally destined
           E - Media Deep Inspect, G - media signal
           r - Route Nexthop, h - High Value
           A - Application Firewall Inspect
           B - Permanent, O - Openflow
           L - Log, o - Openflow config revision mismatched

    Source IP or MAC  Destination IP  Prot SPort DPort Cntr     Prio ToS Age Destination TAge Packets    Bytes      Flags           CPU ID  
    ----------------- --------------- ---- ----- ----- -------- ---- --- --- ----------- ---- ---------- ---------- --------------- ------- 
    10.126.16.4       10.126.16.6     17   34362 50140  0/0     0    0   0   tunnel 5567 b    41         16976      FC              19       
                                                       
    10.126.16.6       10.126.16.4     17   50140 34362  0/0     0    0   0   tunnel 5567 b    0          0          FY              19       

    10.126.16.4       224.0.0.22      2    2     2      0/0     6    48  1   tunnel 5567 14   3          120        FCI             19       

    10.126.16.4       10.126.16.6     17   42174 44931  0/0     0    0   1   0/0/2       c    0          0          FY              18       
    10.126.16.6       10.126.16.4     17   44931 42174  0/0     0    0   0   0/0/2       c    41         14948      FC              18       

    10.126.16.4       239.255.0.1     17   34362 8650   2/25    0    0   1   tunnel 5567 14   8          2400       FCA             19   

    ----------------------------------------------------------------------------------------------------------------------

    (MC1) [MDC] *#show datapath session table 10.126.16.4


    Datapath Session Table Entries
    ------------------------------

    Flags: F - fast age, S - src NAT, N - dest NAT
           D - deny, R - redirect, Y - no syn
           H - high prio, P - set prio, T - set ToS
           C - client, M - mirror, V - VOIP
           Q - Real-Time Quality analysis
           u - Upstream Real-Time Quality analysis
           I - Deep inspect, U - Locally destined
           E - Media Deep Inspect, G - media signal
           r - Route Nexthop, h - High Value
           A - Application Firewall Inspect
           B - Permanent, O - Openflow
           L - Log, o - Openflow config revision mismatched

    Source IP or MAC  Destination IP  Prot SPort DPort Cntr     Prio ToS Age Destination TAge Packets    Bytes      Flags           CPU ID  
    ----------------- --------------- ---- ----- ----- -------- ---- --- --- ----------- ---- ---------- ---------- --------------- ------- 
    10.126.16.4       224.0.0.22      2    2     2      0/0     6    48  0   0/0/2       24   9          360        FCI             29       
                                                       
    10.126.16.4       239.255.0.1     17   52417 8650   2/22    0    0   1   0/0/2       1f   10         2648       FCA             16       

    10.126.16.4       239.255.0.1     17   52272 8650   2/13    0    0   0   0/0/2       8    6          1800       FCA             16 



    ------------------------------
    [Matt]
    [Sr. Network Engineer]
    ------------------------------


  • 2.  RE: Multicast support for DSS

    EMPLOYEE
    Posted Aug 17, 2023 12:32 PM

    Are both devices on the same subnet?



    ------------------------------
    Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.

    HPE Design and Deploy Guides: https://community.arubanetworks.com/support/migrated-knowledge-base?attachments=&communitykey=dcc83c62-1a3a-4dd8-94dc-92968ea6fff1&pageindex=0&pagesize=12&search=&sort=most_recent&viewtype=card
    ------------------------------

    Original Message


  • 3.  RE: Multicast support for DSS

    Posted Aug 17, 2023 12:57 PM
    Yes, both are on the same subnet and have te same Aruba role--
    Sincerely,

    Matt Dillion
    Assistant Director of Infrastructure Services
    Christopher Newport University
    1 Avenue for the Arts
    Newport News, VA  23606
    O:  (757) 594-8628
    C:  (757) 897-8802
    E:  matthew.dillion@cnu.edu

    CONFIDENTIALITY NOTICE: This e-mail message, including any attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Please do not forward or include additional people when replying. If you believe that someone not included as a recipient needs to be aware of the information, please send the name of that person to the sender. Any unauthorized review, use, disclosure or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message.



    Original Message


  • 4.  RE: Multicast support for DSS

    EMPLOYEE
    Posted Aug 17, 2023 01:07 PM

    I would check to make sure you don't have bcmc-optimization on that VLAN.  That will drop broadcast/multicast irrespective of the VAP config.



    ------------------------------
    Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.

    HPE Design and Deploy Guides: https://community.arubanetworks.com/support/migrated-knowledge-base?attachments=&communitykey=dcc83c62-1a3a-4dd8-94dc-92968ea6fff1&pageindex=0&pagesize=12&search=&sort=most_recent&viewtype=card
    ------------------------------

    Original Message


  • 5.  RE: Multicast support for DSS

    Posted Aug 18, 2023 09:11 AM
    That is true, unfortunately I have already verified that on the Vlan. I would love nothing more than to blame the devices themselves but when we use a consumer grade wireless router the communication works just fine.

    --
    Sincerely,

    Matt Dillion
    Assistant Director of Infrastructure Services
    Christopher Newport University
    1 Avenue for the Arts
    Newport News, VA  23606
    O:  (757) 594-8628
    C:  (757) 897-8802
    E:  matthew.dillion@cnu.edu

    CONFIDENTIALITY NOTICE: This e-mail message, including any attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Please do not forward or include additional people when replying. If you believe that someone not included as a recipient needs to be aware of the information, please send the name of that person to the sender. Any unauthorized review, use, disclosure or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message.



    Original Message


  • 6.  RE: Multicast support for DSS

    EMPLOYEE
    Posted Aug 18, 2023 09:33 AM

    I'm just guessing based on my limited knowledge of your situation.  If you have a wired VLAN that is on the client network, I would plug a laptop into that VLAN and do a packet capture and see if you see the multicast traffic on that VLAN to level-set.



    ------------------------------
    Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.

    HPE Design and Deploy Guides: https://community.arubanetworks.com/support/migrated-knowledge-base?attachments=&communitykey=dcc83c62-1a3a-4dd8-94dc-92968ea6fff1&pageindex=0&pagesize=12&search=&sort=most_recent&viewtype=card
    ------------------------------

    Original Message


  • 7.  RE: Multicast support for DSS

    Posted Aug 22, 2023 08:21 AM
    That's a good idea! Thank you!! 

    --
    Sincerely,

    Matt Dillion
    Assistant Director of Infrastructure Services
    Christopher Newport University
    1 Avenue for the Arts
    Newport News, VA  23606
    O:  (757) 594-8628
    C:  (757) 897-8802
    E:  matthew.dillion@cnu.edu

    CONFIDENTIALITY NOTICE: This e-mail message, including any attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Please do not forward or include additional people when replying. If you believe that someone not included as a recipient needs to be aware of the information, please send the name of that person to the sender. Any unauthorized review, use, disclosure or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message.



    Original Message