Re: Multicast and security
> I'm looking at adding MROUTING to my gateway/firewall box (Soekris > 4801 running 5.4 RC2). However having not played with multicast > before I'm looking for pointers on the security issues (I don't want > to create a gaping hole in my FW). It depends on how your ISP is doing his multicast routing. Here we are using PIM and it means: PIM proto 103 from router to router and from router to 224.0.0.13/32 IGMP proto 2 from client to 224/4 UDP from client to 224/4 Olivier ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Multicast and security
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 My ISP ( sonic.net - a *great* ISP) just added support for the BBC multicast trial ( see http://support.bbc.co.uk/multicast/streams.html ). I'm looking at adding MROUTING to my gateway/firewall box (Soekris 4801 running 5.4 RC2). However having not played with multicast before I'm looking for pointers on the security issues (I don't want to create a gaping hole in my FW). I'm using ipfw for my normal FW stuff and I assume I need to add rules for 224.0.0.0/4 to let mrouted do it's job but what (if anything) do I need to do to make sure this can't be abused from the outside? John -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.1 (MingW32) iD8DBQFCZD+TaVyA7PElsKkRAh/IAJ9H22H0QJUrt9xuO44NZrdP1jQpRwCgnV3y mxRoeFr9HTcut7AA9/OOgQs= =/EH4 -END PGP SIGNATURE- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"