SRX

  • 1.  Juniper SRX multicast

    Posted 05-14-2021 10:16
      |   view attached
    I am working on juniper SRX configuration where i need to configure multicast static join on an external facing interface and then chnage the group ip address to our internal range and forward that to internally

    Below is the config, 
    is that something that is possible?

    set protocols igmp interface ge-0/0/4.0 static group 239.8.8.8
    set security nat static rule-set rs1 from zone EXTERNAL
    set security nat static rule-set rs1 rule r1 match destination-address 239.8.8.8 
    set security nat static rule-set rs1 rule r1 then static-nat prefix 239.18.18.18/32 


    firewall policy

    set security policies from-zone EXTERNAL to-zone INSIDE policy ALL match source-address any
    set security policies from-zone EXTERNAL to-zone INSIDE policy ALL match destination-address any
    set security policies from-zone EXTERNAL to-zone INSIDE policy ALL match application any
    set security policies from-zone EXTERNAL to-zone INSIDE policy ALL then permit


    pim joins
    admin@SRX1500> show pim join
    Instance: PIM.master Family: INET
    R = Rendezvous Point Tree, S = Sparse, W = Wildcard

    Group: 239.8.8.8
    Source: *
    RP: local
    Flags: sparse,rptree,wildcard
    Upstream interface: ge-0/0/6.0

    Instance: PIM.master Family: INET6
    R = Rendezvous Point Tree, S = Sparse, W = Wildcard

    admin@SRX1500> show igmp group detail

    Interface: ge-0/0/4.0, Groups: 1
    Group: 239.8.8.8
    Group mode: Exclude
    Source: 0.0.0.0
    Source timeout: 0
    Last reported by: Local
    Group timeout: 0 Type: Static
    Group Adding Type Created at: 2021/5/10 13:51:58
    Output interface: ge-0/0/4.0

    I am trying to setup similar scenario that Cisco has (Multicast Reflection service)

    ------------------------------
    LAKHWINDER SMAGH
    ------------------------------