From owner-freebsd-net@freebsd.org  Mon Nov  4 17:39:47 2019
Return-Path: <owner-freebsd-net@freebsd.org>
Delivered-To: freebsd-net@mailman.nyi.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
 by mailman.nyi.freebsd.org (Postfix) with ESMTP id 0054D1AA1EE
 for <freebsd-net@mailman.nyi.freebsd.org>;
 Mon,  4 Nov 2019 17:39:47 +0000 (UTC) (envelope-from vit@otcnet.ru)
Received: from mail.otcnet.ru (mail.otcnet.ru [194.190.78.3])
 by mx1.freebsd.org (Postfix) with ESMTP id 476Kmx0wwsz46jD
 for <freebsd-net@freebsd.org>; Mon,  4 Nov 2019 17:39:44 +0000 (UTC)
 (envelope-from vit@otcnet.ru)
Received: from MacBook-Gamov.local (unknown [195.91.148.145])
 by mail.otcnet.ru (Postfix) with ESMTPSA id 5375E72B99;
 Mon,  4 Nov 2019 20:39:36 +0300 (MSK)
Subject: Re: FreeBSD as multicast router
To: mike@karels.net, "Rodney W. Grimes" <freebsd-rwg@gndrsh.dnsmgr.net>
Cc: freebsd-net@freebsd.org
References: <201911030522.xA35M1fW052952@mail.karels.net>
From: Victor Gamov <vit@otcnet.ru>
Organization: OstankinoTelecom
Message-ID: <8401b22b-be4a-c10c-fb86-0b44beac57e0@otcnet.ru>
Date: Mon, 4 Nov 2019 20:39:15 +0300
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.13; rv:68.0)
 Gecko/20100101 Thunderbird/68.2.1
MIME-Version: 1.0
In-Reply-To: <201911030522.xA35M1fW052952@mail.karels.net>
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Language: en-US
Content-Transfer-Encoding: 7bit
X-Rspamd-Queue-Id: 476Kmx0wwsz46jD
X-Spamd-Bar: -----
Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none;
 spf=pass (mx1.freebsd.org: domain of vit@otcnet.ru designates 194.190.78.3 as
 permitted sender) smtp.mailfrom=vit@otcnet.ru
X-Spamd-Result: default: False [-5.52 / 15.00]; ARC_NA(0.00)[];
 RCVD_VIA_SMTP_AUTH(0.00)[]; NEURAL_HAM_MEDIUM(-1.00)[-1.000,0];
 FROM_HAS_DN(0.00)[]; RCPT_COUNT_THREE(0.00)[3];
 R_SPF_ALLOW(-0.20)[+a:mail.otcnet.ru];
 NEURAL_HAM_LONG(-1.00)[-1.000,0]; MIME_GOOD(-0.10)[text/plain];
 DMARC_NA(0.00)[otcnet.ru]; TO_DN_SOME(0.00)[];
 HAS_ORG_HEADER(0.00)[]; TO_MATCH_ENVRCPT_SOME(0.00)[];
 IP_SCORE(-3.32)[ip: (-8.75), ipnet: 194.190.78.0/24(-4.37), asn: 50822(-3.50),
 country: RU(0.01)]; RCVD_NO_TLS_LAST(0.10)[];
 FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[];
 MIME_TRACE(0.00)[0:+];
 ASN(0.00)[asn:50822, ipnet:194.190.78.0/24, country:RU];
 MID_RHS_MATCH_FROM(0.00)[]; RCVD_COUNT_TWO(0.00)[2]
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-net>,
 <mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net/>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-net>,
 <mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 04 Nov 2019 17:39:47 -0000



On 03/11/2019 08:22, Mike Karels wrote:
>>>>> Hi All
>>>>>
>>>>> I have (noob) questions about multicast routing under FreeBSD.
>>>>>
>>>>> I have FreeBSD box with two (or more) multicast enabled interfaces (e.x.
>>>>> vlan750 and vlan299).  vlan750 connected to multicast source.
>>>>>
>>>>> Then pimd installed and only this two interfaces enabled in pimd config.
>>>>> Multicast routes successfully installed by pimd and listed by `netstat
>>>>> -g -f inet`
>>>>>
>>>>> Then client on vlan299 send IGMP-Join (this Join received by FreeBSD on
>>>>> vlan299)
>>>>>
>>>>> The question is:  who will forward muilticast from one interface
>>>>> (vlan750) to another (vlan299)?  Is it kernel specific job or I need
>>>>> additional software?
>>>
>>>> Please read the manpage multicast(4) "man 4 multicast",
>>>> you should need to build a custom kernel with the "options MROUTING"
>>>> to enable the multicast forwarding in the kernel.
>>>
>>> If "netstat -g" shows routes, the kernel must have been built with "options
>>> MROUTING".
> 
>> Indeed.
> 
>>>
>>> The kernel does the forwarding, according to those routing tables installed
>>> by pimd or another multicast routing program.  Is it not working?  It sounds
>>> like you are very close.
> 
>> Could it be sysctl net.inet.ip.forwarding?  Does that still apply to mroutes?
> 
> No, they are separate.  The test is just whether MROUTING is enabled, and
> whether a multicast router like pimd is active.
> 
> One other thing to check would be "netstat -gs" (multicast stats).

Oops!

=====
# netstat -f inet -gs
No IPv4 MROUTING kernel support.
=====

But I have ip_mroute.ko loaded and netstat -g shows something like

=====
# netstat -f inet -g

IPv4 Virtual Interface Table
  Vif   Thresh   Local-Address   Remote-Address    Pkts-In   Pkts-Out
   0         1   A.A.A.A                           0          0
   1         1   B.B.B.19                          0          0
   2        10   10.199.199.102                          0          0
   3        15   10.200.200.6                        77440          0
   4         1   A.A.A.A                           0      77440

IPv4 Multicast Forwarding Table
  Origin          Group             Packets In-Vif  Out-Vifs:Ttls
  10.200.200.5    232.232.8.33        1844    3    4:1
  10.200.200.5    232.232.8.171        1843    3    4:1
  10.200.200.5    232.232.8.58         4609    3    4:1
  10.200.200.5    232.232.8.154        1844    3    4:1
  10.200.200.5    232.232.8.170        1844    3    4:1
=====


and

=====
# pimd -r
Virtual Interface Table 
======================================================
Vif  Local Address    Subnet              Thresh  Flags      Neighbors
---  ---------------  ------------------  ------  --------- 
-----------------
   0  A.A.A.A    A.A.A.A/25            1  DR NO-NBR
   1  B.B.B.19   B.B.B              1  DR NO-NBR
   2  10.199.199.102   10.199.199.100/30       10  DR PIM 
10.199.199.101
   3  10.200.200.6     10.200.200/29           15  DR NO-NBR
   4  A.A.A.A    register_vif0            1

  Vif  SSM Group        Sources

Multicast Routing Table 
======================================================
----------------------------------- (S,G) 
------------------------------------
Source           Group            RP Address       Flags
---------------  ---------------  --------------- 
---------------------------
10.200.200.5     232.232.8.33     SSM              CACHE SG
Joined   oifs: ....j
Pruned   oifs: .....
Leaves   oifs: .....
Asserted oifs: .....
Outgoing oifs: ....o
Incoming     : ...I.
=====


A.A.A.A is external IP-address.  No multicast trafic must be sended to 
this interface.
10.200.200.6 -- vlan750, multicast comes from here
10.199.199.102 -- vlan299, multicast must be forfarded here after 
IGMP-Join received from 10.199.199.101/30


So, kernel with MROUTING options must be configured/installed or 
ip_mroute.ko is enough?


P.S. FreeBSD 11.3-STABLE #0 r351605M

--
CU,
Victor Gamov