Date: Sun, 2 Mar 1997 18:28:27 -0800 (PST) From: Archie Cobbs <archie@whistle.com> To: freebsd-multimedia@freebsd.org Subject: multicast firewall implications Message-ID: <199703030228.SAA23088@bubba.whistle.com>
next in thread | raw e-mail | index | archive | help
I have a lot of questions... :-) What are the firewall implications of having a multicast router? Is there an accepted standard way of safely combining the two? Suppose machine A is a protected internal machine, and this machine is to run mrouted(8), serving as the local end of a multi-cast tunnel. The other (upstream) end of the tunnel is machine B which is external. Is it sufficient to open a hole in the firewall for all traffic between A and B for IP protocol 4 (IP-in-IP) only? To what degree does opening this hole compromise the security of the internal network? What non-multicast traffic is associated with multi-cast routing or with the popular MBONE applications (sdr, vat, vic, etc.), if any? Do IP packets destined for 224.x.x.x ever "jump across" into normal class A, B, or C addresses? Thanks, -Archie ___________________________________________________________________________ Archie Cobbs * Whistle Communications, Inc. * http://www.whistle.com
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199703030228.SAA23088>