Провайдер IPTV 77.84.171.125/30 <=> CCR1036 77.84.171.126/30 ether1 <= 10.11.11.1 pptp 10.11.11.11=> RB2011UiAS-2HnD / vlc-client за nat в подсети 192.168.88.0/24
подсеть 10.11.11.0/24 в которой pptp пользователи тоже NAT-ится в сторону провайдера IPTV
Между маршрутизаторами настроен PIM.
CCR1036
Код: Выделить всё
routing pim interface print detail
Flags: X - disabled, I - inactive, D - dynamic, R - designated-router, v1 - IGMPv1, v2 - IGMPv2, v3 - IGMPv3
0 Rv2 interface=ether1 protocols=pim,igmp preferred-source-address=0.0.0.0 dr-priority=1 hello-period=30s hello-trigerred-delay=5s hello-holdtime=1m45s
propagation-delay=50 override-interval=250 tracking-support=yes require-hello=yes join-prune-period=1m join-prune-holdtime=3m30s assert-time=3m
assert-override-interval=3s alternative-subnets=224.0.0.0/4,77.94.170.0/23 igmp-version=IGMPv2
1 Rv2 interface=<pptp-mpoint_0011> protocols=pim,igmp preferred-source-address=0.0.0.0 dr-priority=1 hello-period=30s hello-trigerred-delay=5s
hello-holdtime=1m45s propagation-delay=50 override-interval=250 tracking-support=yes require-hello=yes join-prune-period=1m
join-prune-holdtime=3m30s assert-time=3m assert-override-interval=3s alternative-subnets=224.0.0.0/4,77.94.170.0/23 igmp-version=IGMPv2
2 DR interface=register protocols=pim dr-priority=1 hello-period=30s hello-trigerred-delay=5s hello-holdtime=1m45s propagation-delay=50
override-interval=250 tracking-support=yes require-hello=yes join-prune-period=1m join-prune-holdtime=3m30s assert-time=3m
assert-override-interval=3s alternative-subnets=""
RB2011
Код: Выделить всё
routing pim interface print detail
Flags: X - disabled, I - inactive, D - dynamic, R - designated-router, v1 - IGMPv1, v2 - IGMPv2, v3 - IGMPv3
0 Rv2 interface=mpoint_0011 protocols=pim,igmp preferred-source-address=0.0.0.0 dr-priority=1 hello-period=30s hello-trigerred-delay=5s hello-holdtime=1m45s
propagation-delay=50 override-interval=250 tracking-support=yes require-hello=yes join-prune-period=1m join-prune-holdtime=3m30s assert-time=3m
assert-override-interval=3s alternative-subnets=224.0.0.0/4,77.94.170.0/23 igmp-version=IGMPv2
1 Rv2 interface=home-network protocols=pim,igmp preferred-source-address=0.0.0.0 dr-priority=1 hello-period=30s hello-trigerred-delay=5s hello-holdtime=1m45s
propagation-delay=50 override-interval=250 tracking-support=yes require-hello=yes join-prune-period=1m join-prune-holdtime=3m30s assert-time=3m
assert-override-interval=3s alternative-subnets=224.0.0.0/4,77.94.170.0/23 igmp-version=IGMPv2
2 DR interface=register protocols=pim dr-priority=1 hello-period=30s hello-trigerred-delay=5s hello-holdtime=1m45s propagation-delay=50
override-interval=250 tracking-support=yes require-hello=yes join-prune-period=1m join-prune-holdtime=3m30s assert-time=3m
assert-override-interval=3s alternative-subnets=""
RP на обоих маршрутизаторах прописана одинаково. Маршрутизация есть, пинги идут
Код: Выделить всё
ping 77.94.170.254
HOST SIZE TTL TIME STATUS
77.94.170.254 56 251 4ms
77.94.170.254 56 251 4ms
sent=2 received=2 packet-loss=0% min-rtt=4ms avg-rtt=4ms max-rtt=4m
Код: Выделить всё
routing pim rp print detail
Flags: D - dynamic, X - disabled
0 address=77.94.170.254 type=static group=224.0.0.0/4 priority=192 hash-mask-length=30 active-groups=1
RP neighbors:
RB2011
Код: Выделить всё
routing pim neighbors> print
ADDRESS INTERFACE PRIORITY TIMEOUT
10.11.11.1 mpoint_0011 100 1m31s
[admin@Home_router] /routing pim neighbors> print detail
address=10.11.11.1 interface=mpoint_0011 priority=100 holdtime=1m45s timeout=1m35s
CCR1036
Код: Выделить всё
routing pim neighbors print detail
address=10.11.11.11 interface=<pptp-mpoint_0011> priority=1 holdtime=1m45s timeout=1m25s
address=77.94.171.125 interface=ether1 priority=10 holdtime=1m45s timeout=1m22s
firewall filter разрешен input и forward igmp и udp на обоих маршрутизаторах
Код: Выделить всё
ip firewall filter print detail
Flags: X - disabled, I - invalid, D - dynamic
0 chain=forward action=accept protocol=udp log=no log-prefix=""
1 chain=input action=accept protocol=udp log=no log-prefix=""
2 chain=forward action=accept protocol=igmp log=no log-prefix=""
3 chain=input action=accept protocol=igmp log=no log-prefix=""
firewall nat как включал так и выключал NAT на мультикастовые адреса - результат по проблеме, о которой ниже, не меняется.
Код: Выделить всё
ip firewall nat print detail
Flags: X - disabled, I - invalid, D - dynamic
0 chain=srcnat action=masquerade src-address=192.168.88.0/24 dst-address=224.0.0.0/4 out-interface=mpoint_0011 log=no log-prefix=""
1 chain=srcnat action=masquerade src-address=192.168.88.0/24 dst-address=77.94.170.0/23 out-interface=mpoint_0011 log=no log-prefix=""
При попытке посмотреть видео из сети 192.168.88.0/24 по адресу udp://@234.5.2.1:1234 ситуация следующая
RB2011
Код: Выделить всё
routing pim join print detail
Flags: RP - (*,*,RP), WC - (*,G), SG - (S,G), SG_rpt - (S,G,rpt)
WC group=224.0.0.0 source=77.94.170.254 rp=77.94.170.254 upsteam-interface-rp=mpoint_0011 join-state=not-joined
i-am-designated-router=home-network,mpoint_0011,mpoint_0011,home-network joined-rp="" joined="" pruned="" prune-pending="" could-assert-wc=""
immediate-rp="" immediate-sg-rpt=""
SG group=234.5.2.1 source=0.0.0.0 rp=77.94.170.254 upsteam-interface-rp=mpoint_0011 join-state=joined timeout=28s
local-receivers=home-network,home-network i-am-designated-router=home-network,mpoint_0011,mpoint_0011,home-network joined-rp="" joined-wc=""
joined="" pruned="" prune-pending="" assert-winner="" assert-loser="" assert-winner-wc="" assert-loser-wc=""
assert-tracking-wc=home-network,mpoint_0011,mpoint_0011,home-network could-assert-wc=home-network,home-network immediate-rp=""
immediate-wc=home-network,home-network immediate-sg-rpt=home-network,home-network include-wc=home-network,home-network
SG group=239.255.255.250 source=0.0.0.0 rp=77.94.170.254 upsteam-interface-rp=mpoint_0011 join-state=joined timeout=30s
local-receivers=home-network,home-network i-am-designated-router=home-network,mpoint_0011,mpoint_0011,home-network joined-rp="" joined-wc=""
joined="" pruned="" prune-pending="" assert-winner="" assert-loser="" assert-winner-wc="" assert-loser-wc=""
assert-tracking-wc=home-network,mpoint_0011,mpoint_0011,home-network could-assert-wc=home-network,home-network immediate-rp=""
immediate-wc=home-network,home-network immediate-sg-rpt=home-network,home-network include-wc=home-network,home-network
SG_rpt group=239.255.255.250 source=192.168.88.43 rp=77.94.170.254 upsteam-interface-src=home-network upsteam-interface-rp=mpoint_0011 join-state=joined
join-register-state=joined timeout=1s keepalive-timer=yes local-receivers=home-network,home-network
i-am-designated-router=home-network,mpoint_0011,mpoint_0011,home-network joined-rp="" joined-wc="" joined="" pruned="" prune-pending=""
assert-winner="" assert-loser="" assert-winner-wc="" assert-loser-wc="" could-assert-wc=home-network,home-network immediate-rp=""
immediate-wc=home-network,home-network immediate-sg="" immediate-sg-rpt=home-network,home-network include-wc=home-network,home-network
CCR1036
Код: Выделить всё
routing pim join print detail
Flags: RP - (*,*,RP), WC - (*,G), SG - (S,G), SG_rpt - (S,G,rpt)
WC group=224.0.0.0 source=77.94.170.254 rp=77.94.170.254 upsteam-interface-rp=ether1 join-state=not-joined
i-am-designated-router=<pptp-mpoint_0011>,ether1,<pptp-mpoint_0011>,ether1 joined-rp="" joined="" pruned="" prune-pending="" could-assert-wc=""
immediate-rp="" immediate-sg-rpt=""
SG group=224.0.1.39 source=0.0.0.0 rp=77.94.170.254 upsteam-interface-rp=ether1 join-state=not-joined local-receivers=""
i-am-designated-router=<pptp-mpoint_0011>,ether1,<pptp-mpoint_0011>,ether1 joined-rp="" joined-wc="" joined="" pruned="" prune-pending=""
assert-winner="" assert-loser="" assert-winner-wc="" assert-loser-wc="" assert-tracking-wc="" could-assert-wc="" immediate-rp="" immediate-wc=""
immediate-sg-rpt="" include-wc=""
Т.е. группа 234.5.2.1 регистрируется только на RB2011 и даже не пытается ее зарегистрировать на CCR1036 для дальнейшего построения RPT.
Подскажите кто знает, где и что я не правильно делаю? Перечитал документацию вдоль и поперек, пересмотрел много подробных инструкций по поднятию сего дела, к сожалению в основном на Cisco, но вот на Mikrotik`ах так и не осилил.
Всем спасибо заранее.