I have a testbed with a Sophos UTM where there are two networks connected (each on a interface of the UTM).
N1: 192.168.1.0/24 (UTM IP: 192.168.1.1)N2: 192.168.2.0/24 (UTM IP: 192.168.2.1)
As both networks are known to the UTM, there was no need to define a static route from one network to the other.
Network traffic is working fine between both subnets. (Unicast) packets are forwarded from N1 to N2 and vice versa.
I then added three hosts on one subnet (N2), where one is the sender of multicast packets and the other two are the receivers.
192.168.2.2 is sending multicast packets (using iperf) to the IP address 188.8.131.52.192.168.2.3 and 192.168.2.4 bind to 184.108.40.206 and are able to receive the packets.
So far, so good.
I've then added a host to N1 (192.168.1.2) which should also receive the multicast packets.Unfortunately, it does not. I do not have a clue, why.I've also followed various documentation pages and howtos (also on the Sophos website), but no one did work.I've configured multicast interfaces in the multicast routing section as well as a multicast router (I've tried both IP addresses of the UTM and wanted to use the UTM as multicast router).I even added routes as the documentation reads that one needs to add multicast routes if multicast packets should be forwarded between subnets (is that really necessary in this scenario).
No one of my tests allowed me to receive broadcast packets on subnet N1.
Does anyone have a clue as to why?Is there some documentation or howto available that also works for this scenario?
Did you get this to work? I tried a while back, but I too failed miserably. I have an app on my iPhone that uses multicasts to find my Denon amp which is now on another subnet. it would have been handy today if it had worked, so I tried again - here's what I did;
That's it - app found the amp at the first attempt. 9.702-1.
Edit - I just checked all of the release notes as far back as the date of the original post, and there's no mention of any fixes. Works for me though, might be worth another try if you've not done so.
Unfortunately, I did not get this up and running.
I've given up trying, as there is no support from Sophos at all on this topic and our partners do not know about this feature as well.
They even suggested us to make workarounds...
Sorry for the bad news, but Sophos is not performing well when it comes to customer support here...
Did you try Le's suggestion above? I only set this up to play with it and have disabled it. Here's the setting I have that used the Windows Server. It's been a long time, but I don't think I changed anything.
Cheers - Bob
as this answer came a year after my question, we did not continue that project in that way.Instead we changed cabling in the building to have the necessary networks available where they were needed and people now have additional PCs where they can watch the video cameras.What Le suggested might be really good, but I did not have the time nor the demand to try it out.Unfortunately, the answer came too late for me.
Even our partner said that they did not manage to do that yet and that it is difficult with Sophos UTM. As we needed a solution, we had to find an alternative...
@ThomasSorry to hear about your difficulty and my reply is too late to help you (my apology)Multicast on UTM works fine as there are customers using it for video applications.Hopefully next time (and I am sure) that our support will help you out. Thanks for your understanding and patient.@BobThanks so much for your expert answers and I learn so much from your comments/suggestions. It is very much appreciated!