EOIP + PIM, forwarding broadcasts/multicasts?

Rivera · Sun Aug 21, 2016 3:47 am

Hello!
Need help with something i never touched before.
What i'm trying to achieve:
Bridge two networks for flawless access between them. No issue here, just add EoIP or IPIP and setup one route - it just works. Additional thanks to MT team for adding "use IPSec" flag in some interfaces types, it helps so much!
But on side A, there is alot of broadcast traffic i want to get on Side B. All apps send broadcast to standard 224.0.0.0/4 subnet.
Ideally, i want broadcasts from site A going to site B and vice-versa. All that without using bridges on site A (last time i tried, bridges wasn't playing well with VRRP). I can configure any type of tunnel between this two nodes, but it also should be encrypted (right now i'm using IPSec encrypted IPIP).
i can probably use routing -> PIM for that task, but i'm not sure. I'm not a network guy.

install info if that matters:
Site A: Mikrotik RouterOS 6.36, x86 VM, subnet 192.168.11.0/24. There is actually two routers, configured for VRRP fallback. No bridges, 3 VLANs, whole network is routed (just 2 physical interfaces - 1 for WAN, 1 for LAN and around 10 virtual - VRRP, VLAN interfaces, 6in4, etc).
Site B: Mikrotik hAP AC, RouterOS 6.36, subnet 192.168.12.0/24. No advanced stuff. 1 WAN port, 4 port (and 2 wlan interfaces) in bridge for LAN. Great tiny router btw, will fit anywhere.
Both routers configured with static IPs, using different ISPs, no filtering on ISP side and i can use any protocols and ports. 100 mbps line between them, latency is around 3-4ms between points (same city)

Rivera · Sun Aug 21, 2016 7:01 pm

After tinkering with PIM for some time i can't get it to work.
I used EoIP tunnel (192.168.44.1/24 "transport" network, site A is 192.168.44.10, site B is 192.168.44.11).
Added route for both networks on routers. I can access this networks from both sides without issues. Speed is a bit slow (30-40 mbps, guessing that's hardware limit of hAP ac lite when it comes to encryption), but connection is solid.

But i can't get PIM to work.

Pim config:

/routing pim rp print
Flags: D - dynamic, X - disabled
 #    ADDRESS         TYPE        PRIORITY
 0    192.168.69.1    static           192
/routing pim interface print
Flags: X - disabled, I - inactive, D - dynamic, R - designated-router, v1 - IGMPv1, v2 - IGMPv2, v3 - IGMPv3
 #      INTERFACE                                                                                                                              PROTOCOLS
 0  Rv2 vrrp-gw-v4                                                                                                                             pim
                                                                                                                                               igmp
 1  Rv2 eoip-kalm                                                                                                                              pim
                                                                                                                                               igmp
 2 DR   register                                                                                                                               pim

There is neighbour in /routing pim neighbors as expected:

/routing pim neighbors print
ADDRESS         INTERFACE                                                                                                                                                                                                                               PRIORITY TIMEOUT
192.168.44.11   eoip-kalm

However if i go to joins, i see that RP i added is still not joined:

Flags: RP - (*,*,RP), WC - (*,G), SG - (S,G), SG_rpt - (S,G,rpt)
       GROUP           SOURCE          RP
    WC 224.0.0.0       192.168.69.1    192.168.69.1
    SG 233.89.188.1    0.0.0.0         192.168.69.1
    SG 239.0.0.250     0.0.0.0         192.168.69.1
    SG 239.192.152.143 0.0.0.0         192.168.69.1
    SG 239.255.255.250 0.0.0.0         192.168.69.1
SG_rpt 239.255.255.250 192.168.69.8    192.168.69.1
SG_rpt 239.255.255.250 192.168.69.10   192.168.69.1
SG_rpt 239.255.255.250 192.168.69.11   192.168.69.1
SG_rpt 239.255.255.250 192.168.69.12   192.168.69.1
SG_rpt 239.255.255.250 192.168.69.62   192.168.69.1

192.168.69.1 with 224.0.0.0/4 have "not joined" status.

In addition, i see this messages in log:

18:58:55 pim,warning JoinDesired(S,G) = true: upstream neighbor for source 192.168.69.8 and group 239.255.255.250: not found
18:59:07 pim,warning JoinDesired(S,G) = true: upstream neighbor for source 192.168.69.62 and group 239.255.255.250: not found
18:59:14 pim,warning JoinDesired(S,G) = true: upstream neighbor for source 192.168.69.12 and group 239.255.255.250: not found
18:59:30 pim,warning JoinDesired(S,G) = true: upstream neighbor for source 192.168.69.11 and group 239.255.255.250: not found
18:59:37 pim,warning JoinDesired(S,G) = false: upstream neighbor for source 192.168.69.62 and group 239.255.255.250: not found
18:59:48 pim,warning JoinDesired(S,G) = true: upstream neighbor for source 192.168.69.10 and group 239.255.255.250: not found
18:59:55 pim,warning JoinDesired(S,G) = true: upstream neighbor for source 192.168.69.8 and group 239.255.255.250: not found
19:00:14 pim,warning JoinDesired(S,G) = true: upstream neighbor for source 192.168.69.12 and group 239.255.255.250: not found

Rivera · Sun Aug 21, 2016 10:01 pm

It seems like VRRP interface itself doesn't receive broadcast/multicast traffic. Correct me if i'm wrong, but after i switched "upstream" port (the one with both PIM and IGMP) to "master" port of VRRP interface (vlan interface in my case), i stopped receiving "upstream neighbor for source X and group Y" messages. Sadly, i still doesn't see any traffic from site A on site B and 224.0.0.0 group is still "not joined"

EOIP + PIM, forwarding broadcasts/multicasts?

EOIP + PIM, forwarding broadcasts/multicasts?

Re: 2 routers 1 broadcast network

Re: EOIP + PIM, forwarding broadcasts/multicasts?

Who is online