Edgerouter X - Sky Sport Boost

[Randell Floyd]

Right, first of all I must admit I'm computer savvy, but networking has never been my thing!

I'm at my wits end trying to get out TalkTalk Sky Sport boost to work on my setup.

It works fine when run direct from the Billion 8800XL or the TP-Link w9970 as a modem/router. Sadly with a lot of items needing to be run on the network, from CCTV, NAS, Powerlines and a Ubiquiti UAP-AC-PRO UniFi AC1750 the Billion ran into issues with compatibility of running them all via a simple switch.

I ended up with a Edgerouter X and it all worked flawlessly, using the Billion/TP-Link as a modem and using bridge mode to the X. When we had SkySports added last week, it doesn't work of course.

I tested it via using the Billion removing the bridge setting, and it works straight away, but I'm getting above my skill level when looking at online help, mostly as I'm a little lost when doing anything but simple command in CLI, favouring trying to use the graphical user interface. All the posts all seem to revolve around using command line. Take the following as an example https://community-experiment.ubnt.c...outer-lite-v1-6-0-multicast-iptv-simple-setup

I'm guessing I've issues in regards to multicast, IGMP and VLAN as that's what keeps popping up.

Would anyone be so kind as to help a n00b with a little guidance as to what to do?

 

[Randell Floyd]

Two steps forwards, one step back.

I've managed to get through the CLI setup for an IGMP proxy with the added WAN_In firewall being changed to accept. I can have as stream working for an exact amount of time (3min I'd say) and then it freezes, changing channel make it live again. I've also noticed when streaming is working pages on the internet load slower, all through wifi, so I'm going to guess the multicast if flooding my network?

Nothing I've done has helped that element if anyone has any tips?

 

[Randell Floyd]

Somehow I've found someone elses code and it's just worked from the off!

Spoiler: code

Edgerouter Lite v1.6.0 multicast IPTV / simple setup.
[ New ]

Options

‎12-06-2014 09:44 PM - edited ‎12-08-2014 07:01 PM

I had posted a couple of messages about setting up a EdgeOS device for consumer consumption with a Internet and IPTV provider. Have seen many posts, and thankfully this doesn't have complexity of PPOE. However I would suspect that anybody using this config should be able to build PPPOE on top of this.



Background;



The configuration of this network is as follows;



ONT (or VDSL) device in bridge mode, bridge connected to;

ETH0 EdgeRouter (dhcp client)

ETH1 EdgeRouter, configured as 192.168.2.1 /24

ETH1 EdgeRouter connected to Layer 2 IGMP capable switch (in my case Juniper EX3300)



Source address of my multicast traffic = 10.32.0.0/20

Multicast destinations = 239.0.0.0/8 (I was lazy)



The concept is, the firewall must process IGMP via proxy. This is one part of the puzzle posted by others. The second part is rules processing that is localized to your firewall and your destination networks. Considering that I also use PIM inside my network to allow things like SSDP to traverse subnets, I still wanted to keep my rules clean.



In short, for others who are attempting this. Two things.

1) You need IGMP proxy

2) You need firewall rules to allow multicast destination your router, including IGMP messaging.





My firewall config via "show firewall"

<show firewall>

all-ping enable
broadcast-ping disable
group {
address-group Local {
address 192.168.100.0-192.168.100.255
address 192.168.50.0-192.168.50.255
address 192.168.69.0-192.168.69.255
address 192.168.2.0-192.168.2.255
description ""
}
port-group Drop_Bad {
description "Drop unwanted things to router under all circustances. "
port 80
port 443
port 22
port 23
port 53
}
}
ipv6-receive-redirects disable
ipv6-src-route disable
ip-src-route disable
log-martians enable
name Internet_Local {
default-action drop
description "Internet To Router"
enable-default-log
rule 1 {
action accept
description "Allow IPTV Multicast UDP"
destination {
address 239.0.0.0/8
}
log disable
protocol udp
source {
address 10.0.0.0/8
}
}
rule 2 {
action accept
description "Allow IGMP"
log disable
protocol igmp
}
rule 3 {
action accept
description "Allow Established"
log disable
protocol all
state {
established enable
invalid disable
new disable
related enable
}
}
rule 4 {
action accept
description "Allow ICMP"
log disable
protocol icmp
}
rule 5 {
action drop
description "Drop Bad"
destination {
group {
port-group Drop_Bad
}
}
log enable
protocol all
}
}
name Internet_to_Lan {
default-action drop
description "Internet To Router"
enable-default-log
rule 1 {
action accept
description "Allow IPTV Multicast UDP"
destination {
address 239.0.0.0/8
}
log disable
protocol udp
source {
address 10.0.0.0/8
}
}
rule 2 {
action accept
description "Allow IGMP"
log disable
protocol igmp
}
rule 3 {
action accept
description "Allow Established"
log disable
protocol all
state {
established enable
invalid disable
new disable
related enable
}
}
rule 4 {
action accept
description "Allow ICMP"
log disable
protocol icmp
}
rule 5 {
action drop
description "Drop Bad"
destination {
group {
port-group Drop_Bad
}
}
log enable
protocol all
}
}
name ZyxelNet {
default-action accept
description ""
rule 1 {
action accept
description "Enable Established"
log disable
protocol all
state {
established enable
invalid disable
new disable
related enable
}
}
}
receive-redirects disable
send-redirects enable
source-validation disable
syn-cookies enable

</show firewall>



My IGMP proxy config

<show protocols igmp-proxy>

protocols {
igmp-proxy {
interface eth0 {
alt-subnet 0.0.0.0/0
role upstream
threshold 1
}
interface eth1 {
alt-subnet 0.0.0.0/0
role downstream
threshold 1
}
}

</show protocols igmp proxy>





Hopefully this helps somebody else. Obviously you can pair it down to your specific multicast source, in my configuraiton my known sources are about 1,500-2,000 multicast sources, so I just blanketed them.