Fortinet Document Library

Version:

Version:

Version:


Table of Contents

Cookbook

Download PDF
Copy Link

Configuring the HQ multicast policy and phase 2 settings

  1. On HQ, go to Policy & Objects > Multicast Policy.

    Create a new policy and allow the multicast traffic from the source interface to the tunnel.

  2. Create another multicast policy that allows multicast traffic from the tunnel to the LAN interface of the multicast server.

  3. Go to VPN > IPsec Tunnels and edit the VPN tunnel.

    Select Convert To Custom Tunnel and add a Phase 2 Selector with 10.1.1.0/24 as the local address and 239.0.0.0/8 as the remote address.

  4. Enter the following CLI command to enable multicast forwarding.

    config system settings

    set multicast-forward enable

    end

Configuring the HQ multicast policy and phase 2 settings

  1. On HQ, go to Policy & Objects > Multicast Policy.

    Create a new policy and allow the multicast traffic from the source interface to the tunnel.

  2. Create another multicast policy that allows multicast traffic from the tunnel to the LAN interface of the multicast server.

  3. Go to VPN > IPsec Tunnels and edit the VPN tunnel.

    Select Convert To Custom Tunnel and add a Phase 2 Selector with 10.1.1.0/24 as the local address and 239.0.0.0/8 as the remote address.

  4. Enter the following CLI command to enable multicast forwarding.

    config system settings

    set multicast-forward enable

    end