Fortinet black logo

Cookbook

Configuring the HQ multicast policy and phase 2 settings

Copy Link
Copy Doc ID 4d801240-7ccc-11e9-81a4-00505692583a:933659
Download PDF
  1. On HQ, go to Policy & Objects > Multicast Policy.

    Create a new policy and allow the multicast traffic from the source interface to the tunnel.

  2. Create another multicast policy that allows multicast traffic from the tunnel to the LAN interface of the multicast server.

  3. Go to VPN > IPsec Tunnels and edit the VPN tunnel.

    Select Convert To Custom Tunnel and add a Phase 2 Selector with 10.1.1.0/24 as the local address and 239.0.0.0/8 as the remote address.

  4. Enter the following CLI command to enable multicast forwarding.

    config system settings

    set multicast-forward enable

    end

  1. On HQ, go to Policy & Objects > Multicast Policy.

    Create a new policy and allow the multicast traffic from the source interface to the tunnel.

  2. Create another multicast policy that allows multicast traffic from the tunnel to the LAN interface of the multicast server.

  3. Go to VPN > IPsec Tunnels and edit the VPN tunnel.

    Select Convert To Custom Tunnel and add a Phase 2 Selector with 10.1.1.0/24 as the local address and 239.0.0.0/8 as the remote address.

  4. Enter the following CLI command to enable multicast forwarding.

    config system settings

    set multicast-forward enable

    end