RTMFP Pure IP Multicast - AMS in DMZ - Firewall Config

Question

Hello,I'm currently assisting with putting an AMS server responsible for live streaming to a pure IP multicast group from behind a DMZ. The DMZ is through a Juniper firewall that supports filtering IP Multicast.I'm assuming the following rule needs to exist:AMS Server publishing video to the IP Multicast Address and Port used by pure IP multicast.Do any other rules need to exist? For instance, inbound communication to the AMS server from the same IP Multicast Address and Port via other nodes that are part of that pure IP Multicast group?I've searched the forum and didn't see anything immediately obvious and the only Adobe doc that I found that mentioned anything to this regard stated "Within a firewall use IP Multicast" - http://help.adobe.com/en_US/adobemediaserver/devguide/WSa4cb07693d123884520b86f312a354ba36d-7ffe.2.3.html#WS0914fed73b20fbab5f67e9a31326e030390-8000.2.3I just need to figure out which holes to punch between the internal intranet network and the Adobe Media Server DMZ.Thanks!

Michael Thornburgh · Accepted Answer

for a pure IP multicast, the clients send no traffic to the server. presumably you're using RTMFP URI "rtmfp:" so the clients wouldn't know the server's address anyway.

it should be the case that the only hole needed is for the server to be able to send packets to the multicast destination address and port.

Sign up

To post, reply, or follow discussions, please sign in with your Adobe ID.

Sign in to Adobe Community

To post, reply, or follow discussions, please sign in with your Adobe ID.

Scanning file for viruses.

This file cannot be downloaded