GOLD: mDNS / Airplay across VLANs

Comments

10 comments

  • Avatar
    Firewalla

    There is an mDNS reflector inside your Gold, and we have seen cases, some of the intermediate devices may not like the reflection;  so in your case, check the switch on both segments.   

    Here is what we need to do with the netgear switch. 

    https://help.firewalla.com/hc/en-us/articles/360049613014-Firewalla-Gold-when-network-is-segmented-will-I-be-able-to-use-AirPlay-and-Chromcast-cross-networks-

     

    0
    Comment actions Permalink
  • Avatar
    C Home

    Hi @BatraD, I'm in the same situation. Did you have any success with Firewalla suggestion ? I don't... How did you turn on the STP mode on the Unifi AP ? Thanks

    0
    Comment actions Permalink
  • Avatar
    BatraD

    still does not work.. i have Unifi switches.. which used to work through a USG Router earlier..

     

    How do i confirm that the mDNS reflector is working ? 

     

    thanks

    0
    Comment actions Permalink
  • Avatar
    Anthony G

    Can I disable the mDNS reflector? I'm thinking I'd prefer that my HomeKit VLAN communicate 100% with the outside world through a couple of bridges (Apple TVs) that are allowed to connect to the Internet, and no communication in or out of the VLAN otherwise.


    For streaming to the Apple TVs from devices on another VLAN, I'd like to use AirPlay Direct, which streams point-to-point when I'm sitting close to the device.


    I imagine that *not* advertising the Apple TV IPs across VLANs with the reflector would be best for this?

    0
    Comment actions Permalink
  • Avatar
    Jon R

    I'm in a similar situation. RokuTV and Google Nest mini on an IOT VLAN and phones, computer, and iPad on home LAN. Only a month or two ago, I got Airplay working from my iPad to the TV after following Firewalla instructions to turn off IGMP snooping on my managed switch. Something changed though and now I have to switch my phone or iPad to the IOT network to cast or airplay anything. I didn't change any settings. I'm also a novice at networking, so I don't know about mapping or pinging.

    0
    Comment actions Permalink
  • Avatar
    Firewalla

    @Jon, you have a different problem from this thread.   In your case, what you need to do is to make sure your switch is not blocking some of the multicast traffic.  This means you have to look

    1. Outside of the IoT VLAN, on your iphone/ipad do you see speakers/tv in the IoT VLAN network? if you do, then mDNS is working.
    2. If you can not cast into the IoT VLAN network, then check the rules and make sure there is no local network blocks on the IoT VLAN.

    If (1) is broken, this is usually related to multicast traffic on your switch, and each switch is different ...

    0
    Comment actions Permalink
  • Avatar
    Anthony G

    Any advice on disabling mdns between segments? I don’t want my iot network to get/send any traffic to my main network.

    0
    Comment actions Permalink
  • Avatar
    Firewalla

    mDNS is a lookup service, it is really not traffic send directly from segment to segment; leaving it there should not cause any issues. 

    0
    Comment actions Permalink
  • Avatar
    Anthony G

    It gives my iPhone the IP addresses of my iot devices that are blocked by firewall rules, so they show up as unavailable. I don’t want the addresses of inaccessible devices to be advertised. I’m trying to create a completely isolated iot network.

    0
    Comment actions Permalink
  • Avatar
    Firewalla

    @Anthony, would you mind post a feature request here https://help.firewalla.com/hc/en-us/community/topics/115000356994-Feature-Requests-

    People can vote up that request

    0
    Comment actions Permalink

Please sign in to leave a comment.