Open Frames Download Complete PDF Send Feedback Print This Page

Previous

Next

Multicast acceleration

Multicast acceleration allows SecureXL to accelerate multicast flow, also in Fan-out scenarios.

Configuration

Multicast acceleration is enabled by default. In order to enable/disable it run from gclish the flowing set of commands :

sim feature mcast_route_v2 {on | off}
fwaccel off
fwaccel on

Limitations

Multicast acceleration supports IPv4 only.

Validation and Debugging

> fwaccel stat
-*- 4 blades: 1_01 1_02 2_01 2_02 -*-
Accelerator Status : on
Accept Templates   : enabled
Drop Templates     : disabled
NAT Templates      : enabled
Accelerator Features : Accounting, NAT, Cryptography, Routing,
                       HasClock, Templates, Synchronous, IdleDetection,
                       Sequencing, TcpStateDetect, AutoExpire,
                       DelayedNotif, TcpStateDetectV2, CPLS,McastRouting,
                       WireMode, DropTemplates, NatTemplates,
                       Streaming, MultiFW, AntiSpoofing, DoS Defender,
                       ViolationStats, Nac, AsychronicNotif, McastRoutingV2,
                       ConnectionsLimit
Cryptography Features : Tunnel, UDPEncapsulation, MD5, SHA1, NULL,
                        3DES, DES, CAST, CAST-40, AES-128, AES-256,
                        ESP, LinkSelection, DynamicVPN, NatTraversal,
                        EncRouting, AES-XCBC, SHA256


Display the accelerator's connections table by running: fwaccel conns


Display multicast statistics by running: fwaccel stats –m


Enable SIM debug using the command: sim dbg -m drv + routing


Example:


The following example disables the feature.


> sim feature mcast_route_v2 off


-*- 4 blades: 1_01 1_02 1_03 1_04 -*-


Feature will be disabled the next time acceleration is started/restarted




> fwaccel off


-*- 4 blades: 1_01 1_02 1_03 1_04 -*-


SecureXL device disabled.




> fwaccel on


-*- 4 blades: 1_01 1_02 1_03 1_04 -*-


SecureXL device is enabled.




> fwaccel stat


-*- 4 blades: 1_01 1_02 1_03 1_04 -*-


Accelerator Status : on


Accept Templates   : enabled


Drop Templates     : disabled


NAT Templates      : enabled


Accelerator Features : Accounting, NAT, Cryptography, Routing,


                       HasClock, Templates, Synchronous, IdleDetection,


                       Sequencing, TcpStateDetect, AutoExpire,


                       DelayedNotif, TcpStateDetectV2, CPLS, McastRouting,


                       WireMode, DropTemplates, NatTemplates,


                       Streaming, MultiFW, AntiSpoofing, DoS Defender,


                       ViolationStats, Nac, AsychronicNotif


Cryptography Features : Tunnel, UDPEncapsulation, MD5, SHA1, NULL,


                        3DES, DES, CAST, CAST-40, AES-128, AES-256,


                        ESP, LinkSelection, DynamicVPN, NatTraversal,


                        EncRouting, AES-XCBC, SHA256



						

						
							
					 
				

			

				
	

	


	
	

		
			

				

					Top of Page
					©2014 Check Point Software Technologies Ltd. All rights reserved.
					
						Download Complete PDF
						
						Send Feedback
						
						Print