Enabling multicasting in shorewall/iptables

sampappachan_nyc · 04-22-2010, 09:56 AM

Hi Guys,

I am trying to configure weblogic cluster which uses internal multicasting, which is working fine with the shorewall/iptables shutdown, but once we start the shorewall it doesn't work because shorewall blocks multicasting

I tried enabling multicasting in /etc/shorewall/shorewall.conf and enabling it in /etc/shorewall/rules file,

# To allow multicasting on tcp port 8059
#ACCEPT net fw tcp 8059

But its still not working, any advise on how to configure shorewall to accept multicasting??

################################################################
This is the error message:

<Apr 21, 2010 3:27:30 PM EDT> <Error> <Cluster> <BEA-000170> <Server PIA1 did not receive the multicast packets that were sent by itself>
<Apr 21, 2010 3:27:30 PM EDT> <Critical> <Health> <BEA-310006> <Critical Subsystem Cluster has failed. Setting server state to FAILED.
Reason: Unable to receive self generated multicast messages>

###############################################################

Thank You
Sam

centosboy · 04-23-2010, 03:44 AM

Quote:

Originally Posted by sampappachan_nyc

Hi Guys,

I am trying to configure weblogic cluster which uses internal multicasting, which is working fine with the shorewall/iptables shutdown, but once we start the shorewall it doesn't work because shorewall blocks multicasting

I tried enabling multicasting in /etc/shorewall/shorewall.conf and enabling it in /etc/shorewall/rules file,

# To allow multicasting on tcp port 8059
#ACCEPT net fw tcp 8059

But its still not working, any advise on how to configure shorewall to accept multicasting??

################################################################
This is the error message:

<Apr 21, 2010 3:27:30 PM EDT> <Error> <Cluster> <BEA-000170> <Server PIA1 did not receive the multicast packets that were sent by itself>
<Apr 21, 2010 3:27:30 PM EDT> <Critical> <Health> <BEA-310006> <Critical Subsystem Cluster has failed. Setting server state to FAILED.
Reason: Unable to receive self generated multicast messages>

###############################################################

Thank You
Sam

multicast runs on udp protocol??
long time since i have played with shorewall, but try

(assuming your local zone is called local)

Code:

ACCEPT          net     fw      udp     <portnumber>
ACCEPT          local     fw      udp    <portnumber>

and in shorewall.conf

Code:

MULTICAST=Yes