IGMP Proxy w/ Telus Optik TV
-
Has anyone been able to get it working recently? I can't seem to pass multicast traffic to the PVR meaning it drops connection after 10 seconds of watching.
This is my current topology:
PVR > Wireless AP > Switch > pfSense > Telus WiFi Hub > Internet
I currently have my Telus WiFi Hub set to fully bridged. I initially tried setting it up with LAN 1 as the bridged port, but that gave me the same issues I'm currently having.
I know that my AP and switch supports IGMP since the AP has an option in its web UI to enable it and I had a working setup prior to introducing pfSense into the equation (the previous setup was the same, but without pfSense behind the Telus WiFi Hub).
I've tried all combination of settings from https://www.dslreports.com/forum/r30920470- and https://github.com/peacey/udm-telus to try to get it working, but nothing seems to be good.
pfSense is currently getting a public Telus WAN IP, so that part is good.
Firewall logs report IGMP entries as being passed, so firewall rules are good.
For the IGMP Proxy, I can't exactly tell if it's working, but I'm using settings that others have used to get Optik TV working. For the upstream, I've tried a combination of 0.0.0.0/0, 10.0.0.0/8, 207.0.0.0/8, 209.0.0.0/8, and 216.0.0.0/8. For the downstream, I've tried a combination of 0.0.0.0/0, 192.168.1.0/24 (my private subnet) and 224.0.0.0/4.
I've seem to have isolated my issue to the fact that there are NO_TRAFFIC:SINGLE or SINGLE:NO_TRAFFIC when I check my firewall states. However, I have no idea how I should be troubleshooting this.
https://i.imgur.com/8jfTqwC.png (The blacked out boxes is just my public IP.)
In the firewall states page, I can see that my PVR (192.168.1.13) is trying to reach out to 232.239.0.5, and I can see my public IP reaching out to various multicast addresses (232.9.4.133, 232.239.0.5, 224.0.0.251, 239.192.152.143) with no reply.
Anyone have any idea?
Thanks.
-
The first thing to do is enable verbose logging in IGMP proxy and then check the logs to see if it's doing anything.
The settings required are different for each provider. Sometime different within that provider. It can be something of a dark art making it work!
Steve
-
Hi @stephenw10, thanks. I've enabled verbose logging and can see entries in the routing logs.
I switched channels around 12:16:00 and then the signal cut off around 12:16:15. I attached entries 5 seconds before and 15 seconds after.
It looks like it's working since route entries are being updated and member reports are happening from my PVR (192.168.1.113), but I also see that IGMP messages are being ignored since they're "from myself" or "local multicast".
Any thoughts? I've attached the log here on pastebin - https://pastebin.com/raw/YTuVtRPj
(I kept getting errors uploading it as code snippet or manually uploading the file).
-
Mmm, you may simply not have the correct multicast subnets defined. If that info is not readily available you might need to run some pcaps to see what's being used.
-
I've spent like a 1-1/2 days on this and now have it working almost 100%
What currently is NOT working is accessing the PVR from the digital wireless box! The wireless digital box connects to UniFi AP connected to PoE switch and the PVR is connected to the same PoE switch so I can't figure out why it cannot see the PVR...
-
@clrity Hi, I figured it out, but forgot to update this thread.
Turns out the issue was with the Telus WiFi Hub. It seems to be filtering multicast traffic even in bridge mode. As there is no decently priced network card or switch that can communicate properly at 2.5Gbps for use with the Nokia GPON SFP, I ended up grabbing an Nokia G-240G-A ONT instead and having Telus reconfigure that for use with my service.
IGMP proxy rules:
Upstream - 0.0.0.0/0
Downstream - 192.168.1.0/24WAN rules:
UDP - Source Any, Source Port Any, Destination 224.0.0.4, Port Any
IGMP - Source Any, Source Port Any, Destination 224.0.0.4, Port AnyDisabled on both WAN/LAN interfaces:
Block private networks and loopback addresses
Block bogon networksNot sure if I missed anything else.
TV is now working for both of my wireless digital boxes. They're both connected wirelessly to a TP-Link Deco X60, which then connects to a dumb switch, then to pfSense.
I have a PVR, but it was never hooked up since I don't record shows. I cannot help you on that front. But I might take it out of storage this weekend and see if I run into the same issue.
-
@bigberny said in IGMP Proxy w/ Telus Optik TV:
IGMP proxy rules:
Upstream - 0.0.0.0/0You should be able to narrow that down to the 207, 209 and 216 addresses I gleaned from somewhere and I will try narrowing down my UDP and IGMP WAN rules to destination 224.0.0.4, or should that read 224.0.0.0/4?
-
@clrity Sorry, typo. 224.0.0.0/4.
I didn't bother narrowing it down after it worked since I had a hell of a time spending troubleshooting the issue until someone mentioned the WiFi Hub was blocking traffic.
I might as well update them now though.
-
@bigberny said in IGMP Proxy w/ Telus Optik TV:
Turns out the issue was with the Telus WiFi Hub. It seems to be filtering multicast traffic even in bridge mode. As there is no decently priced network card or switch that can communicate properly at 2.5Gbps for use with the Nokia GPON SFP, I ended up grabbing an Nokia G-240G-A ONT instead and having Telus reconfigure that for use with my service.
I have this working with the T3200M in bridge mode...
-
@clrity Yeah, apparently the T3200M is fine with it in bridge mode. Someone on reddit mentioned that they tested that it was fine with that and not the WiFi Hub. Made sense, I had all the right and same settings with the WiFi Hub, so it was definitely doing some shenanigans.
-
So... I made some changes as per your settings and it stopped working. I've been trying to kick start it more or less since you posted your settings and no-go!!! Trying your IGMP upstream 0.0.0.0/0...
-
On a slightly different note, what's your Ookla speed test results?
-
@clrity Hmm, maybe the settings are different where you live? I'm in Vancouver and they work for me so no idea.
I just ran this with my Mac directly connected to the switch. My desktops are all on WiFi, so they pull around 600/600. My pfSense is hosted on an Unraid box with two cores allocated from an Intel i3-12100. The NIC is a dual port Intel 82575EB I picked up off of Amazon.
EDIT: I updated the upstream to 207.0.0.0/8, 209.0.0.0/8 and 216.0.0.0/8 in the IGMP proxy settings and everything still works for me.
-
@bigberny I am in Richmond so our settings will be the same. After another restart I went back to reviewing pf and about 5 minutes later the tv started making sound with no changes to pf! Will keep playing with the settings.
I'm running it on a Celeron N5105 4 core 2.0-2.9 GHz, M.2 2280 NVMe SSD, 4 GB RAM and 4xIntel i225v 2.5G LANs.Changed my PC i225 NIC from Auto to 1GB Full and that seems to have fixed my upload speed...
-
I've added 10.0.0.0/8 to my Optik_TV alias...
-
@clrity Is it working now?
I just loaded up a channel and this is my UDP traffic for Optik TV.
207.228.122.4:47811 -> 232.9.4.130:6288
Looking at IGMP, mine is like yours. Traffic from WAN IP to multicast and 10.10.10.10 to 224.0.0.1.
-
@bigberny Yes, it is working now with the settings above.
And I've finally figured out why the wireless box can't see the PVR...it was still on the Actiontec WiFi!! I have turned that off, created a new "Optik TV" SSID on my UniFi AP's and am working at emulating the BSSID on a Linux box so I can enable WPS. Problem is I don't have one with 5 GHz WiFi...
-
@clrity How did you manage to connect your existing digital box to your UniFi AP if you can't do it with your PVR? Is it directly connected to the AP?
If you have any modern laptop, the onboard WNIC should support 5GHz and you can install an Ubuntu VM to do the provisioning. If not, I have an ASUS USB-AC56 you can borrow. You just have to manually install a Realtek driver to get it working on Linux.
-
@bigberny I never did have the wireless box connected to UniFi AP, always Actiontec WiFi. I've managed to identify its hidden SSID as OptikTV5845 but do not know the psk they use. It's not the admin pw or the default SSID psk so back to getting WPS running...
-
@clrity Oh ok, you said the wireless digital box connected to the Unifi AP in your first post, so I thought it was already setup via WPS.
Yeah, that sucks. My Deco's support WPS, so I just had to reset the digital boxes to go through the initial setup, hit the WPS button on the corresponding Deco and it was good to go.
