Should multicast be enabled on a Sonic Wall firewall?

As a general rule should multicast be enabled on a Sonic Wall firewall running in transparent mode?  We sometimes notice some bogging down of our network I believe due to it being flat with no VLAN's.

We use Ghost sometimes to image computers and we always disconnect the lab from the rest of the network because it bogs down the network.  I'm not really concerned so much with imaging, but just wondered as a general rule if it helps or hurts a network overall as far as bandwidth and performance.

We have a Sonic Wall 5060.  

Thanks,
M.
mscalafasdAsked:
Who is Participating?
 
ccomleyConnect With a Mentor Commented:
If you're not DOING any multicast, then enabling/disabling it on the SW will make no difference.

If you are doing it but not for anything "legit", then disabling it will help stop the abuse of your system! :)

You could turn on the Viewpoint service of the SW to get a picture of what's using your bandwidth. Or you could look to upgrade the SW to the new edition of SonicOS coming out soon  which includes "Traffic Visualisation" - a massively more powerful traffic monitoring system.

Perhaps the solution you seek is to *start* doing some VLANing.

0
 
ycsiCommented:
The choice depends on your network activities.
Multicast represents traffic destined to multiple hosts.
When eneabled, it allows the traffic to be sent one time, while allowing multiple registered hosts to receive it, which it more efficient than sending the traffic individually to each host.
0
 
piwowarcCommented:
There is a general rule that all routers if not asked to do otherwise will kill all broadcasts. Multicasts as ycsi suggested is a specific kind of traffic (one to many). If you don't need them (and you may in situations like computer imaging, some audio/video brodcasting and similar one to many scenarios) I would turn them off because they are (of course depending on number of traffic) jamming your network traffic. Every NIC or switch has to pass or discard them and they should not have that extra work if it is not needed.

Besides you ask about allowing them through your firewall? Do you have Sonic Wall between two parts of your LAN network or on the edge connected to WAN connection?

HTH

Chris
0
Simple Misconfiguration =Network Vulnerability

In this technical webinar, AlgoSec will present several examples of common misconfigurations; including a basic device change, business application connectivity changes, and data center migrations. Learn best practices to protect your business from attack.

 
mscalafasdAuthor Commented:
The Sonic Wall is at the edge in transparent mode, so traffic from 4 buildings flows through it.  The router is at 10.1.1.1 and the Sonic Wall is at 10.1.1.5

It also does gateway antivirus, intrusion prevention, and content filtering.

M.
0
 
piwowarcCommented:
So you are not sending anything using multicast? Disable it on Sonic Wall then and wait if your users start complaining about something not working for them. Then you will know :)

HTH

Chris
0
 
ycsiCommented:
If your network does not have one-to-many traffic, enabling multicast pass through will not improve the traffic flow.
However, after re-reading your original message and the clarification comment, I would suggest that multicast is enabled at 5060 - it won't hurt the throughput, just might help in some situations.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.