Settings that can improve Multicast on a Wireless Network

This is a two-part blog; this blog will go over settings that will improve multicast on your network. The next blog “Multicast on a Cisco Wireless Network” will go over more troubleshooting on a Cisco Network.

I work for a wireless communications vendor that uses multicast as an integral part of the product. There are certain settings on the wireless/wired network that when implemented will improve multicast.

The issues and settings we will discuss in the blog are; enabling multicast on the router and VLANs, Which VLANs do you enable PIM on, the purpose of DTIM and Beacon settings, basic and mandatory data rates, issues using TKIP and AES on the same SSID, Issues with Rendezvous Points (RP), IGMP snooping on switches, roaming issues with multicast and lastly issues with multicast buffers.

 

Enabling Multicast on the Router and VLANs

To enable multicast routing on your routers and VLANs you will need two commands. The first command you need to issue on your router (or layer 3 switches) is ip multicast-routing. The second command is the pim command (Protocol Independent Multicast), which enables multicast routing on your VLANs. You can set this command as dense-mode, sparse-mode or sparse-dense-mode. Dense mode is good to use if you have a small network, but the PIM sparse-dense-mode will allow the router to use both sparse-mode and dense-mode. The differences between sparse-mode and dense-mode center around Rendezvous Points and how multicast traffic and multicast routes are updated in the network. Most networks I work with use sparse-dense-mode. The command pim sparse-dense mode needs to be issued on all the VLANs where you want multicast traffic to flow.

 

Which VLANs do you enable PIM on?

This is the million-dollar question that can cause a lot of confusion. The VLANs you need to enable multicast on using the pim sparse-dense mode are the management VLAN, AP management VLAN (if different from the management VLAN), AP VLAN (if different from the management VLAN) and all the VLANs of the sending and receiving devices. The management VLANs are very important since the controller sends multicast packets to the APs using either the management VLAN or the AP Management VLAN.

If the multicast packets are flowing over the core, make sure the VLAN of the EtherChannel/Port Channel have PIM enabled on them if they are different from the management VLAN. I have seen issues where one EtherChannel had PIM enabled the other EtherChannel did not. This caused one multicast session to work and the next multicast session to fail.

 

 

 

The purpose of DTIM and Beacon settings

If you are using multicast to deliver voice packets you must set the DTIM to 1 and the beacons to 100ms. These settings tell the AP how often to set either a Traffic Indication Map (TIM) information element or a Delivery Traffic Indication Map (DTIM) information element inside the beacon. There are no TIM or DTIM beacons per se. There are only Information Elements inside the beacon (but for ease of use I will use terms TIM beacons and DTIM beacons). The TIM beacon will tell the client if the AP has unicast packets buffered for that client. The DTIM beacons will tell the clients they have multicast packets about to be delivered (as well as unicast packets buffered). If you set the DTIM to a higher value to either 2 or 3 then the AP will only deliver the multicast packets to the clients every 200ms or 300ms. Most VOIP clients will have between a 90ms and 150ms buffer. If the client gets multicast packets every 200 or 300ms then, the user will hear choppy audio.

 

Some device manufacturers want you to set the DTIM to the higher value, giving the devices more time to sleep. If the devices know the DTIM will only come every 200, 300 msec or more then the client device can sleep that much longer. This saves battery life and is somewhat of a valid concern but when Voice is being delivered over multicast packets the DTIM needs to be set to 1 or the user will hear choppy audio. I said this is somewhat of a valid concern but the fact of the matter it is not mandatory that the client wakes up every DTIM. Before adjusting your DTIM check with your device manufacturer to see if the device wakes up for every DTIM, you might be presently surprised to find the devices don’t wake up every beacon. Some devices will stay asleep longer than the DTIM. You can test this by pinging the device. While the device is idle ping it. You may find the device only responds every 500msec or so (or maybe longer). You can then ping the device while on an active call and see how often it responds and then compare the two values.

 

 

Basic and Mandatory Data rates

Cisco recommends using 2 basic data rates 12Mbps and 24Mbps. When you have two basic data rates set, management traffic will go out at the lower data rate, but Cisco will send multicast traffic at the higher data rate. This can cause issues for clients that have rate shifted down to 12Mps or lower. If the AP is sending multicast traffic out at 24 Mbps and the client is only able to receive at 12 Mbps your client may miss multicast packets. This will be very difficult to troubleshoot since some devices will get the multicast packets and others will not receive them. Trying to replicate the issue would prove difficult. I would always recommend setting only one Basic Data rate to help offset this issue.

 

 

Issues with using TKIP and AES on the same SSID

I have seen issues with multicast where TKIP and AES are enabled on the same SSID. When you have both enabled on the same SSID the AP must send multicast packets out using TKIP. If your clients are using AES they will have issues decrypting the multicast packets. Hopefully, everyone is using AES instead of TKIP (especially since TKIP has been deprecated) but if you need TKIP then it is better to have only one encryption per SSID. Of course, I strongly recommend only using AES.

 

 

Issues with Rendezvous point (RP)

There are two ways you can use Rendezvous points. You can assign a router as a Rendezvous point or you can let the network assign one for you. You can program multiple RPs on your network, but this may cause issues. When a client sends a join message routers in the path will create a (*,G) entry on the interface so the router knows what interface has clients that have subscribed to this multicast address. These join messages will eventually make it to the RP. When the RP gets this join message, it will build a path back to each client/network segment.

If you have multiple RPs you may find an issue where one client may get the multicast traffic and one client will not. This happens if two devices are on different VLANs and each device sends the join message to a different RP. In this case, one device or network segment will get the multicast traffic and one will not. Having multiple RPs might be by design but if you have multiple RPs you should ensure that the RPs share information of all related VLANs.

 

 

IGMP snooping on switches

When IGMP snooping is enabled on a switch, the switch can send the multicast packets out the right interfaces. When a switch sees a normal packet, it will look up the MAC address in its CAM table, if the switch has the MAC address of the client it can forward these packets the right interface. If the MAC address is not in the CAM table, it will flood the packet out all interfaces. The same is true of the multicast packets if the switch has IGMP snooping enabled. The switch will keep track of all the join messages sent by clients/APs. The switch then records what interfaces need the multicast packets. When a multicast packet is sent to the switch it looks in its table and sends the traffic only to those interfaces that need the packets. This cuts down on multicast packets flooding the network. If the switch does not have information on a multicast address, then the switch will send the packets out on all ports.

 

Roaming issues with Multicast

When the clients roam from AP to AP the controller will request the device to send a new join message, so the controller, AP, router, and the network knows the client has moved APs. If your clients fail to send a new join message, the controller will not update its MGID table and the new AP that your client is connected to may drop multicast traffic because the AP will not know there are any clients who have subscribed to these multicast groups.

This can be a real issue in an Autonomous network or even cloud based where the client doesn’t send a join message on a roam and there is no controller to request a new join message. If your client doesn’t send a new join message you will lose Multicast session as you roam. The fix this I would contact the device manufacture to see if there is a firmware update that will fix this issue.

 

 

Issues with Multicast Buffer

The multicast buffer is shared across all BSSIDs on the AP. If there are a high number of SSIDs on your network, you may experience issues where the buffers fill up and the AP starts dumping multicasts packets. This may cause choppy audio on your multicast sessions. If your SSIDs have a higher DTIM value, the APs/Controllers will need to store packets for a longer period.  When you are experiencing issues with multicast traffic you may need to increase your multicast buffer size and then limit which WLANs can use this buffer. Multicast traffic is often crucial to voice clients and other clients/WLANs may never use multicast packets. If you limit which WLANs can use the multicast buffer there will be available space for applications that have a critical need for multicast.

 

It is important to note that the AP can only buffer multicast packets for the length of the DTIM value. When this value has expired the AP will inform the clients and immediately send the multicast packets whether the client is listening or not. This, of course, is different from the way unicast frames are delivered. If the AP has unicast frames for the client, the AP will set the clients AID in the Partial Virtual Bitmap. The AP will buffer these frames until the client wakes up and requests these frames.

 

 

Links to Multicast articles, videos, and blogs

 

https://www.youtube.com/watch?v=Gjt2L9jAYNA From Kevin Wallace   Cisco Multicast Routing for CCNA, CCNP, and CCIE candidates

 

https://www.cisco.com/c/en/us/td/docs/wireless/controller/technotes/7-4/vocera_config_guide/vocera_config_guide/vocera_config_guide_chapter_01011.pdf Cisco guide on how to configure multicast for Vocera

 

https://supportforums.cisco.com/document/56511/multicast-and-wireless-lan-controller-wlc This is from Stephen Rodriquez 7 years ago but still good info in there.

 

 

http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus1000/sw/4_0/troubleshooting/configuration/guide/n1000v_troubleshooting/trouble_14mcast.html

 

https://community.cisco.com/t5/wireless-mobility-documents/understanding-multicast-in-unified-wireless-networks/ta-p/3125021  This a power point Understanding Multicast in Unified Wireless Networks by Jeff Keown Cisco Wireless TAC

 

http://www.labminutes.com/wl0025_wlc_multicast_videostream_1   excellent video on setting up your controller for multicast.

 

 

Thank you for reading this blog. I hope reading this blog gives you more insight into multicast and the settings needed on your network. Please leave comments and continue this discussion on Twitter and Slack. If you haven’t followed me on Twitter I am at @wifi_nc. Stay tuned for my next blog in this series called “Multicast on a Cisco Wireless Network”. That blog will go into more details and troubleshooting multicast on Cisco Networks.

 

 

Cisco’s Flexible Radio Assignment (FRA)

 

I have heard about Cisco FRA for a while but I am only starting to see this out in the field. This technology offers great advancements over statically assigned Radios.

There are two modes of operation in FRA Macro/Macro cell and Macro/Micro cell. I will only be discussing the Macro/Micro mode in this blog. The Macro/Micro cell will have a large cell and a smaller cell inside which will increase capacity on your 5 GHz network.

The theory behind FRA is if you design a network for 5 GHz then you will more than likely have too much 2.4 GHz coverage. This is why FRA is only run against the 2.4 GHz radios.

There are only two AP models that work with FRA. They are the 2800/3800. When the AP creates a Micro cell, the power will always be set to the minimum power of the AP. In the case of the 3802, this would be 2 dBm.

 

How it Works

FRA uses the Neighbor Discovery Protocol (NDP) from RRM to figure out if there is too much coverage on the 2.4 GHz band. The output of this calculation is called Coverage Overlap Factor (COF). You can set the threshold for the COF at Low 100%, Medium 95% and High 90%. When FRA sees too much coverage based on these thresholds values, it will mark the radio as redundant. Once it is marked redundant it can be assigned another role. There are three states (roles) these radios can be in 2.4GHz/5GHz/Monitor Mode. Depending on the COF the controller will either leave it at 2.4GHz, change it to 5 GHz or put it in Monitor Mode. When the controller puts an AP in Monitor mode the only way to fix this is to reset the AP.

 

Probe Suppression

The AP can suppress Probe responses from one of the radios. When the APs receives Probe requests on both the Macro and Micro cells within a short period of time from a client who is not associated, the AP can suppress the Probe Responses on the radio which it doesn’t want the device to join. When a client is associated to either radio on the AP, the AP will suppress the Probe Response from the other radio. This should help prevent the client from roaming between radios. The Probe Suppression option is disabled by default on the controller.

 

FRA will monitor the cells and keep devices that are similar on the same radio. This will help improve throughput. FRA will use 802.11v, 802.k and Probe Suppression to keep the same type of clients on the same radio.

 

 

 

Pros and Cons of FRA

Pro

      • FRA will give you more capacity in the 5 GHz band.
      • FRA eliminates of fixes the balance between 5 GHz and 2.4 GHz radios on your wireless network.
      • The controller will limit how many devices can be on the Micro cell.

 

Con

  • If your device authenticates to the Micro Cell and moves away from the Micro cell area. This could force it to roam to the Macro cell, which would increase roaming. These additional roaming events force the device to stay awake more which will affect battery life. Cisco has safeguards against this but just like RRM, it doesn’t always work.
  • If you have 2.4 GHz clients your network, the coverage area after FRA runs could change dramatically. Depending on how often you have FRA run, this can lead to a less stable network. I know Devin Akin (@DevinAkin) would say that 2.4 GHz is dead and probably should be at this point especially for voice clients, but I just did a job last week where they insisted using 2.4 GHz for voice.