Allow Apple Bonjour to be detected from other zone

Hi together,

Bonjour relies on mDNS which is a Multicast service. As far as I know forwarding these packets is not supported in any Sophos FW right now.

--> When you are using different subnets, you need a Multicast gateway/relay for this.

You can achieve this by installing a Linux Machine which is a member of both networks and install one of the following solutions on it:

1. Avahi Gateway as explained by Cisco: 

http://www.cisco.com/c/en/us/support/docs/wireless/aironet-1100-series-access-point/113443-cuwn-apple-bonjour-dg-00.html#deploy

2. Install a UDP relay: https://github.com/sonicsnes/udp-broadcast-relay-redux

I was using the first solution for over a year and it works quite nice although it has a little caching problem when you are rebooting/changing the Bonjour clients a lot.

However some weeks ago I moved to the second solution with the udp-broadcast-relay-redux software. This software seems to be a bit faster and has no caching issues so far. Additionally I added a SSDP relay too to get my Yamaha MusicCast speakers working through different subnets/VLANs as well.

Best Regards

Dom Nik

Hi together,

Bonjour relies on mDNS which is a Multicast service. As far as I know forwarding these packets is not supported in any Sophos FW right now.

--> When you are using different subnets, you need a Multicast gateway/relay for this.

You can achieve this by installing a Linux Machine which is a member of both networks and install one of the following solutions on it:

1. Avahi Gateway as explained by Cisco: 

http://www.cisco.com/c/en/us/support/docs/wireless/aironet-1100-series-access-point/113443-cuwn-apple-bonjour-dg-00.html#deploy

2. Install a UDP relay: https://github.com/sonicsnes/udp-broadcast-relay-redux

I was using the first solution for over a year and it works quite nice although it has a little caching problem when you are rebooting/changing the Bonjour clients a lot.

However some weeks ago I moved to the second solution with the udp-broadcast-relay-redux software. This software seems to be a bit faster and has no caching issues so far. Additionally I added a SSDP relay too to get my Yamaha MusicCast speakers working through different subnets/VLANs as well.

Best Regards

Dom Nik

I'm trying to setup a Bonjour Gateway (mDNS reflector) on an Raspberry Pi3 running Hassbian (essentially Raspbian). My network setup is:

ISP Modem -> Sophos XG (Qotom device) -> Apple Airport Time Capsule

My Apple Airport is setup with two subnets (VLANs), the default which is my local/private network and the "guest" network which uses VLAN 1003. Most of my devices are connected to the local/private network but a few devices such as my printer is connected to the guest network. The problem now is I obviously need a Bonjour Gateway so devices on my local/private network can see the printer on the guest network.

I've found this guide that explains how to setup the Bonjour Gateway. My problem is you can't control any VLAN settings on the Apple Airport but I *think* this might work:

1. Setup an interface bridge between my LAN port on the Sophos XG with another unused port. I would essentially be using this additional port on the Sophos XG as another network port for my private/local network.

2. Plug my RPi3 into the unused and bridged port on the Sophos XG.

3. Setup VLAN tags on the bridge interface per this Sophos KB article.

However, the question I have is does the RPi3 have to be on the same network/subnet as the printer or can it be on my local network/subnet?

I need to keep the RPi3 on my local network/subnet as it's running Home Automation software that connects to devices on the local network.