Feature Request: Multicast and mDNS Support Across VLANs (e.g. AirPlay, Chromecast, IPTV, Sonos)

NethSecurity
1

Hi everyone,

I’d like to propose a feature for NethSecurity that enables multicast traffic (especially mDNS and IGMP) to work across VLANs. This is a common requirement in modern networks where services like streaming, casting, or discovery protocols rely heavily on multicast.

Use Case

Many multimedia and smart device protocols depend on multicast or broadcast traffic, including:

  • Apple AirPlay / Bonjour (mDNS)
  • Google Chromecast / Google Cast
  • Sonos audio systems
  • IPTV services (via IGMP)
  • DLNA / UPnP
  • Smart TVs, printers, and IoT devices

In most deployments, these devices are distributed across different VLANs for segmentation and security. However, multicast traffic is typically not routed between VLANs, causing these services to break without special handling.

Current Limitation

NethSecurity does currently not include tools to forward or proxy multicast traffic across VLANs/interfaces. Tools like the following are not available in the default repositories:

  • mdns-repeater or avahi-daemon for mDNS (UDP 5353) forwarding
  • igmpproxy`] for general multicast routing (e.g. for IPTV)

Feature Request

Please consider adding:

  1. Multicast forwarding support, including:
  • mdns-repeater or avahi-daemon (with reflector)
  • igmpproxy for IGMP-based multicast traffic
  1. Configurable interface/VLAN inclusion:
    Let admins define which interfaces participate in multicast proxying, either via CLI or ideally through the Web GUI.
  2. (Optional) GUI integration:
    A simple toggle or config section in the UI (like Multicast Forwarding) would help non-technical users set this up safely.

Benefits

  • Enables seamless cross-VLAN functionality for AirPlay, Chromecast, IPTV, Sonos, etc.
  • Avoids external bridges or separate multicast gateways
  • Helps NethSecurity compete with other firewall systems
  • Matches real-world network needs in education, AV installations, and modern offices

Thanks for your great work on NethSecurity! This feature would solve a key practical limitation and significantly improve usability for multimedia-capable networks.

Best regards

3 Likes
2

If such feature is request by many users, we can add such packages as extra packages.

Let’s see if any other is interested.
In the meanwhile, you can just install those packages from OpenWrt repos.

3 Likes
3

Good day,
thank you for considering the feature request.

In the meantime, I’ve written a Python script that handles the forwarding of mDNS packets.
Using the OpenWrt repository is definitely a solid approach as well.

Of course, it would be great to see this functionality integrated into the GUI in the future.

Best regards.

3 Likes