Airplay between VLANs?

Hello.
At work we'd like to use airplay on an Apple TV to display some iPad apps on a big TV. Unfortunately the Apple TV doesn't support any enterprise level wireless security so we can't use EAP-TLS or PEAP to authenticate it onto our secure wireless networks.
What we would like to do is have the Apple TV using a wired connection onto our network and leave our iOS devices connected to the wireless networks, but that means they will be in different subnets and the iOS devices can't see the Apple TV.
Am I right in thinking that Bonjour and muliticasts are involved in the Airplay discovery? Has anyone got this working and can give me any tips?
We could as a last resort create a new, less secure, wireless network that's used only for Airplay but that's much less convenient for iPad users to have to keep swapping between wireless networks.
Thanks
Alex

Here is information on a gateway that allows bonjour passthrough.
http://blogs.aerohive.com/blog/the-wi-fi-security-blog/breaking-subnet-boundarie s-with-bonjour-simplifying-apple-tv-and-airplay-in-the-enterprise

Similar Messages

  • IOS 5 used to allow Airplay between iPad (WiFi) and Apple TV (Ethernet) as long as they were on the same network. In iOS 6, now both the iPad and the Apple TV have to be on the same network and both have to be connected using WiFi ? Why did they change ?

    iOS 5 used to allow Airplay between iPad (WiFi) and Apple TV (Ethernet) as long as they were on the same network, i.e. connected to the same wired/wireless router. In iOS 6, now both the iPad and the Apple TV have to be on the same network and both have to be connected using WiFi ? Why did they change this ? Means that the iPad and the Apple TV box both have to be in range of the wireless router when this wasn't a restriction before. Apple TV could be anywhere as long as it was connected to the same wireless router via ethernet cable. Seems like an unnecessary thing to restrict.

    I have found with AppleTV that it is the IPV6 on the computer you want to access is the problem.  The issue is that Homegroup on Win 7 or Win 8 requires IPV6 to work, but AppleTV won't work with IPV6.  (So maybe double check you have IPV6 turned off)
    So you have to make a choice - Homegroup or AppleTV.... but you can't have both, until Apple brings ATV up to date. (crazy that it does not recognise IPV6 - c'mon Apple!)
    You can set up sharing individually in Win 7 or 8 and have the ATV access files that way.
    Having said that, there is always the exception.. I have an old HP home server running Win8 and it services ATV - but is part of the Homegroup... have no idea why it works on both, but no other machine on the home network will talk to both ATV and Homegroup at the same time!

  • Trouble using AirPlay between iMac and AppleTV

    I'm running OS X Lion 10.7.5 and I'm having trouble using AirPlay between iMac and AppleTV (2nd Gen).  It used to work fine, but for some reason it just stopped responding.  I can see my media on my iMac from AppleTV and I can see AppleTV from my iMac when attempting to use AirPlay.  However, when I try to pull or push media from my iMac to AppleTV it just stalls and never loads.  AirPlay works fine from my iPhone and iPad with AppleTV - it's limited to my iMac only. 
    I'm using a Netgear R7000 wireless router and a Netgear AC120 WiFi Extender and as such, I have 4 available wireless networks (2 from the router and 2 from the extender / 2 - 2.4 GHz and 2 - 5 GHz).  My internet access is great and my network performance is good across the board.  All of my software/firmware is up to date (iMac, AppleTV and router/extenders). I've tried all combinations (mixing/matching) all of my wireless networks between devices (iMac/AppleTV) - nothing makes a difference (again, AirPlay works fine between my mobile devises/AppleTV).  Netgear Genie has been making changes to my network settings as new firmware has been installed in both the router and extender.  I'm guessing there is something screwy going on with the network settings on the iMac, but I can't figure it out.
    Anyone have any suggestions?
    Thanks!

    I'm glad you got it all working. Out of interest, how do you (or your son) connect to the internet now? Is it just a dial-up connection? If it is, I am sure you know that, even if you get the Apple TV to share the connection, the speed will seriously limit the use of many of the Apple TV's features.
    The Airport Extreme is a great router but you will need a DSL or cable modem as well as it won't connect to the internet without one. There are many great (and cheaper!) combined modem/routers available if your son wants to get a high-speed network up and running at lower cost. Any other computers, phones, games consoles etc that you may have in the house can then all connect easily.
    I hope that I have helped a little and I will look out for future posts in case I can help again.

  • Which is the correct way to filter/block traffic between vlans?

      Hi all. My question is: Which is the correct way to filter/block traffic between vlans?
    i have a more than 15 vlans. I want to block traffic between them except 2 vlans.
    source vlan 3 deny destination vlan 4
    #access-list 100 deny ip 192.168.3.0 0.0.0.255 192.168.4.0 0.0.0.255
    and the oposite:
    #access-list 101 deny ip 192.168.4.0 0.0.0.255 192.168.3.0 0.0.0.255
    I have to do this for all VLANs, ono by one. Is that right?
    Thanks.

    There are a couple of ways to achieve that. I assume that you have a Layer3-Switch. There I would configure one ACL per vlan-interface and allow/deny the traffic as you want. Sadly, the Switches don't support object-groups yet, so you have to use the IP-networks here. Only allow/deny traffic based on networks or hosts. Don't even try to be very granular with permit/denys based on ports. Because the switch-ACLs are not statefull you'll run into problems for the return-traffic if you woulf do that. And the return-traffic of course has to be allowed also.
    Another way: with the help of 802.1x you can deploy port-based ACLs for every user. That takes some time for planning, but is one of the most powerful solutions.
    For more control you could remove the L3-interface from your L3-switch and move that to your router or firewall. These devices support stateful filtering and you can control your traffic much tighter tehn with ACLs on the switch.
    Don't stop after you've improved your network! Improve the world by lending money to the working poor:
    http://www.kiva.org/invitedby/karsteni

  • Broadcast large UDP datagrams between VLANs

    Hello,
    I wish to broadcast large UDP packets between two VLANs (on the one set of stacked 3750 switches).
    I have setup an ip helper which allows me to broadcast between vlans. That works fine, but I am limited to datagrams around 5912 bytes in size.
    I want to be able to broadcast larger datagrams.
    I can successfully broadcast larger datagrams (65000-ish bytes) within the one vlan, but not between two vlans.
    Am I able to increase the size of broadcast UDP datagrams between vlans and if so, how?
    Thanks in advance.

    Disclaimer
    The Author of this posting offers the information contained within this posting without consideration and with the reader's understanding that there's no implied or expressed suitability or fitness for any purpose. Information provided is for informational purposes only and should not be construed as rendering professional advice of any kind. Usage of this posting's information is solely at reader's own risk.
    Liability Disclaimer
    In no event shall Author be liable for any damages whatsoever (including, without limitation, damages for loss of use, data or profit) arising out of the use or inability to use the posting's information even if Author has been advised of the possibility of such damage.
    Posting
    Hmm, I'm wondering whether a helper cannot forward fragments.
    If not, if you enable jumbo support on the 3750, you might be able to send larger diagrams, but perhaps not larger than MTU.

  • Difference between VLAN

    Hi,
    whats the difference between layer 2 VLAN and Layer 3 VLAN.
    regards
    Neo

    Here's the IEEE 802.1 defintion of VLAN. This is basically your layer 2 VLAN.
    • Provides for the logical grouping of stations (MAC Service Access Points - MSAPs) and/or switch ports, allowing communications as if all stations/ports are on the same physical LAN segment. This includes stations/ports that are physically located on different LANs or segments within the physical boundary of an 802.1D Bridged LAN. A single Bridged LAN may include multiple VLAN “segments”.
    With that said, as the previous poster mentioned, for a host on a VLAN to communicate with a host on another VLAN you need a layer 3 device (router). Often, this is done by a layer 3 switch (like 3550, 6500 etc.). On a layer 3 device you have to create a logical interface, vlan interface on a switch or sub-interface if you are doing router-on-a-stick, to route traffic between VLANs. This is basically your layer 3 VLAN (interface) if you like to call it that way.
    HTH,
    Sundar
    *Please rate all helpful posts.

  • How do you use airplay between two iOS devices

    How do you use airplay between two iOS devices

    I would read http://support.apple.com/kb/ht4437?viewlocale=es_es

  • SG500 Slow Performance Between Vlans

    Hello,
    I am having an issue with slow performance between vlan 1 and vlan 10, I have IPv4 routing enabled and I have SVI on vlan 1 and vlan 10 respectfully. Within the same vlan the speed is great. Would it also be a problem with using vlan 1 in production for something like this? Normally I stay away from Vlan 1. 
    Thanks

    Hi Alexandery,
    In my opinion, this thread is related to ASP.NET forum. So please post thread on that forum for more effective response. Thank you for understanding. Please refer to the following link.
    http://forums.asp.net/.
    Regards,
    We are trying to better understand customer views on social support experience, so your participation in this interview project would be greatly appreciated if you have time. Thanks for helping make community forums a great place. <br/> Click
    <a href="http://support.microsoft.com/common/survey.aspx?showpage=1&scid=sw%3Ben%3B3559&theme=tech"> HERE</a> to participate the survey.

  • Do you need Internet to use Airplay between devices?

    Hey,
    Do you need the internet to use Airplay between devices and if so why? Am very confused why such a simple idea is complicated by having to have the internet?

    Airplay should work without an internet connection. To check this out I unplugged my modem and Airplay worked fine on my iMac as well as my iPhone.

  • Can't get traffic flowing between VLANs on an ASA 5505

    I've got an ASA 5505 with the Security Plus license that I'm trying to configure.
    So far I have setup NATing on two VLANs, one called 16jda (VLAN 16 - 10.16.2.0/24) and one called 16jdc (VLAN 11 - 10.105.11.0/24).
    From each subnet I am able to connect to the internet, but I need these subnets to also be able to talk to each other.
    I have each VLAN interface at security level 100 and enabled "same-security-traffic permit inter-interface", and I have setup static NAT mappings between the two subnets, but they still can't communicate.
    When I try to ping there is no reply and the only log message is:
    6     Aug 21 2012     09:00:54     302020     10.16.2.10     23336     10.105.11.6     0     Built inbound ICMP connection for faddr 10.16.2.10/23336 gaddr 10.105.11.6/0 laddr 10.105.11.6/0
    I have attached a copy of the router config.

    Hi Bro
    I know your problem and I know exactly how to solve it too. You could refer to https://supportforums.cisco.com/message/3714412#3714412 for further details.
    Moving forward, this is what you’re gonna paste in your FW. This should work like a charm.
    access-list from-inside permit ip 10.105.1.0 255.255.255.0 10.105.11.0 255.255.255.0
    access-list from-inside permit ip 10.105.1.0 255.255.255.0 10.16.2.0 255.255.255.0
    access-list from-16jda permit ip 10.16.2.0 255.255.255.0 10.105.1.0 255.255.255.0
    access-list from-16jda permit ip 10.16.2.0 255.255.255.0 10.105.11.0 255.255.255.0
    access-list from-16jdc permit ip 10.105.11.0 255.255.255.0 10.105.1.0 255.255.255.0
    access-list from-16jdc permit ip 10.105.11.0 255.255.255.0 10.16.2.0 255.255.255.0
    nat (inside) 0 access-list from-inside
    nat (16jdc) 0 access-list from-16jdc
    nat (16jda) 0 access-list from-16jda
    clear xlate
    nat (inside) 1 10.105.1.0 255.255.255.0 <-- You forgot this!!
    Basically, when inside wants to communicate with the other interfaces bearing security-level 100 e.g. 16jda or 16jdc or vice-versa, you’ll need to enable “NAT Exemption” i.e. nat (nameif) 0 . I know you have already enabled the same-security permit inter-interface command, but this command becomes useless once you’ve enable dynamic nat on one of those interfaces. It’s as if the same-security traffic command wasn't even entered in the first place. Hence, the Cisco ASA is behaving as expected as per Cisco's documentation. For further details on this, you could refer to the URLs below;
    https://supportforums.cisco.com/thread/223898
    http://www.cisco.com/en/US/docs/security/asa/asa72/configuration/guide/cfgnat.html#wp1042530
         

  • SG300: How to set up routing between VLANs?

    I have recently purchased a Cisco SG300-10.  I need it to perform routing between two VLANs on the switch. Seems like this should be quick and easy to do from the built in GUI. When I configure it according to the documentation, it does not ropute between the VLANs.
    I have set the system mode to L3 (for level 3 switching).
    I have followed the instructions on pages 26 through 33 of the attached PDF (which I obtained from the Cisco site). I used the same ports on the switch and the same IP addresses as shown in the document.
    Everything works until I attempt the step "ping 10.1.1.10" on page 33. This is the step to verify the level 3 switching between the 2 PCs (on separate VLANs).
    The switch Firmware Version (Active Image): 1.3.5.58
    I have attached the running configuration from the switch. It is the file named "running-config.txt".   
    The 2 PCs that I am using are running Windows 7 and Windows 8.

    Hi jkst,
    There is a very minimum requirement to obtain layer 3 intervlan routing
    1- 2 VLAN in layer 3 mode assigned an IP address
    config t
    vlan database
    vlan 2
    int vlan 1
    ip address 192.168.1.1 /24
    int vlan 2
    ip address 192.168.2.1 /24
    2 - Active link state on each VLAN - Define a port for the second vlan then connect an IP device to that port and another device to another port since the rest of the ports will default to vlan 1
    config t
    int gi2
    switchport mode access
    switchport access vlan 2
    3 - Assign your device #1 that connects to any port an ip address on the same subnet as vlan 1
    Computer in vlan 1 IP info=
    192.168.1.100
    255.255.255.0
    192.168.1.1
    Computer in vlan 2 IP info-
    192.168.2.100
    255.255.255.0
    192.168.2.1
    Assuming these devices respond to ping and do not have external wireless communication, this will provide basic IP connectivity through the switch across vlans.
    -Tom
    Please mark answered for helpful posts

  • High CPU when tranferring data between VLANs on the same subinterface

    Hi 
    i have Cisco 2821 with 2 subinterfaces on the G0/0, with 2 different VLANs on them.
    When i copy about 60 Mb/s between them, the CPU usage increase to 80-90 %, and start to drop the packets.
    The CEF is on on all those subinterfaces.
    Any recommendations ? 
    many thanks
    Here is the info about those subinterfaces:
    #sh cef interface g0/0.10
    GigabitEthernet0/0.10 is up (if_number 5)
      Corresponding hwidb fast_if_number 21
      Corresponding hwidb firstsw->if_number 2
      ICMP redirects are always sent
      Per packet load-sharing is disabled
      IP unicast RPF check is disabled
      Input features: Stateful Inspection, Virtual Fragment Reassembly, Virtual Fragment Reassembly After
      Output features: Stateful Inspection, TCP Adjust MSS
      IP policy routing is disabled
      BGP based policy accounting on input is disabled
      BGP based policy accounting on output is disabled
      Hardware idb is GigabitEthernet0/0
      Fast switching type 1, interface type 27
      IP CEF switching enabled
      IP CEF switching turbo vector
      IP prefix lookup IPv4 mtrie 8-8-8-8 optimized
      Input fast flags 0x400061, Output fast flags 0x10181
      ifindex 2(2)
      Slot  Slot unit 0 VC -1
      IP MTU 1500
    #sh cef interface g0/0.117
    GigabitEthernet0/0.117 is up (if_number 21)
      Corresponding hwidb fast_if_number 5
      Corresponding hwidb firstsw->if_number 2
      ICMP redirects are always sent
      Per packet load-sharing is disabled
      IP unicast RPF check is disabled
      Input features: Stateful Inspection, Virtual Fragment Reassembly, Virtual Fragment Reassembly After
      Output features: Stateful Inspection
      IP policy routing is disabled
      BGP based policy accounting on input is disabled
      BGP based policy accounting on output is disabled
      Hardware idb is GigabitEthernet0/0
      Fast switching type 1, interface type 27
      IP CEF switching enabled
      IP CEF switching turbo vector
      IP prefix lookup IPv4 mtrie 8-8-8-8 optimized
      Input fast flags 0x400061, Output fast flags 0x10181
      ifindex 2(2)
      Slot  Slot unit 0 VC -1
      IP MTU 1500
    sh int g0/0 st
    GigabitEthernet0/0
              Switching path    Pkts In   Chars In   Pkts Out  Chars Out
                   Processor   13584490  436643191   27043759 2436202283
                 Route cache   70111252 1482061430   60433310  610254739
                       Total   83695742 1918704621   87477069 3046457022

    Disclaimer
    The Author of this posting offers the information contained within this posting without consideration and with the reader's understanding that there's no implied or expressed suitability or fitness for any purpose. Information provided is for informational purposes only and should not be construed as rendering professional advice of any kind. Usage of this posting's information is solely at reader's own risk.
    Liability Disclaimer
    In no event shall Author be liable for any damages whatsoever (including, without limitation, damages for loss of use, data or profit) arising out of the use or inability to use the posting's information even if Author has been advised of the possibility of such damage.
    Posting
    Recommendation?  Yes, you may need a faster router.  At 60 Mbps, you might be bumping into the capacity limitations of the 2821.

  • Routing multicast between vlans thru VRF's

    Team,
    Need a help / Suggestion on the VRF to route the multicast traffic between the vlans
    The problem is something like this
    We have a source residing on the Vlan X on the Catalyst 4503 and the clients will be on the Vlan Y on the 6509(on a VSS mode). As of now, clients from different Vlans on the 4503 will join the multicast group by sending the igmp joining massage (we have multicast routing and PIM configured on the vlan interfaces on the 4503). [ REFER ATTACHED DIAGRAM ]
    Now the requirement is the client on the different Vlan on the 6509 should receive multicast OR join the multicast group on 4503
    a) We have L3 connectivity between the 4503 <> 6509 (and a VSS configuration on 6509)
    b) I was given understanding that through VRF-lite feature this can be achieved (without PIM configured), If the source & destination on the different switches is it ok to achieve it ?
    c) What configuration is required to route the multicast traffic from 4503 to 6509 using the VRF-lite
    d) Also, Please brief me about VRF-lite technology and let me know how different it is from VRF- MPLS & VPN
    Please revert me if need any more information
    Any inputs / suggestion in this regard is highly appreciated
    Thank you in advance
    Shash

    try to use sparse or better yet, PIM sparse-dense-mode and set a RendevousPoint as the root of the shared tree, or AutoRP if you can.
    this may provide better results than dense-mode.
    see this link for more info:
    http://www.cisco.com/en/US/products/sw/iosswrel/ps1835/products_configuration_guide_chapter09186a00800ca794.html#wp1001103

  • ACL's to allow Netbios (a windows share) between vlans

    I am trying to lock down a particular server, so that if is compromised, it will cause little impact on the network.
    The server is going to have a 1 to 1 NAT on a cisco 1760 router. That nat is going to allow ports 80 and 443 from the outside into that server (10.70.0.50) which is in vlan 700.
    All of the companies servers are in vlan 600 except the vulnerable server which is on vlan 700. The server in vlan 700 should only have access to one specific server in vlan 600 (10.60.0.50), nothing else. The access it needs is to windows share (netbios). When I try to implement this it doesnt work. I think it has to do with the netbios traffic not being forwarded between different networks. There are two commands that i think may help. One is "ip helper-address x.x.x.x" but i dont know what ip address i would want it to point to make this work. The other command is the "ip forward-protocol udp ?" I just dont know what i need to add to the router and where to apply it to allow the netbios to work between the vlans.
    Basically i am hoping to get some insight to make the windows share work between the vlans. I am assuming that it is netbios tcp ports 137-139 and 445, udp ports 137-139.
    Thanks in advance.

    Hello Jeff,
    enable the IP helper address on VLAN interface 700, if you want the server in VLAN 700 to access the share on the server in VLAN 600:
    interface Vlan700
    ip helper-address 10.60.0.50
    Configuring the ip helper-address automatically forwards certain UDP ports, such as 137 and 138.
    With the ip forward-protocol, you can specify additional ports, but I think 137 and 138 should be enough.
    Check this link for a listing of the ports that are forwarded by default when the ip helper is configured on an interface:
    ip forward-protocol
    http://www.cisco.com/univercd/cc/td/doc/product/software/ios124/124cr/hiad_r/adr_i1h.htm#wp1176595
    Let me know if you don't get this to work...
    Regards,
    GP

  • AirPlay between Mac and Apple TV

    Hi there,
    I just bought Apple TV and I am trying to connect my Macbook Pro (2012 model) to Apple TV. I know that I have to go to AirPlay, but my computer does not give me the option. I go to system preferences, settings, and I am not given an option to connect to AirPlay, it just gives me a list of settings for my computer's screen. My Mac's software is up to date as well as my Apple TV. I am just wondering how I can be prompted to connect to AirPlay.

    I have no issues connecting my Apple TV to my iphone and ipad, just the Mac is giving me problems.

Maybe you are looking for

  • I'm not receiving my verification email to verify Apple ID. How do I get it?

    I guess this isn't a Mac book technical question but maybe someone can help me out. I'm trying to set up Icloud and it's asking me for my apple ID username and password which I know is correct. It then says that an email is being sent to verify but t

  • Windows 8 and CS5

    Hi, I recently installed windows 8 and afterwards my Adobe CS5 didn't work anymore. I tried to reinstall but I get a fatal error during the installing process. Can anyone help me?

  • PO Creation not to be allowed in future date

    Hi Our Requirement is Po Creation in future date should not be allowed Please suggest how it can be achieved Regards Sameer

  • How to install the fonts that come standard in other environments

    I am new to archlinux. I've used Fedora and Ubuntu before. I have a fresh install and it runs smooth. I like it a lot. There are a few things I need to work out. The thing I'd like to do at the moment is to get the fonts that other desktop environmen

  • Password does not open keychain

    I can use my administrator password to open my Mac but this password is not accepted to unlock when I want to change System Preferences. An important reason why I want to change is that Date and Time preferences were changed without my input - believ