mDNS for communications over VLAN

I've submitted an enhancement case online already for this, but would like to post here as well to see if others are interested in the feature request.

I'd love for WatchGuard to implement an mDNS service that can broadcast across VLAN's. This makes it possible to manage/control IOT devices across segregated VLANS instead of having to constantly rely on the service being cloud based and use HTTPS, or having to hop on a different wifi/vlan to manage/monitor the device.

As a use case, if a client segregates their Google Home devices from their corporate trusted network, the mobile device access to the IOT VLAN is limited on what it can do because it's not on the same network. Things like configuring the Google Home speaker / display unit or making any modifications to existing settings are next to impossible without jumping onto the VLAN of said device.

With mDNS, the broadcast traffic would be able to pass through to other VLAN's via firewall policies or global setting.

Comments

  • edited August 19

    This would be an amazing method to provide support for Apple devices, specifically printing. Yes the proper way to do it is in DNS-SD but for customers stuck with .local AD domains Apple falls back to hardcoded behavior and you can't provide any support for AirPrint / AirPlay unless you can convince them to spend the hours and downtime risk on moving to a new AD domain or attempting a rename.

    Worth noting: if this is a viable workaround for you Google Homes support ethernet via the chromecast and Amazon Echo ethernet adapters. Others too but those are the only tested ones. You can also combine the Amazon one with a PoE splitter to craft a PoE Google Home.

  • Commenting as an up vote, and to say a MDNS reflector on WatchGuard devices, that is then controlled via policies to say which VLANS could see MDNS traffic from other VLANS would be great. This would be very useful for segmented networks where Chromecast and AirPlan devices are appropriately on a different VLAN from user endpoints.

Sign In to comment.