Multi vlans and sonos speakers

Networking & Firewalls
1

Hi,

On pfsense I created two vlans named “main” and “media”.
On my vlan “main”, I have my smartphones (apple), computers…
On my vlan “media”, I have my sonos speakers.

On pfsense, I have:

  1. configured UDP Broadcast Relay to have two instances: SSDP and MDNS
  2. configured the firewall so that ports 1443/tcp, 7000/tcp, 30000:65535/tcp, 319/udp, 320/udp, 30000:65535/udp of my speakers are accessible to my smartphones.

I can:

  • see my speakers from the sonos application
  • play music from the sonos application
  • control my speakers via airplay

My questions:

  • why does my configuration work when I see a lot of documentation that mentions more ports?
  • why does the spotify application, on my smartphone, not detect my speakers correctly?
  • why can I control my speakers from the spotify application, on my computer, when I have no firewall rules that allow my computer to communicate with my speakers

Sorry for my English and for my newbie questions and thank you for your answers

2

I have a similar setup to this at home, though I use Avahi instead of UDP Broadcast Relay. Multicast across vlans has a lot of pitfalls. The best thing I’ve found to troubleshoot is to watch the live firewall log while trying to make a connection and see what’s being blocked. If nothing’s obvious, do a packet capture and review it in wireshark. Those two things can help figure out where things are misbehaving.

3

Have a look at this post - SOLVED: SONOS across multiple VLANS - Networking & Firewalls - Lawrence Systems Forums

4

Thanks I solved my problems

5

What was the resolution?

6

For my question 2 : Spotify needs port 1400/tcp
For my question 3 : Firewall status problem. After doing a “reset states” the spotify application, on my computer, could not communicate with my speakers which is normal because I did not have settings allowing it.