Menu
Home
People
Places
Arts
History
Plants & Animals
Science
Life & Culture
Technology
Reference.org
Internet Group Management Protocol
open-in-new
<h2 id="architecture">Architecture</h2> <p>A network designed to deliver a multicast service using IGMP might use this basic architecture: </p><p>IGMP operates between a host and a local multicast router. <a href="/facts/Network_switch/CnvmhNYT">Switches</a> featuring <a href="/facts/IGMP_snooping/Smz8LzQ3">IGMP snooping</a> also derive useful information by observing these IGMP transactions. <a href="/facts/Protocol_Independent_Multicast/cP3Tr4MA">Protocol Independent Multicast</a> (PIM) is then used between the local and remote multicast routers to direct multicast traffic from hosts sending multicasts to hosts that have registered through IGMP to receive them. </p><p>IGMP operates on the <a href="/facts/Network_layer/L2jAtJzQ">network layer</a> (layer 3), just the same as other network management protocols like <a href="/facts/ICMP/sUvo3J3y">ICMP</a>.<a class="footnote-ref" id="fnref:1" href="#fn:1"><sup>1</sup></a> </p><p>The IGMP protocol is implemented on hosts and within <a href="/facts/Router_(computing)/Nh5cIyVf">routers</a>. A host requests membership to a group through its local router while a router listens for these requests and periodically sends out subscription queries. A single router per subnet is elected to perform this querying function. Some <a href="/facts/Multilayer_switch/xYUzC9bY">multilayer switches</a> include an IGMP querier capability to allow their IGMP snooping features to work in the absence of an IGMP-capable router in the layer 2 network. </p><p>IGMP is vulnerable to some attacks,<a class="footnote-ref" id="fnref:2" href="#fn:2"><sup>2</sup></a><a class="footnote-ref" id="fnref:3" href="#fn:3"><sup>3</sup></a><a class="footnote-ref" id="fnref:4" href="#fn:4"><sup>4</sup></a><a class="footnote-ref" id="fnref:5" href="#fn:5"><sup>5</sup></a> and firewalls commonly allow the user to disable it if not needed. </p> <h2 id="versions">Versions</h2> <p>There are three versions of IGMP.<a class="footnote-ref" id="fnref:6" href="#fn:6"><sup>6</sup></a> IGMPv1 was defined in 1989.<a class="footnote-ref" id="fnref:7" href="#fn:7"><sup>7</sup></a> IGMPv2, defined in 1997,<a class="footnote-ref" id="fnref:8" href="#fn:8"><sup>8</sup></a> improves IGMPv1 by adding the ability for a host to signal a desire to leave a multicast group. </p><p>In 2002, IGMPv3 improved IGMPv2 by supporting <a href="/facts/Source-specific_multicast/WHm5IJ5D">source-specific multicast</a><a class="footnote-ref" id="fnref:9" href="#fn:9"><sup>9</sup></a> and introduces membership report aggregation.<a class="footnote-ref" id="fnref:10" href="#fn:10"><sup>10</sup></a> The support for source-specific multicast was improved in 2006.<a class="footnote-ref" id="fnref:11" href="#fn:11"><sup>11</sup></a> </p><p>The three versions of IGMP are backward compatible. A router supporting IGMPv3 can support clients running IGMPv1, IGMPv2, and IGMPv3. IGMPv1 uses a query-response model. Queries are sent to <i>224.0.0.1</i>. Membership reports are sent to the group's multicast address. IGMPv2 accelerates the process of leaving a group and adjusts other timeouts. Leave-group messages are sent to <i>224.0.0.2</i>. A group-specific query is introduced. Group-specific queries are sent to the group's multicast address. A means for routers to select an IGMP querier for the network is introduced. IGMPv3 introduces <a href="/facts/Source-specific_multicast/WHm5IJ5D">source-specific multicast</a> capability. Membership reports are sent to <i>224.0.0.22</i>. </p> <h2 id="messages">Messages</h2> <p>There are several types of IGMP messages: </p> General membership queries Sent by multicast routers to determine which multicast addresses are of interest to systems attached to the network(s) they serve to refresh the group membership state for all systems on its network. Group-specific membership queries Used for determining the reception state for a particular multicast address. Group-and-source-specific queries Allow the router to determine if any systems desire reception of messages sent to a multicast group from a source address specified in a list of unicast addresses. Membership reports Sent by multicast receivers in response to a membership query or asynchronously when first registering for a multicast group. Leave group messages Sent by multicast receivers when specified multicast transmissions are no longer needed at the receiver. <p>IGMP messages are carried in bare IP packets with <a href="/facts/IP_protocol_number/lf9S6JCk">IP protocol number</a> 2.<a class="footnote-ref" id="fnref:12" href="#fn:12"><sup>12</sup></a>: §4 Similar to the <a href="/facts/Internet_Control_Message_Protocol/VnrV56J0">Internet Control Message Protocol</a>, there is no <a href="/facts/Transport_layer/UmIGUCeK">transport layer</a> used with IGMP messaging. </p> <h3>IGMPv2 messages</h3> IGMPv2 packet structure<a class="footnote-ref" id="fnref:13" href="#fn:13"><sup>13</sup></a>: §2 <table><tbody><tr><th><i>Offset</i></th><th><a href="/facts/Octet_(computing)/dqCHsuUF">Octet</a></th><th colspan="8">0</th><th colspan="8">1</th><th colspan="8">2</th><th colspan="8">3</th></tr><tr><th>Octet</th><th><a href="/facts/Bit/S972NSaD">Bit</a></th><th>0</th><th>1</th><th>2</th><th>3</th><th>4</th><th>5</th><th>6</th><th>7</th><th>8</th><th>9</th><th>10</th><th>11</th><th>12</th><th>13</th><th>14</th><th>15</th><th>16</th><th>17</th><th>18</th><th>19</th><th>20</th><th>21</th><th>22</th><th>23</th><th>24</th><th>25</th><th>26</th><th>27</th><th>28</th><th>29</th><th>30</th><th>31</th></tr><tr><th>0</th><th>0</th><td colspan="8"><i>Type</i></td><td colspan="8"><i>Maximum Response Time</i></td><td colspan="16"><i>Checksum</i></td></tr><tr><th>4</th><th>32</th><td colspan="32"><i>Group Address</i></td></tr></tbody></table> Type: 8 bits Indicates the message type as follows: <table><tbody><tr><th>Message</th><th>Type value</th></tr><tr><td>Membership Query</td><td>0x11</td></tr><tr><td>IGMPv1 Membership Report</td><td>0x12</td></tr><tr><td>IGMPv2 Membership Report</td><td>0x16</td></tr><tr><td>IGMPv3 Membership Report</td><td>0x22</td></tr><tr><td>Leave Group</td><td>0x17</td></tr></tbody></table> Maximum Response Time: 8 bits Specifies the required responsiveness of replies to a Membership Query (0x11). This field is meaningful only in Membership Query; in other messages, it is set to 0 and ignored by the receiver. The field specifies time in units of 0.1 second (a field value of 10 specifies 1 second). Larger values reduce IGMP traffic burstiness and smaller values improve protocol responsiveness when the last host leaves a group.<a class="footnote-ref" id="fnref:14" href="#fn:14"><sup>14</sup></a>: §2.2 <a href="/facts/Internet_checksum/3Em2ejgB">Checksum</a>: 16 bits This is the 16-bit <a href="/facts/Ones%2527_complement/Wl2PcLtg">ones' complement</a> of the ones' complement sum of the entire IGMP message. Computed before sending, with this field set to zero. When re-computed on reception of the packet, this field is included, and the result should be zero. Group Address: 32 bits This is the multicast address being queried when sending a Group-Specific or Group-and-Source-Specific Query. The field is zeroed when sending a General Query. The message is sent to the following IP <a href="/facts/Multicast_address/cIau2Hee">multicast addresses</a>:<a class="footnote-ref" id="fnref:15" href="#fn:15"><sup>15</sup></a>: §9 <table><tbody><tr><th>Message type</th><th>Multicast address</th></tr><tr><td>General Query</td><td>All hosts (<i>224.0.0.1</i>)</td></tr><tr><td>Group-Specific Query</td><td>The group being queried</td></tr><tr><td>Membership Report (all IGMP versions)</td><td>The group being reported</td></tr><tr><td>Leave Group</td><td>All routers (<i>224.0.0.2</i>)</td></tr></tbody></table> <h3>IGMPv3 membership query</h3> IGMPv3 membership query<a class="footnote-ref" id="fnref:16" href="#fn:16"><sup>16</sup></a>: §4.1 <table><tbody><tr><th><i>Offset</i></th><th><a href="/facts/Octet_(computing)/dqCHsuUF">Octet</a></th><th colspan="8">0</th><th colspan="8">1</th><th colspan="8">2</th><th colspan="8">3</th></tr><tr><th>Octet</th><th><a href="/facts/Bit/S972NSaD">Bit</a></th><th>0</th><th>1</th><th>2</th><th>3</th><th>4</th><th>5</th><th>6</th><th>7</th><th>8</th><th>9</th><th>10</th><th>11</th><th>12</th><th>13</th><th>14</th><th>15</th><th>16</th><th>17</th><th>18</th><th>19</th><th>20</th><th>21</th><th>22</th><th>23</th><th>24</th><th>25</th><th>26</th><th>27</th><th>28</th><th>29</th><th>30</th><th>31</th></tr><tr><th>0</th><th>0</th><td colspan="8"><i>Type (0x11)</i></td><td colspan="8"><i>Maximum Response Code</i></td><td colspan="16"><i>Checksum</i></td></tr><tr><th>4</th><th>32</th><td colspan="32"><i>Group Address</i></td></tr><tr><th>8</th><th>64</th><td colspan="4"><i>Reserved</i></td><td colspan="1"><i>S</i></td><td colspan="3"><i>QRV</i></td><td colspan="8"><i>QQIC</i></td><td colspan="16"><i>Number of Sources (N)</i></td></tr><tr><th>12</th><th>96</th><td colspan="32"><i>Source Address[1]</i></td></tr><tr><th>16</th><th>128</th><td colspan="32"><i>Source Address[2]</i></td></tr><tr><th>⋮</th><th>⋮</th><td colspan="32"><i>⋮</i></td></tr><tr><th><i>8+4n</i></th><th><i>64+32n</i></th><td colspan="32"><i>Source Address[n]</i></td></tr></tbody></table> Type: 8 bits Indicates the type of the packet. A value of 0x11 indicates <i>IGMPv3 Membership Query</i>. Maximum Response Code: 8 bits This field is used to compute the Maximum Response Time (in 1/10 second increments) allowed before sending a responding report. If the number is below 128, the value is used directly. If the value is 128 or more, it is interpreted as an exponent and mantissa. <a href="/facts/Internet_checksum/3Em2ejgB">Checksum</a>: 16 bits This is the 16-bit <a href="/facts/Ones%2527_complement/Wl2PcLtg">ones' complement</a> of the ones' complement sum of the entire IGMP message. Computed before sending, with this field set to zero. When re-computed on reception of the packet, this field is included, and the result should be zero. Group Address: 32 bits This is the <a href="/facts/Multicast_address/cIau2Hee">multicast address</a> being queried when sending a Group-Specific or Group-and-Source-Specific Query. The field is zeroed when sending a General Query. Reserved: 4 bits This field is reserved. It should be zeroed when sent and ignored when received. Suppress Router-side Processing (S): 1 bit When this flag is set, it indicates to receiving routers that they are to suppress the normal timer updates. Querier's Robustness Variable (QRV): 3 bits If this is non-zero, it contains the Robustness Variable value used by the sender of the query. Routers should update their Robustness Variable to match the most recently received query unless the value is zero. Querier's Query Interval Code (QQIC): 8 bits This code is used to specify the Query Interval value (in seconds) used by the querier. If the number is below 128, the value is used directly. If the value is 128 or more, it is interpreted as an exponent and mantissa. Number of Sources (N): 16 bits This field specifies the number of source addresses present in the query. For General and Group-Specific Queries, this value is zero. For Group-and-Source-Specific Queries, this value is non-zero, but limited by the network's MTU. Source Address [i]: 32 bits The Source Address [i] fields are a vector of <i>n</i> IP unicast addresses, where n is the value in the Number of Sources (N) field. <h2 id="implementations">Implementations</h2> <p><a href="/facts/FreeBSD/RKsFTm7F">FreeBSD</a>,<a class="footnote-ref" id="fnref:17" href="#fn:17"><sup>17</sup></a> <a href="/facts/Linux/9FvCKSTq">Linux</a><a class="footnote-ref" id="fnref:18" href="#fn:18"><sup>18</sup></a> and <a href="/facts/Windows/bwhAhuSL">Windows</a> all support IGMP on the host side. </p> <h2 id="see-also">See also</h2> <ul><li><a href="/facts/Internet_Group_Management_Protocol_with_Access_Control/DUCLvQWM">Internet Group Management Protocol with Access Control</a></li></ul> <h2 id="notes">Notes</h2> <h2 id="references">References</h2> <ol> <li id="fn:1"><p>Forouzan, Behrouz A. (2012). Data Communications and Networking (5th ed.). New York, NY: McGraw-Hill. p. 658. ISBN 978-0073376226. <a href="978-0073376226" target="_blank">978-0073376226</a> <a href="#fnref:1" class="footnote-back-ref">↩</a></p></li> <li id="fn:2"><p>Spoofed IGMP report denial of service vulnerability. <a href="http://www.securityfocus.com/bid/5020/info" target="_blank">http://www.securityfocus.com/bid/5020/info</a> <a href="#fnref:2" class="footnote-back-ref">↩</a></p></li> <li id="fn:3"><p>"Fragmented IGMP Packet May Promote "Denial of Service" Attack". Dec 20, 2004. Archived from the original on 2005-02-13. <a href="https://web.archive.org/web/20050213091318/http://support.microsoft.com/default.aspx?scid=kb;en-us;238329&sd=tech" target="_blank">https://web.archive.org/web/20050213091318/http://support.microsoft.com/default.aspx?scid=kb;en-us;238329&sd=tech</a> <a href="#fnref:3" class="footnote-back-ref">↩</a></p></li> <li id="fn:4"><p>IGMP Security Problem Statement and Requirements Archived 2006-10-13 at the Wayback Machine. <a href="http://www.securemulticast.org/GSEC/gsec3_ietf53_SecureIGMP1.pdf#search=%22igmp%20attacks%22" target="_blank">http://www.securemulticast.org/GSEC/gsec3_ietf53_SecureIGMP1.pdf#search=%22igmp%20attacks%22</a> <a href="#fnref:4" class="footnote-back-ref">↩</a></p></li> <li id="fn:5"><p>"Vulnerability in TCP/IP Could Allow Denial of Service (MS06-007, 913446))". Microsoft. February 14, 2006. Archived from the original on 2007-02-05. <a href="https://web.archive.org/web/20070205172614/https://www.microsoft.com/technet/security/Bulletin/MS06-007.mspx" target="_blank">https://web.archive.org/web/20070205172614/https://www.microsoft.com/technet/security/Bulletin/MS06-007.mspx</a> <a href="#fnref:5" class="footnote-back-ref">↩</a></p></li> <li id="fn:6"><p>IP Multicast Routing Configuration Guide, Cisco, pp. 25–28, retrieved 2017-05-27 <a href="https://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst3750x_3560x/software/release/15-2_2_e/multicast/configuration_guide/b_mc_1522e_3750x_3560x_cg/b_mc_3750x_3560x_chapter_011.html" target="_blank">https://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst3750x_3560x/software/release/15-2_2_e/multicast/configuration_guide/b_mc_1522e_3750x_3560x_cg/b_mc_3750x_3560x_chapter_011.html</a> <a href="#fnref:6" class="footnote-back-ref">↩</a></p></li> <li id="fn:7"><p>S. Deering (August 1989). Host Extensions for IP Multicasting. Network Working Group. doi:10.17487/RFC1112. STD 5. RFC 1112. Internet Standard 5. Obsoletes RFC 988 and 1054. Updated by RFC 2236. <a href="/wiki/Steve_Deering" target="_blank">/wiki/Steve_Deering</a> <a href="#fnref:7" class="footnote-back-ref">↩</a></p></li> <li id="fn:8"><p>W. Fenner (November 1997). Internet Group Management Protocol, Version 2. Network Working Group. doi:10.17487/RFC2236. RFC 2236. Proposed Standard. Updates RFC 1112. Updated by RFC 3376. <a href="https://datatracker.ietf.org/doc/html/rfc2236" target="_blank">https://datatracker.ietf.org/doc/html/rfc2236</a> <a href="#fnref:8" class="footnote-back-ref">↩</a></p></li> <li id="fn:9"><p>"Internet Group Management Protocol Overview". Javvin. Archived from the original on 2010-11-10. Retrieved 2010-11-18. <a href="https://web.archive.org/web/20101110115314/http://www.javvin.com/protocolIGMP.html" target="_blank">https://web.archive.org/web/20101110115314/http://www.javvin.com/protocolIGMP.html</a> <a href="#fnref:9" class="footnote-back-ref">↩</a></p></li> <li id="fn:10"><p>B. Cain; S. Deering; I. Kouvelas; B. Fenner; A. Thyagarajan (October 2002). Internet Group Management Protocol, Version 3. Network Working Group. doi:10.17487/RFC3376. RFC 3376. Proposed Standard. Updates RFC 2236. Updated by RFC 4604. <a href="/wiki/Steve_Deering" target="_blank">/wiki/Steve_Deering</a> <a href="#fnref:10" class="footnote-back-ref">↩</a></p></li> <li id="fn:11"><p>H. Holbrook; B. Cain; B. Haberman (August 2006). Using Internet Group Management Protocol Version 3 (IGMPv3) and Multicast Listener Discovery Protocol Version 2 (MLDv2) for Source-Specific Multicast. Network Working Group. doi:10.17487/RFC4604. RFC 4604. Proposed Standard. Updates RFC 3376 and 3810. <a href="https://datatracker.ietf.org/doc/html/rfc4604" target="_blank">https://datatracker.ietf.org/doc/html/rfc4604</a> <a href="#fnref:11" class="footnote-back-ref">↩</a></p></li> <li id="fn:12"><p>B. Cain; S. Deering; I. Kouvelas; B. Fenner; A. Thyagarajan (October 2002). Internet Group Management Protocol, Version 3. Network Working Group. doi:10.17487/RFC3376. RFC 3376. Proposed Standard. Updates RFC 2236. Updated by RFC 4604. <a href="/wiki/Steve_Deering" target="_blank">/wiki/Steve_Deering</a> <a href="#fnref:12" class="footnote-back-ref">↩</a></p></li> <li id="fn:13"><p>W. Fenner (November 1997). Internet Group Management Protocol, Version 2. Network Working Group. doi:10.17487/RFC2236. RFC 2236. Proposed Standard. Updates RFC 1112. Updated by RFC 3376. <a href="https://datatracker.ietf.org/doc/html/rfc2236" target="_blank">https://datatracker.ietf.org/doc/html/rfc2236</a> <a href="#fnref:13" class="footnote-back-ref">↩</a></p></li> <li id="fn:14"><p>W. Fenner (November 1997). Internet Group Management Protocol, Version 2. Network Working Group. doi:10.17487/RFC2236. RFC 2236. Proposed Standard. Updates RFC 1112. Updated by RFC 3376. <a href="https://datatracker.ietf.org/doc/html/rfc2236" target="_blank">https://datatracker.ietf.org/doc/html/rfc2236</a> <a href="#fnref:14" class="footnote-back-ref">↩</a></p></li> <li id="fn:15"><p>W. Fenner (November 1997). Internet Group Management Protocol, Version 2. Network Working Group. doi:10.17487/RFC2236. RFC 2236. Proposed Standard. Updates RFC 1112. Updated by RFC 3376. <a href="https://datatracker.ietf.org/doc/html/rfc2236" target="_blank">https://datatracker.ietf.org/doc/html/rfc2236</a> <a href="#fnref:15" class="footnote-back-ref">↩</a></p></li> <li id="fn:16"><p>B. Cain; S. Deering; I. Kouvelas; B. Fenner; A. Thyagarajan (October 2002). Internet Group Management Protocol, Version 3. Network Working Group. doi:10.17487/RFC3376. RFC 3376. Proposed Standard. Updates RFC 2236. Updated by RFC 4604. <a href="/wiki/Steve_Deering" target="_blank">/wiki/Steve_Deering</a> <a href="#fnref:16" class="footnote-back-ref">↩</a></p></li> <li id="fn:17"><p>IGMPv3 was added to FreeBSD in version 8.0. <a href="#fnref:17" class="footnote-back-ref">↩</a></p></li> <li id="fn:18"><p>IGMPv3 was added in the Linux 2.5 kernel series. <a href="#fnref:18" class="footnote-back-ref">↩</a></p></li> </ol>