----- Original Message ----- | Am 06.11.2010 03:23, schrieb James A. Peltier: | > Problem Description: | > | > I'm trying to filter VLANs on the bridge. However, when enabling | > VLAN devices on the em1 interface the bridge does not work. | > | Hello | > | > Test Setup: | > ============ | > | > The 2910AL-24G port 19 has its ports configured as TAGGED for VLAN | > 300 and VLAN 302 with no other VLANs are enabled on this port. This | > cable enters the bridge via em0 of the bridge and em1 connects to | > port 1 on the HP5304XL which is configured for TAGGED VLAN 300 and | > VLAN 302. Port two is configured as VLAN 300 UNTAGGED. | > | > HP2910AL-24G (port 19) --- OpenBSD Bridge --- HP 5304XL (port 1) | > | > OS - OpenBSD 4.8-beta (GENERIC.MP) #259: Tue Aug 3 09:06:37 MDT 2010 | > (no difference with newer versions) | > PF - Disabled | > | > Two physical interfaces | > | > em0 | > em1 | > | > VLAN devices | > # cat /etc/hostname.vlan300 | > vlan 300 vlandev em1 | > | > # cat /etc/hostname.vlan302 | > vlan 302 vlandev em1 | > | > cat /etc/hostname.em0 | > up | > | > cat /etc/hostname.em1 | > up | > | > | | Make also 2 corresponding vlan devices on em1 (they must have | different | names then vlan300 and vlan302, but the same vlan tag ) | hostname.vlan300: | vlan 300 vlandev em0 | hostname.vlan302: | vlan 302 vlandev em0 | hostname.vlan1300: | vlan 300 vlandev em1 | hostname.vlan1302: | vlan 302 vlandev em1 | | | > Working configuration but without filtering. | > ============================================= | > cat /etc/hostname.bridge0 | > add em0 | > add em1 | > up | > | | Make 2 bridges, one for vlan tag 300 and one for tag 302. | Bridge0: | add vlan300 | add vlan1300 | up | | Bridge1: | add vlan302 | add vlan1302 | up | | Now you should be able to filter on bridge0 (vlan 300) and bridge1 | (vlan | 302). | | | guido | | > With this configuration and no VLAN devices created the bridge works | > and the tags are passed appropriately, however I am unable to filter | > the traffic on the VLANs. | > | > dhclient eth0 on client works fine | > pinging out works fine | > | > Non-Working configuration with hopes of filtering | > ================================================== | > | > However, as soon as I create the vlan300 devices with a parent of | > em1 the bridge stops functioning and the client on HP5304XL Port 2 | > (UNTAGGED VLAN 300) stops functioning. This remains the same even if | > I add the vlan300 and vlan302 devices to the bridge. | > | > dhclient stops working | > ping is dead | > | > | > I'm stumped here. Any ideas? | > -- | > James A. Peltier | > Systems Analyst (FASNet), VIVARIUM Technical Director | > Simon Fraser University - Burnaby Campus | > Phone : 778-782-6573 | > Fax : 778-782-3045 | > E-Mail : jpelt...@sfu.ca | > Website : http://www.fas.sfu.ca | http://vivarium.cs.sfu.ca | > http://blogs.sfu.ca/people/jpeltier | > MSN : subatomic_s...@hotmail.com
Damn! Why didn't I think of that. Argh. Too tired. :) Thanks all. :) -- James A. Peltier Systems Analyst (FASNet), VIVARIUM Technical Director Simon Fraser University - Burnaby Campus Phone : 778-782-6573 Fax : 778-782-3045 E-Mail : jpelt...@sfu.ca Website : http://www.fas.sfu.ca | http://vivarium.cs.sfu.ca http://blogs.sfu.ca/people/jpeltier MSN : subatomic_s...@hotmail.com
