Re: ipfw on bridge connecting vlans

2018-10-27 Thread Victor Gamov
On 27/10/2018 21:02, Eugene Grosbein wrote: 28.10.2018 0:48, Victor Gamov wrote: On 27/10/2018 19:33, Eugene Grosbein wrote: 27.10.2018 23:26, Victor Gamov wrote: [skip] net.link.bridge.pfil_member=1 makes frames enter ruleset as incoming from bridge member, zero disables this pass. net.li

Re: ipfw on bridge connecting vlans

2018-10-27 Thread Eugene Grosbein
28.10.2018 0:48, Victor Gamov wrote: > On 27/10/2018 19:33, Eugene Grosbein wrote: >> 27.10.2018 23:26, Victor Gamov wrote: >> >> [skip] >> net.link.bridge.pfil_member=1 makes frames enter ruleset as incoming from bridge member, zero disables this pass. net.link.bridge.ipfw=1 m

Re: ipfw on bridge connecting vlans

2018-10-27 Thread Victor Gamov
On 27/10/2018 19:33, Eugene Grosbein wrote: 27.10.2018 23:26, Victor Gamov wrote: [skip] net.link.bridge.pfil_member=1 makes frames enter ruleset as incoming from bridge member, zero disables this pass. net.link.bridge.ipfw=1 makes frames enter ruleset again as incoming from bridge interface

Re: ipfw on bridge connecting vlans

2018-10-27 Thread Eugene Grosbein
27.10.2018 23:26, Victor Gamov wrote: [skip] >> net.link.bridge.pfil_member=1 makes frames enter ruleset as incoming from >> bridge member, zero disables this pass. >> >> net.link.bridge.ipfw=1 makes frames enter ruleset again as incoming from >> bridge interface itself >> without distinction o

Re: ipfw on bridge connecting vlans

2018-10-27 Thread Victor Gamov
On 27/10/2018 18:44, Eugene Grosbein wrote: 27.10.2018 22:16, Victor Gamov wrote: Hi All I have some misunderstanding how ipfw work with VLAN and bridge I have following config bridge2 / | \ / | \ /| \ vlan200 vl

Re: ipfw on bridge connecting vlans

2018-10-27 Thread Eugene Grosbein
27.10.2018 22:16, Victor Gamov wrote: > > Hi All > > I have some misunderstanding how ipfw work with VLAN and bridge > > I have following config > > > bridge2 > > / | \ > / | \ >/| \ > vlan200 vlan300 vlan400 > (igb0)

ipfw on bridge connecting vlans

2018-10-27 Thread Victor Gamov
Hi All I have some misunderstanding how ipfw work with VLAN and bridge I have following config bridge2 / | \ / | \ /| \ vlan200 vlan300 vlan400 (igb0)(igb0) (igb1) = net.link.bridge.ipfw: 1 net.link.bridge