Am 06.11.2010 03:23, schrieb James A. Peltier: > Problem Description: > > I'm trying to filter VLANs on the bridge. However, when enabling VLAN > devices on the em1 interface the bridge does not work. > Hello > > Test Setup: > ============ > > The 2910AL-24G port 19 has its ports configured as TAGGED for VLAN 300 and > VLAN 302 with no other VLANs are enabled on this port. This cable enters the > bridge via em0 of the bridge and em1 connects to port 1 on the HP5304XL which > is configured for TAGGED VLAN 300 and VLAN 302. Port two is configured as > VLAN 300 UNTAGGED. > > HP2910AL-24G (port 19) --- OpenBSD Bridge --- HP 5304XL (port 1) > > OS - OpenBSD 4.8-beta (GENERIC.MP) #259: Tue Aug 3 09:06:37 MDT 2010 > (no difference with newer versions) > PF - Disabled > > Two physical interfaces > > em0 > em1 > > VLAN devices > # cat /etc/hostname.vlan300 > vlan 300 vlandev em1 > > # cat /etc/hostname.vlan302 > vlan 302 vlandev em1 > > cat /etc/hostname.em0 > up > > cat /etc/hostname.em1 > up > >
Make also 2 corresponding vlan devices on em1 (they must have different names then vlan300 and vlan302, but the same vlan tag ) hostname.vlan300: vlan 300 vlandev em0 hostname.vlan302: vlan 302 vlandev em0 hostname.vlan1300: vlan 300 vlandev em1 hostname.vlan1302: vlan 302 vlandev em1 > Working configuration but without filtering. > ============================================= > cat /etc/hostname.bridge0 > add em0 > add em1 > up > Make 2 bridges, one for vlan tag 300 and one for tag 302. Bridge0: add vlan300 add vlan1300 up Bridge1: add vlan302 add vlan1302 up Now you should be able to filter on bridge0 (vlan 300) and bridge1 (vlan 302). guido > With this configuration and no VLAN devices created the bridge works and the > tags are passed appropriately, however I am unable to filter the traffic on > the VLANs. > > dhclient eth0 on client works fine > pinging out works fine > > Non-Working configuration with hopes of filtering > ================================================== > > However, as soon as I create the vlan300 devices with a parent of em1 the > bridge stops functioning and the client on HP5304XL Port 2 (UNTAGGED VLAN > 300) stops functioning. This remains the same even if I add the vlan300 and > vlan302 devices to the bridge. > > dhclient stops working > ping is dead > > > I'm stumped here. Any ideas? > -- > James A. Peltier > Systems Analyst (FASNet), VIVARIUM Technical Director > Simon Fraser University - Burnaby Campus > Phone : 778-782-6573 > Fax : 778-782-3045 > E-Mail : [email protected] > Website : http://www.fas.sfu.ca | http://vivarium.cs.sfu.ca > http://blogs.sfu.ca/people/jpeltier > MSN : [email protected]
