CFR: bridge locking
Daniel C. Sobral
dcs at tcoip.com.br
Thu Aug 21 05:22:25 PDT 2003
Maxim Konovalov wrote:
> [ CC: trimmed ]
>
> On Wed, 20 Aug 2003, 14:52-0300, Daniel C. Sobral wrote:
>
> [...]
>
>>If you get bridge to send/receive packets to/from vlan interfaces
>>attached to them, I'll be forever grateful.
>>
>>I've been trying to configure a setup where a firewall is connected to
>>redundant switches, but no solution I found could handle the vlan
>>attachments. :-(
>
>
> http://people.freebsd.org/~maxim/diff/bridge.diff
>
> Let me know if it helps.
It didn't.
The test I'm doing is the following:
kldload bridge
sysctl net.link.ether.bridge=1
sysctl net.link.ether.bridge_cfg="fxp1 fxp3"
ifconfig fxp1 up
ifconfig fxp3 up
ifconfig vlan0 create
ifconfig vlan0 vlan 999 vlandev fxp1
ifconfig vlan0 200.220.254.190/26
On the switch side, the port connected to fxp1 is down and the one
connected to fxp3 is up. Next, I ping all around. What I see with your
patch is:
ARP packets received on fxp3 go to fxp1 but not vlan0.
ARP packets sent through vlan0 go to fxp1 but not fxp3.
This is 4.7-RELEASE. The patch did not apply cleanly, but I went through
it and fixed all failed chunks.
--
Daniel C. Sobral (8-DCS)
Gerencia de Operacoes
Divisao de Comunicacao de Dados
Coordenacao de Seguranca
VIVO Centro Oeste Norte
Fones: 55-61-313-7654/Cel: 55-61-9618-0904
E-mail: Daniel.Capo at tco.net.br
Daniel.Sobral at tcoip.com.br
dcs at tcoip.com.br
Outros:
dcs at newsguy.com
dcs at freebsd.org
capo at notorious.bsdconspiracy.net
As of next Thursday, UNIX will be flushed in favor of TOPS-10.
Please update your programs.
More information about the freebsd-net
mailing list