Having issues with bridging vlan and em in 5.4-STABLE

Jonathan Feally vulture at netvulture.com
Mon Oct 10 23:39:51 PDT 2005 

After further testing I have found 2 issues pertaining to my problem.

a. ) MAC on returning packets from box are that of the vlan199 parent 
interface's instead of that of the other em0 interface.
b.) The dns responses are leaving the box on the vlan, but the dst port 
number is getting scrambled in the process. tcpdump on the box shows in 
and out on the same ports, but the host shows out on one and in on 
something else.

Is this an issue with the bridging code, the vlan code, or both??

I have em0 and em1 set with the following
flags UP, BROADCAST, RUNNING, PROMISC, SIMPLEX, MULTICAST
options:  RXCSUM, TXCSUM, VLAN_MTU, POLLING

vlan199 flags UP, BROADCAST, RUNNING, PROMISC, SIMPLEX, MULTICAST
vlan199 has no options.

Anybody else run into this problem? I am running 5-STABLE as of today.

-Jon

Jonathan Feally wrote:

> I'm trying to setup a machine that will be both routing traffic and 
> bridging 2 segments of one network with ipfw processing on that 
> bridged network. The routing seems to be OK and bridging is also OK 
> from Side to side, however when trying to talk to the IP of the 
> machine from another machine on the bridged network i am seeing packet 
> loss.
>
> Setup
>
>
> em0   x.y.199.254 connected to segment with outgoing router at 
> x.y.199.1. Lets call this Side A
> em1   no IP. Internal interface with all the vlans attached to it
> vlan199  no IP configured as tagged vlan 199 attached to em1. We'll 
> call this Side B.
> 10 more vlans configured with IP's for the routing portion. No packet 
> loss in the routed scenario.
>
> em0 and vlan199 are bridged
>
> Host at x.y.199.101 connected to Side B can reach all hosts connected 
> to Side A except for the bridging machine
> Using nslookup on .101 to .254 as a test, tcpdump on vlan199 shows 
> packets in from .101 to .254 and the returning packets from .254 to 
> .101. em0 does not show any packets in or out. However packets are not 
> being returned to the .101 host.
> IPFW is not a culprit here as I have tried it with ipfw add 1 allow ip 
> from any to any.
>
> Moving the IP of .254 from em0 to vlan199 results in the same packet 
> loss execpt on the Side A now.
>
> Not all traffic from Side B to .254 and back is lost. dhcp and icmp do 
> seem to be working. I am leaning towards an issue with BIND, however 
> it does bother me that tcpdump sees packets leaving vlan199.
>
> Anybody have any ideas?? Thanks in advance.
>
> -Jon
> _______________________________________________
> freebsd-net at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-net
> To unsubscribe, send any mail to "freebsd-net-unsubscribe at freebsd.org"

More information about the freebsd-net mailing list