Re: how to bridge "native" vlan?
- In reply to: Benoit Chesneau : "Re: how to bridge "native" vlan?"
- Go to: [ bottom of page ] [ top of archives ] [ this month ]
Date: Sat, 23 Apr 2022 09:01:05 UTC
You can bridge both untagged frames (native vlan 1) and tagged frames so basically "ALL" frames using if_bridge. don't forget to put both interfaces to promiscuous mode. If you don't enable the promiscuous mode, you can not receive VLAN tagged frames because of "vlanhwfilter" feature of NIC. ifconfig em0 promisc up ifconfig em1 promisc up ifconfig bridge0 create ifconfig bridge0 addm em0 addm em1 up thats all Regards, Özkan KIRIK ePati Cyber Security Benoit Chesneau <benoitc@enki-multimedia.eu>, 23 Nis 2022 Cmt, 11:13 tarihinde şunu yazdı: > > I've found this old ticket that let think it could be supported by ng_vlan : > https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=224961#c3 > > But I'm not sure if it really works without some work around: regarding next comment : > > "Ethernet frames received without vlan tag will be dropped by this comple schema but it is possible to process them too by inserting ng_tee node into the graph" > > Does anyone have experience with it? > > > Benoît Chesneau > Sent with ProtonMail secure email. > ------- Original Message ------- > On Thursday, April 21st, 2022 at 14:11, Patrick M. Hausen <hausen@punkt.de> wrote: > > > > Hello, > > > > > Am 21.04.2022 um 11:29 schrieb Benoit Chesneau benoitc@enki-multimedia.eu: > > > I have an interface on which multiple vlans are connected. I would like to bridge the vlan 100 and 200 but also have a bridge for the "native" vlan 1. I Can setup a bridge for vlan 100 and 200 the way below I think but how to create a bridge for the "native" vlan? > > > > > > I don't have any experience with netgraph but I do know that > > you cannot do that with if_bridge(4). If you make the physical > > interface the member of a bridge, you cannot use additional > > VLANs on that interface, anymore. > > > > Does anybody know if the same restriction applies to ng_bridge(4)? > > > > Kind regards, > > Patrick > > -- > > punkt.de GmbH > > Patrick M. Hausen > > .infrastructure > > > > Kaiserallee 13a > > 76133 Karlsruhe > > > > Tel. +49 721 9109500 > > > > https://infrastructure.punkt.de > > info@punkt.de > > > > AG Mannheim 108285 > > Geschäftsführer: Jürgen Egeling, Daniel Lienert, Fabian Stein >