Re: bridge new vlan and iftagged "none"

In reply to: Ronald Klop : "Re: bridge new vlan and iftagged "none""
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: Lexi Winter <ivy_at_freebsd.org>
Date: Thu, 04 Sep 2025 12:35:34 UTC

Ronald Klop:
> NB: I don't know if my setup fits your setup in relation to where
> "host" traffic originates. My bridge does not have an IP address
> itself.

in this case the problem i identified probably doesn't affect you, but
it would still be useful to know that the changes don't break your
configuration.

> I prefer to add an epair for local traffic.

this is a perfectly reasonable configuration, but if you're using VLAN
filtering, have you considered using SVIs instead?  i.e.,

	ifconfig bridge0.1 create	# interface on vlan 1
	ifconfig bridge0.3 create	# interface on vlan 3

this gives you an interface attached to a specific VLAN on the bridge,
meaning you can assign host addresses to this interface (which is a
vlan(4)) instead of putting the addresses on the bridge itself.

> I like this setup as IMHO it mimics more how a host is connected to a switch.

the SVI is more like how you would configure this on the switch itself,
so it's up to you, but it does save having to create both epair and vlan
interfaces to communicate on different vlans on the bridge.