arp-proxy
Brian Candler
B.Candler at pobox.com
Thu Nov 10 04:49:12 PST 2005
On Wed, Nov 09, 2005 at 02:06:28PM +0100, Jon Otterholm wrote:
> I want to create a bridge-interface (if_bridge) with a bunch (500+) of
> sub-interfaces (vlan) as members. All members of the bridge should be
> able to "talk" to each other but MAC-addresses must be isolated to their
> "own" vlan.
That doesn't really make any sense to me, can you give a concrete example of
how it should behave? And/or a higher-level description of what it is you're
actually trying to achieve?
Note that if the VLANs are *bridged* together then:
(1) they form a single broadcast domain. A broadcast packet on any one VLAN
will be forwarded to all other VLANs
(2) a unicast packet to MAC address XX:XX:XX:XX:XX:XX will be forwarded only
to the VLAN which has that node, as long as the forwarding table knows
where it is (if not, it will be forwarded to all VLANs)
So bridging VLANs really just collapses them back into a single LAN, which
means you shouldn't have set up any VLANs in the first place :-(
More information about the freebsd-net
mailing list