[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Bridging across VLANs?

To: tech@openbsd.org
Subject: Re: Bridging across VLANs?
From: Mathieu Sauve-Frankel <m.sauve@secureops.com>
Date: Thu, 7 Aug 2003 10:44:14 -0400
Content-Disposition: inline
References: <200308061706.20444.sascha@c4inet.net>
User-Agent: Mutt/1.4.1i

On Wed, Aug 06, 2003 at 05:06:19PM +0100 Sascha Luck hacked thusly:
> Hi all,
> 
> I have 2 VLANs on a SuperstackII switch and I am trying to bridge across these
> with an OpenBSD 3.3 machine (MAC filtering is the intended use).
> 
> The problem is, I can't seem to get the 2 VLANs to see each other. What am I 
> missing here? config files as follows:
> 
> /etc/hostname.xl[0-3]
> up
> 
> /etc/bridgename.bridge0
> add xl0
> add xl1
> add xl2
> add xl3
> maxaddr 256
> up
> 
> This should work, right?

No. 
I really don't see the point of creating 2 separate VLANs on
one switch fabric and then bridging them back together 
with a separate device. 

This completely defeats the purpose of having the
VLANs in the first place. 

I think you need to learn how VLANs actually work.
vlan(4) might be a good place to start.

http://standards.ieee.org/getieee802/802.1.html

If you are trying to filter traffic travelling between two VLANs
then I suggest that you configure each VLAN as a separate IP network.
Configure your OpenBSD machine as a _router_ and use PF to filter your
traffic at the network layer. 

-- 
Mathieu Sauve-Frankel	| Quotation, n: The act of repeating erroneously 
Network Administrator	| the words of another.
m.sauve@secureops.com	| Ambrose Bierce

Follow-Ups:
- Re: Bridging across VLANs?
  - From: "Peter Galbavy" <peter.galbavy@knowtion.net>

References:
- Bridging across VLANs?
  - From: Sascha Luck <sascha@c4inet.net>

Prev by Date: easy-to-use
Next by Date: Re: Bridging across VLANs?
Prev by thread: Bridging across VLANs?
Next by thread: Re: Bridging across VLANs?
Index(es):
- Date
- Thread