bridging VLAN interfaces and STP

Peter Jeremy peter at rulingia.com
Sat Sep 1 21:55:32 UTC 2012 

Sorry for the delay, Real Life™ intervened.

On 2012-Aug-27 07:45:41 -0400, "Dustin J. Mitchell" <dustin at v.igoro.us> wrote:
>On Mon, Aug 27, 2012 at 5:49 AM, Peter Jeremy <peter at rulingia.com> wrote:
>> On 2012-Aug-26 08:12:51 -0400, "Dustin J. Mitchell" <dustin at v.igoro.us> wrote:
>>>On Sat, Aug 25, 2012 at 7:04 PM, Dustin J. Mitchell <dustin at v.igoro.us> wrote:
>>>> Hey folks.  I'm trying to set up a system with one 802.1q-tagged
>>>> upstream, and a few untagged interfaces.  So I'd like to bridge the
>>>> vlan(4) interfaces on vr1 to specific other interfaces.
...
>bridge10: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
>        ether 02:f4:a1:63:5a:0a
>        nd6 options=21<PERFORMNUD,AUTO_LINKLOCAL>
>        id 00:00:00:00:00:00 priority 32768 hellotime 2 fwddelay 15
>        maxage 20 holdcnt 6 proto rstp maxaddr 100 timeout 1200
>        root id 00:00:00:00:00:00 priority 32768 ifcost 0 port 0
>        member: vr3 flags=143<LEARNING,DISCOVER,AUTOEDGE,AUTOPTP>
>                ifmaxaddr 0 port 4 priority 128 path cost 55
>        member: vr2 flags=143<LEARNING,DISCOVER,AUTOEDGE,AUTOPTP>
>                ifmaxaddr 0 port 3 priority 128 path cost 55
>        member: vr1.10 flags=143<LEARNING,DISCOVER,AUTOEDGE,AUTOPTP>
>                ifmaxaddr 0 port 9 priority 128 path cost 200000
>bridge20: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
>        ether 02:f4:a1:63:5a:14
>        nd6 options=21<PERFORMNUD,AUTO_LINKLOCAL>
>        id 00:00:00:00:00:00 priority 32768 hellotime 2 fwddelay 15
>        maxage 20 holdcnt 6 proto rstp maxaddr 100 timeout 1200
>        root id 00:00:00:00:00:00 priority 32768 ifcost 0 port 0
>        member: vr0 flags=143<LEARNING,DISCOVER,AUTOEDGE,AUTOPTP>
>                ifmaxaddr 0 port 1 priority 128 path cost 55
>        member: vr1.20 flags=143<LEARNING,DISCOVER,AUTOEDGE,AUTOPTP>
>                ifmaxaddr 0 port 10 priority 128 path cost 200000

That looks like RSTP is enabled on both bridge10 and bridge20 but is
not seeing incoming [R]STP packets.  Are you sure the switch connected
to vr1 is configured with per-VLAN STP (this is probably not the
switch default).

Have you tried running tcpdump on vr1 and checked that you are seeing
STP packets within the VLANs.

>gateway_enable="YES"
>firewall_enable="YES"
>firewall_type="OPEN"

gateway_enable="YES" will let the system route packets between bridge10
and bridge20 but shouldn't have any effect on bridging packets between
(eg) vr1.10, vr2 & vr3.

-- 
Peter Jeremy
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 196 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-net/attachments/20120901/f5b4b8d1/attachment.pgp

More information about the freebsd-net mailing list