From owner-freebsd-hackers@FreeBSD.ORG  Sun Jul 25 11:38:53 2004
Return-Path: <owner-freebsd-hackers@FreeBSD.ORG>
Delivered-To: freebsd-hackers@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id BBDB516A4CE
	for <freebsd-hackers@freebsd.org>;
	Sun, 25 Jul 2004 11:38:53 +0000 (GMT)
Received: from mproxy.gmail.com (rproxy.gmail.com [64.233.170.199])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 7091443D4C
	for <freebsd-hackers@freebsd.org>;
	Sun, 25 Jul 2004 11:38:53 +0000 (GMT)
	(envelope-from emilholt@gmail.com)
Received: by mproxy.gmail.com with SMTP id 79so48008rnl
	for <freebsd-hackers@freebsd.org>;
	Sun, 25 Jul 2004 04:38:52 -0700 (PDT)
Received: by 10.38.89.38 with SMTP id m38mr396066rnb;
        Sun, 25 Jul 2004 04:38:52 -0700 (PDT)
Message-ID: <eff9bc8b040725043852c866f7@mail.gmail.com>
Date: Sun, 25 Jul 2004 13:38:52 +0200
From: emil <emilholt@gmail.com>
To: freebsd-hackers@freebsd.org
In-Reply-To: <eff9bc8b040724033262b99bf2@mail.gmail.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
References: <eff9bc8b040723044739c5a026@mail.gmail.com>
	<eff9bc8b040724033262b99bf2@mail.gmail.com>
X-Mailman-Approved-At: Sun, 25 Jul 2004 13:29:15 +0000
Subject: Fwd: 801.Q VLAN questions (potential bug?)
X-BeenThere: freebsd-hackers@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Technical Discussions relating to FreeBSD
	<freebsd-hackers.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>,
	<mailto:freebsd-hackers-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-hackers>
List-Post: <mailto:freebsd-hackers@freebsd.org>
List-Help: <mailto:freebsd-hackers-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>,
	<mailto:freebsd-hackers-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 25 Jul 2004 11:38:53 -0000

I don't know if this is more of a -hackers question or not, but I've
come across something weird when trying to resolve the problem stated
below;
There's actually one single frame being sent across the network with a
valid dot1q vlan tag,
and that is being transmitted when a client signs on to the WLAN.
Then all following traffic shows up as without any vlan tags.
Is this a bug with IOS/FreeBSD 5.2.1 or just some other weirdness?

regards
/emil

---------- Forwarded message ----------
From: emil <emilholt@gmail.com>
Date: Fri, 23 Jul 2004 13:47:39 +0200
Subject: 801.Q VLAN questions
To: freebsd-questions@freebsd.org

Hello,
I'm currently in the middle of setting up a couple of Cisco Aironet
1100 802.11b/g access points.
I've configured the APs so that they tag ethernet frames depending on
what SSID is being used by the WLAN users.
(One public and one private SSID).
Behind the APs I've set up a FreeBSD 5.2.1p9 box with pf
(/usr/ports/security/pf) installed.

The FBSD machine currently has 3 intel (fxp) ethernet interfaces:
fxp0, management interface.
fxp1 interface connected to a small dumb switch which the APs are
hooked up to, currently no IP adress configured.
fxp2 interface connected to the "net", currently no IP adress configured.

Then I also have 2 vlan interfaces with the respective VLAN ID's set,
they use fxp1 as their parent interface.

What I want to do is to bridge fxp1 and fxp2 and then have pf filter
the traffic on the vlans.

However, the FBSD machine seems to completely ignore the 802.1Q tags,
and not separate the traffic coming to fxp1.

So does the hive mind have any ideas of what to do?

TIA