From owner-freebsd-virtualization@freebsd.org  Mon Mar 20 22:41:43 2017
Return-Path: <owner-freebsd-virtualization@freebsd.org>
Delivered-To: freebsd-virtualization@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id C2EE3D14A37
 for <freebsd-virtualization@mailman.ysv.freebsd.org>;
 Mon, 20 Mar 2017 22:41:43 +0000 (UTC) (envelope-from vincent@up4.com)
Received: from smtp69.iad3a.emailsrvr.com (smtp69.iad3a.emailsrvr.com
 [173.203.187.69])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client did not present a certificate)
 by mx1.freebsd.org (Postfix) with ESMTPS id 9F505F71
 for <freebsd-virtualization@freebsd.org>; Mon, 20 Mar 2017 22:41:43 +0000 (UTC)
 (envelope-from vincent@up4.com)
Received: from smtp33.relay.iad3a.emailsrvr.com (localhost [127.0.0.1])
 by smtp33.relay.iad3a.emailsrvr.com (SMTP Server) with ESMTP id 4961354F9
 for <freebsd-virtualization@freebsd.org>; Mon, 20 Mar 2017 18:32:30 -0400 (EDT)
X-Auth-ID: vincent@up4.tv
Received: by smtp33.relay.iad3a.emailsrvr.com (Authenticated sender:
 vincent-AT-up4.tv) with ESMTPSA id 100BE5726
 for <freebsd-virtualization@freebsd.org>; Mon, 20 Mar 2017 18:32:30 -0400 (EDT)
X-Sender-Id: vincent@up4.tv
Received: from [192.168.1.10] ([UNAVAILABLE]. [69.55.244.81])
 (using TLSv1 with cipher DHE-RSA-AES256-SHA)
 by 0.0.0.0:465 (trex/5.7.12); Mon, 20 Mar 2017 18:32:30 -0400
Content-Type: text/plain; charset=utf-8
Mime-Version: 1.0 (Mac OS X Mail 9.3 \(3124\))
Subject: Re: tap on lagg ?
From: Vincent Olivier <vincent@up4.com>
In-Reply-To: <bcabffa1-0d86-f6cc-5f4e-fc91de149975@osfux.nl>
Date: Mon, 20 Mar 2017 18:32:29 -0400
Content-Transfer-Encoding: quoted-printable
Message-Id: <03551266-4EFD-4BAA-B200-932B62CCA988@up4.com>
References: <11A193E5-555F-4733-B192-49A5FEDCFDEA@up4.com>
 <66637AFA-D092-4EBB-B998-1BB2B2EE2CB4@up4.com>
 <1207dbb0-ec86-34fd-9a74-68d70b3b7892@osfux.nl>
 <41619106-86D6-40EF-B84E-DC98A1B54FCD@up4.com>
 <bcabffa1-0d86-f6cc-5f4e-fc91de149975@osfux.nl>
To: FreeBSD virtualization <freebsd-virtualization@freebsd.org>
X-Mailer: Apple Mail (2.3124)
X-BeenThere: freebsd-virtualization@freebsd.org
X-Mailman-Version: 2.1.23
Precedence: list
List-Id: "Discussion of various virtualization techniques FreeBSD supports."
 <freebsd-virtualization.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-virtualization>, 
 <mailto:freebsd-virtualization-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-virtualization/>
List-Post: <mailto:freebsd-virtualization@freebsd.org>
List-Help: <mailto:freebsd-virtualization-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-virtualization>, 
 <mailto:freebsd-virtualization-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 20 Mar 2017 22:41:43 -0000

Hello,

Sorry for waiting so long. I don=E2=80=99t know if i=E2=80=99m doing it =
right but I tried =C2=AB  -vlanhwtag =C2=BB all the interfaces and I=E2=80=
=99m still having problems. Namely (as I didn=E2=80=99t have this =
information before) that all participating interfaces in the bridge =
itself are in promiscuous mode (and, if that is related) I cannot ssh =
into the host machine from any bhyve virtual machine. My goal is to be =
able to ssh and mount host nfs exports onto the VMs. Doing a =C2=AB =
-promisc =C2=BB on all the interfaces won=E2=80=99t change anything. Can =
someone help? Pleas find below a ifconfig dump.

Regards,

Vincent


igb0: flags=3D8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> =
metric 0 mtu 1500
	=
options=3D6403ab<RXCSUM,TXCSUM,VLAN_MTU,JUMBO_MTU,VLAN_HWCSUM,TSO4,TSO6,VL=
AN_HWTSO,RXCSUM_IPV6,TXCSUM_IPV6>
	ether 54:a0:50:88:88:c6
	nd6 options=3D29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
	media: Ethernet 1000baseT <full-duplex>
	status: active
igb1: flags=3D8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> =
metric 0 mtu 1500
	=
options=3D6403ab<RXCSUM,TXCSUM,VLAN_MTU,JUMBO_MTU,VLAN_HWCSUM,TSO4,TSO6,VL=
AN_HWTSO,RXCSUM_IPV6,TXCSUM_IPV6>
	ether 54:a0:50:88:88:c6
	nd6 options=3D29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
	media: Ethernet 1000baseT <full-duplex>
	status: active
igb2: flags=3D8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> =
metric 0 mtu 1500
	=
options=3D6403ab<RXCSUM,TXCSUM,VLAN_MTU,JUMBO_MTU,VLAN_HWCSUM,TSO4,TSO6,VL=
AN_HWTSO,RXCSUM_IPV6,TXCSUM_IPV6>
	ether 54:a0:50:88:88:c6
	nd6 options=3D29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
	media: Ethernet 1000baseT <full-duplex>
	status: active
igb3: flags=3D8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> =
metric 0 mtu 1500
	=
options=3D6403ab<RXCSUM,TXCSUM,VLAN_MTU,JUMBO_MTU,VLAN_HWCSUM,TSO4,TSO6,VL=
AN_HWTSO,RXCSUM_IPV6,TXCSUM_IPV6>
	ether 54:a0:50:88:88:c6
	nd6 options=3D29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
	media: Ethernet 1000baseT <full-duplex>
	status: active
cxl0: flags=3D8802<BROADCAST,SIMPLEX,MULTICAST> metric 0 mtu 1500
	=
options=3Dec07bb<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING,JUMBO_MTU,VLAN_HWCS=
UM,TSO4,TSO6,LRO,VLAN_HWTSO,LINKSTATE,RXCSUM_IPV6,TXCSUM_IPV6>
	ether 00:07:43:37:47:70
	nd6 options=3D29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
	media: Ethernet none
	status: no carrier
cxl1: flags=3D8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu =
9000
	=
options=3Dec07bb<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING,JUMBO_MTU,VLAN_HWCS=
UM,TSO4,TSO6,LRO,VLAN_HWTSO,LINKSTATE,RXCSUM_IPV6,TXCSUM_IPV6>
	ether 00:07:43:37:47:78
	inet 192.168.11.5 netmask 0xffffff00 broadcast 192.168.11.255=20
	nd6 options=3D29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
	media: Ethernet 10Gbase-Twinax <full-duplex>
	status: active
lo0: flags=3D8049<UP,LOOPBACK,RUNNING,MULTICAST> metric 0 mtu 16384
	options=3D600003<RXCSUM,TXCSUM,RXCSUM_IPV6,TXCSUM_IPV6>
	inet6 ::1 prefixlen 128=20
	inet6 fe80::1%lo0 prefixlen 64 scopeid 0x7=20
	inet 127.0.0.1 netmask 0xff000000=20
	nd6 options=3D21<PERFORMNUD,AUTO_LINKLOCAL>
	groups: lo=20
lagg0: flags=3D8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> =
metric 0 mtu 1500
	=
options=3D6403ab<RXCSUM,TXCSUM,VLAN_MTU,JUMBO_MTU,VLAN_HWCSUM,TSO4,TSO6,VL=
AN_HWTSO,RXCSUM_IPV6,TXCSUM_IPV6>
	ether 54:a0:50:88:88:c6
	inet 192.168.1.23 netmask 0xffffff00 broadcast 192.168.1.255=20
	nd6 options=3D29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
	media: Ethernet autoselect
	status: active
	groups: lagg=20
	laggproto lacp lagghash l2,l3,l4
	laggport: igb0 flags=3D1c<ACTIVE,COLLECTING,DISTRIBUTING>
	laggport: igb1 flags=3D1c<ACTIVE,COLLECTING,DISTRIBUTING>
	laggport: igb2 flags=3D1c<ACTIVE,COLLECTING,DISTRIBUTING>
	laggport: igb3 flags=3D0<>
bridge0: flags=3D8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 =
mtu 1500
	description: vm-lan1g
	ether 02:f7:d6:01:1a:00
	nd6 options=3D1<PERFORMNUD>
	groups: bridge=20
	id 00:00:00:00:00:00 priority 32768 hellotime 2 fwddelay 15
	maxage 20 holdcnt 6 proto rstp maxaddr 2000 timeout 1200
	root id 00:00:00:00:00:00 priority 32768 ifcost 0 port 0
	member: tap1 flags=3D143<LEARNING,DISCOVER,AUTOEDGE,AUTOPTP>
	        ifmaxaddr 0 port 11 priority 128 path cost 2000000
	member: tap0 flags=3D143<LEARNING,DISCOVER,AUTOEDGE,AUTOPTP>
	        ifmaxaddr 0 port 10 priority 128 path cost 2000000
	member: lagg0 flags=3D143<LEARNING,DISCOVER,AUTOEDGE,AUTOPTP>
	        ifmaxaddr 0 port 8 priority 128 path cost 6666
tap0: flags=3D8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> =
metric 0 mtu 1500
	description: vmnet-unifi-0-lan1g
	options=3D80000<LINKSTATE>
	ether 00:bd:b9:51:fa:00
	nd6 options=3D29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
	media: Ethernet autoselect
	status: active
	groups: tap=20
	Opened by PID 1523
tap1: flags=3D8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> =
metric 0 mtu 1500
	description: vmnet-docker-0-lan1g
	options=3D80000<LINKSTATE>
	ether 00:bd:41:36:d7:01
	nd6 options=3D29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
	media: Ethernet autoselect
	status: active
	groups: tap=20
	Opened by PID 16378

> Le 7 f=C3=A9vr. 2017 =C3=A0 03:53, Ruben <mail@osfux.nl> a =C3=A9crit =
:
>=20
> Hi Vincent,
>=20
>> Didn=E2=80=99t try it it with disabling the tso/lro/vlanhwtagging =
features. Will try again with those disabled.
>>=20
>>=20
>>> I have no experience in comparable setups without the vlan "layer" =
though.
>>=20
>> My setup didn=E2=80=99t involve vlans, only this: tap <=E2=80=94> =
bridge <=E2=80=94> lagg <=E2=80=94> igb0, igb1, igb2, igb3
>>=20
>> Do you think that could be it? I have no need for a vlan here, =
though=E2=80=A6
>>=20
>>=20
>>> What seems to be your predicament?
>> The tap would fail to =C2=AB up =C2=BB with an error message (that I =
forgot to note).
>=20
> I haven't had any trouble "upping" taps (even with the offloading
> features enabled) but since I mostly use the
>=20
> net.link.tap.up_on_open=3D1
>=20
> sysctl setting I can't say I have manually upped them a lot (and =
didn't
> look at logfiles that much since stuff just worked).
>=20
>=20
>>=20
>>=20
>> I will try to do it again with the aforementioned features disabled =
(but without a vlan layer) and report back here.
>=20
> Im curious about your findings!
>=20
> Regards,
>=20
> Ruben