From owner-freebsd-net@FreeBSD.ORG Tue Jul 29 13:06:29 2014 Return-Path: Delivered-To: freebsd-net@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 7735D263 for ; Tue, 29 Jul 2014 13:06:29 +0000 (UTC) Received: from mail.tdx.com (mail.tdx.com [62.13.128.18]) by mx1.freebsd.org (Postfix) with ESMTP id 208F22C72 for ; Tue, 29 Jul 2014 13:06:28 +0000 (UTC) Received: from Mail-PC.tdx.co.uk (storm.tdx.co.uk [62.13.130.251]) (authenticated bits=0) by mail.tdx.com (8.14.3/8.14.3/) with ESMTP id s6TD2Gdk058980 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO) for ; Tue, 29 Jul 2014 14:02:17 +0100 (BST) Date: Tue, 29 Jul 2014 14:02:16 +0100 From: Karl Pielorz To: freebsd-net@FreeBSD.org Subject: FreeBSD 10.0-R connected to Cisco switch (in 'trunk' mode with native VLAN) - doesn't work? Message-ID: X-Mailer: Mulberry/4.0.8 (Win32) MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 29 Jul 2014 13:06:29 -0000 Hi, I've got a Cisco 3750X switch a colleague is setting up. We've got this configured - but it doesn't seem to talk nicely to our FBSD 10.0-R box, looks like some kind of VLAN issue (but shouldn't be). Switch side - the port is configured with: switchport trunk encapsulation dot1q switchport trunk native vlan 2000 switchport trunk allowed vlan 2000,2200-2300 switchport mode trunk >From what I understand this tells the Cisco to present all the 'allowed' VLAN's to the port, and that untagged traffic traversing the port should be sent/received as VLAN 2000? So, we connect our BSD box and do: ifconfig bge0 inet 192.168.100.10 netmask 255.255.255.0 But we can't ping another host connected on the network, on '192.168.100.1'. The above ifconfig uses no VLAN spec, but that should be covered by the 'trunk native vlan'? The only way we can fix this - is to take the system 'as-is' and change the Cisco port to: switchport mode access switchport access vlan 2000 This sets the port to be 1 VLAN only, and sets that VLAN to VLAN 2000 - so traffic traversing the port will be untagged, but carried as part of VLAN 2000. I've been told in theory the bottom config should be the 'same' as the previous one (i.e. untagged traffic is treated as VLAN 2000). But with the top config - the BSD box can't connect anywhere, with the bottom config (with the BSD box setup the same) - it can. Presuming someone here has used Cisco kit with FreeBSD - can anyone see why the top config doesn't work? - The guy setting up the switches says he always uses the top config - and hasn't had an issue with it, but this obviously doesn't work with our FreeBSD boxes. I would say we'd try it with a different O/S but at the moment, all the kit on 'our' side is FreeBSD based... Cheers, -Karl