From owner-freebsd-net@FreeBSD.ORG  Mon Aug 23 16:34:52 2010
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 28CDB1065693
	for <freebsd-net@freebsd.org>; Mon, 23 Aug 2010 16:34:52 +0000 (UTC)
	(envelope-from xavier.humbert@groumpf.org)
Received: from smtp1-g21.free.fr (smtp1-g21.free.fr [212.27.42.1])
	by mx1.freebsd.org (Postfix) with ESMTP id B3FDF8FC0A
	for <freebsd-net@freebsd.org>; Mon, 23 Aug 2010 16:34:49 +0000 (UTC)
Received: from valinor.groumpf.org (unknown [82.228.31.93])
	by smtp1-g21.free.fr (Postfix) with ESMTP id 8794F940041
	for <freebsd-net@freebsd.org>; Mon, 23 Aug 2010 18:34:44 +0200 (CEST)
Received: from [192.168.100.11] (enterprise.groumpf.org [192.168.100.11])
	by valinor.groumpf.org (Postfix) with ESMTP id 0742F451E6;
	Mon, 23 Aug 2010 18:34:43 +0200 (CEST)
To: mike@sentex.net (Mike Tancsa), freebsd-net@freebsd.org
In-Reply-To: <201008201711.o7KHBnfT011714@lava.sentex.ca>
From: xavier.humbert@groumpf.org (Xavier HUMBERT)
Date: Mon, 23 Aug 2010 18:34:43 +0200
Message-ID: <1jnowhj.1pd0hjz1mufqimM%xavier.humbert@groumpf.org>
Organization: Tibet Libre
User-Agent: MacSOUP/2.8.3 (Mac OS X version 10.6.4 (x86))
Cc: 
Subject: Re: Inter-vlan routing problem
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 23 Aug 2010 16:34:52 -0000

Aleksandr A Babaylov <"."@babolo.ru> wrote:

> I had similar prolem in 8.0-STABLE. Try
> 
> sysctl net.inet.flowtable.enable=0

Tried it with no success. Tks anyway


Mike Tancsa <mike@sentex.net> wrote:

> I dont understand, why is 10.75.2.1 going out your default interface 
> ? It should look for packets on the same subnet that the vlan3 interface is on

Errrr.... According to the interfaces status and the routing table, this is the
case, or do I misunderstand your question ?

> Can you do an
> arp -na
> and
> netstat -Wnra
> 

[root@gateway ~]# arp -na
? (10.75.3.251) at 00:e0:81:2d:62:3e on vlan4 permanent [vlan]
? (10.75.3.254) at 08:00:71:03:f1:0f on vlan4 expires in 1192 seconds [vlan]
? (10.75.3.252) at 00:1a:a0:12:9a:a1 on vlan4 expires in 850 seconds [vlan]
? (10.75.2.1) at 00:12:ef:42:3c:f3 on vlan3 expires in 848 seconds [vlan]
? (10.75.2.5) at 00:1b:25:5f:58:5d on vlan3 expires in 432 seconds [vlan]
? (10.75.2.251) at 00:e0:81:2d:62:3e on vlan3 permanent [vlan]
? (192.168.0.251) at 00:e0:81:2d:62:3e on vlan2 permanent [vlan]
? (192.168.0.254) at 00:0f:24:7e:52:eb on vlan2 expires in 848 seconds [vlan]
? (172.16.214.104) at 00:0d:93:45:c2:92 on vlan1 expires in 1200 seconds [vlan]
? (172.16.214.102) at 00:1e:c2:1c:de:37 on vlan1 expires in 1187 seconds [vlan]
? (172.16.214.251) at 00:e0:81:2d:62:3e on vlan1 permanent [vlan]
? (192.168.1.10) at 00:1b:ba:ea:e4:7f on vlan0 expires in 849 seconds [vlan]
? (192.168.1.13) at 00:1d:af:ec:0c:00 on vlan0 expires in 856 seconds [vlan]
? (192.168.1.4) at 00:1a:8f:4b:3f:df on vlan0 expires in 857 seconds [vlan]
? (192.168.1.7) at 00:1a:8f:4b:44:3f on vlan0 expires in 860 seconds [vlan]
? (192.168.1.251) at 00:e0:81:2d:62:3e on vlan0 permanent [vlan]
[root@gateway ~]# netstat -Wnra
Routing tables

Internet:
Destination        Gateway            Flags    Refs      Use    Mtu Netif Expire
default            10.75.2.1          UGS         0    10364   1500    vlan3
10.75.2.0/24       link#12            U           0      231   1500    vlan3
10.75.2.251        link#12            UHS         0        0  16384      lo0
10.75.3.0/24       link#13            U           0      216   1500    vlan4
10.75.3.251        link#13            UHS         0        0  16384      lo0
127.0.0.1          link#8             UH          0    89258  16384      lo0
172.16.214.0/24    link#10            U           0    43971   1500    vlan1
172.16.214.251     link#10            UHS         0        0  16384      lo0
192.168.0.0/24     link#11            U           0     3491   1500    vlan2
192.168.0.251      link#11            UHS         0        0  16384      lo0
192.168.1.0/24     link#9             U           0     1696   1500    vlan0
192.168.1.251      link#9             UHS         0    51084  16384      lo0


> On the nortel switch, are you sure you have it on the equiv of a 
> "trunk" port? Is there a way to see what MAC addresses the switch 
> sees as part of what VLAN ?

No, there is no "trunk" ports. The term trunk is used by Nortel for MLT. And,
precisely, that what's "show mac-address-table" displays : the MLT table. The
port I'm connected to is simply a port shared by all Vlans.

Thanks for helping

-- 
XAv
In your pomp and all your glory you're a poorer man than me,
as you lick the boots of death born out of fear.
(Jethro Tull)