From owner-freebsd-net@FreeBSD.ORG Tue Oct 3 23:45:55 2006 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 11B4C16A412 for ; Tue, 3 Oct 2006 23:45:55 +0000 (UTC) (envelope-from thompsa@freebsd.org) Received: from grunt6.ihug.co.nz (grunt6.ihug.co.nz [203.109.254.46]) by mx1.FreeBSD.org (Postfix) with ESMTP id E76B143D5E for ; Tue, 3 Oct 2006 23:45:50 +0000 (GMT) (envelope-from thompsa@freebsd.org) Received: from 203-109-251-39.static.bliink.ihug.co.nz (heff.fud.org.nz) [203.109.251.39] by grunt6.ihug.co.nz with esmtp (Exim 3.35 #1 (Debian)) id 1GUtxM-0007tL-00; Wed, 04 Oct 2006 12:45:48 +1300 Received: by heff.fud.org.nz (Postfix, from userid 1001) id 5553A1CC27; Wed, 4 Oct 2006 12:45:46 +1300 (NZDT) Date: Wed, 4 Oct 2006 12:45:46 +1300 From: Andrew Thompson To: Dunc Message-ID: <20061003234546.GK21444@heff.fud.org.nz> References: <45223E43.6060906@lemonia.org> <20061003230147.GI21444@heff.fud.org.nz> <4522F2FF.5060808@lemonia.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <4522F2FF.5060808@lemonia.org> User-Agent: Mutt/1.5.11 Cc: freebsd-net@freebsd.org Subject: Re: Layer2 VPN X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 03 Oct 2006 23:45:55 -0000 On Wed, Oct 04, 2006 at 12:32:15AM +0100, Dunc wrote: > Andrew Thompson wrote: > >On Tue, Oct 03, 2006 at 11:41:07AM +0100, Dunc wrote: > > > >>Hi folks, > >> > >>I've been trying to create a layer2 VPN using FreeBSD boxes as the > >>gateways. > >> > >This should work fine with vlan headers, do you have any indication of > >where the problem is? you may need to get packet dumps at the sending > >and receiving ends. > > > I couldn't see why it wouldn't either. It's just an ethernet frame with > an extra field filled in AIUI > It may be because our bridge does not yet differentiate between vlans in its forwarding table, you can confirm this by clearing the learn flag on all the interfaces (ifconfig bridge0 -learn xxx0). Its not a proper solution of course. Andrew