From owner-freebsd-net@FreeBSD.ORG Wed Jan 30 14:10:18 2008 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 4C7E216A41B for ; Wed, 30 Jan 2008 14:10:18 +0000 (UTC) (envelope-from biancalana@gmail.com) Received: from py-out-1112.google.com (py-out-1112.google.com [64.233.166.180]) by mx1.freebsd.org (Postfix) with ESMTP id 9829C13C457 for ; Wed, 30 Jan 2008 14:10:17 +0000 (UTC) (envelope-from biancalana@gmail.com) Received: by py-out-1112.google.com with SMTP id u52so361013pyb.10 for ; Wed, 30 Jan 2008 06:10:16 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; bh=MmscofaQQbI7SpkSnQ9i11wc4ov7LFc4qqo7XbDnpCE=; b=vc9+heyVj8fbWn7tJky7AbOXU7RrVkxkj8fLDtsw07OK7DjpISgUvDBhvYBI6NQSoUH6W2mHoN5GMuu/FHsTwmtxJw/7fBYzUT60RiBxiA6S745ipZ2FCwz6TXei5NUdVC9enOWwXGXkIiQvDzBlYrtQDHcj1y7n8JbhGHhtqTg= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=CEcIic53NtiIVaT67vyBNqY50ndAZHdJiXlGxo5NWh7vJ2RpGndyXjFqnottF5Z9TuldIT5Nugub0Me/0Zc9bqNGw1gpP+hR/ILoiKzrCVZ+rO0MS/1zKrYE9JzrQh3Jto/ieZWcHO2NlxwBJBtkHIewVh0FSKc/l3dv4Y+oHts= Received: by 10.64.199.2 with SMTP id w2mr1718730qbf.11.1201702216291; Wed, 30 Jan 2008 06:10:16 -0800 (PST) Received: by 10.64.184.9 with HTTP; Wed, 30 Jan 2008 06:10:16 -0800 (PST) Message-ID: <8e10486b0801300610jf0b3f88tc3c06dab76268917@mail.gmail.com> Date: Wed, 30 Jan 2008 12:10:16 -0200 From: "Alexandre Biancalana" To: "Tom Judge" In-Reply-To: <47A07525.9080201@tomjudge.com> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <8e10486b0801290439y77568aeby6c6dbfbb5132f61d@mail.gmail.com> <479F4C3C.5070801@tomjudge.com> <8e10486b0801290842l5d65bb3fk8a02d731c3ad1b91@mail.gmail.com> <479F7C7A.5080605@tomjudge.com> <8e10486b0801291438n51ca5bcdue2d7ef531ffefaae@mail.gmail.com> <47A07525.9080201@tomjudge.com> Cc: freebsd-net@freebsd.org Subject: Re: VLAN problems X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 30 Jan 2008 14:10:18 -0000 On 1/30/08, Tom Judge wrote: .... > >> Do you have any error messages on the console in dmesg? ('cannot pad > >> short frame', 'unable to prepend vlan header' for example). > > > > no :( > > Sorry I'm fresh out of ideas now... Unless you could be should of ram > what does netstat -m look like? Also you could look at changing > if_vlan.c to print the error number of the error if IFQ_HANDOFF fails. Me too... This should be much simple... I can't imagine why so much trouble in this configuration, I have a similar setup with linux :( and have no problem at all... # netstat -m 938/2347/3285 mbufs in use (current/cache/total) 936/1860/2796/32768 mbuf clusters in use (current/cache/total/max) 936/1860 mbuf+clusters out of packet secondary zone in use (current/cache) 0/0/0/0 4k (page size) jumbo clusters in use (current/cache/total/max) 0/0/0/0 9k jumbo clusters in use (current/cache/total/max) 0/0/0/0 16k jumbo clusters in use (current/cache/total/max) 2109K/4306K/6415K bytes allocated to network (current/cache/total) 0/3/0 requests for mbufs denied (mbufs/clusters/mbuf+clusters) 0/0/0 requests for jumbo clusters denied (4k/9k/16k) 0/7/4544 sfbufs in use (current/peak/max) 0 requests for sfbufs denied 0 requests for sfbufs delayed 0 requests for I/O initiated by sendfile 229 calls to protocol drain routines Is the vlan solution designed to work with multiple concurrent 100M networks using the same Gbit interface ? or Am I thinking in a wrong ? I want to have a central firewall in my network, filtering ALL the traffic between ALL internal networks and external links. I already done that using physical nics, ( I had one machine with 8 nic) but now I have one machine with 2 gigabit nics and want to configure multiple vlan on top this for the internal networks and external links. Am I wrong to think that this should work ??