From nobody Thu Sep 4 12:35:34 2025 X-Original-To: net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4cHf8T4jhyz65wJQ for ; Thu, 04 Sep 2025 12:35:37 +0000 (UTC) (envelope-from ivy@freebsd.org) Received: from smtp.freebsd.org (smtp.freebsd.org [96.47.72.83]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "smtp.freebsd.org", Issuer "R13" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4cHf8T3vrDz3GZR; Thu, 04 Sep 2025 12:35:37 +0000 (UTC) (envelope-from ivy@freebsd.org) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1756989337; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version:content-type:content-type: in-reply-to:in-reply-to:references:references; bh=nvcS6wunSdpscc5KCCiHj/wwzEZTBYuUTFU+XSU7Z3E=; b=R/9ZzFU7xVKcSYOjB/VagBMz56mbGJxpUTHhmQbSt5AuUUdqfgmTKSb9ifBoa09yVSg1wJ 2LUUiLlUOdlphom7w0DxOcNzVwYq3vVWzHIUuNk/HJfAjIPLYEUtE/21VJKvzEuYF2JIAV 2URLbs9jIror9skFr3h4iMVcjxett5kUGxyzi5IYkbwlE4EYRDca/hvZWqsyZ41cU403JK L4uIFkX90hyfhsojTUsH/u5b3bMET8o0EfKdhF6zvM+MrOWHK6teCdQCqTm1fztoCwVyeX 3iC8V2ktYX+4qnPne7rNfStpwSbVeSK1aX2KgmqySi+BTiI9jozotEDrLKWReQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1756989337; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version:content-type:content-type: in-reply-to:in-reply-to:references:references; bh=nvcS6wunSdpscc5KCCiHj/wwzEZTBYuUTFU+XSU7Z3E=; b=fTRIByOq7vwpnaoW65n+x/sCdz38CphLobGLEv55b6tgePdInUSAah9nZH3G34EKI/sJlX 9v8ZfvAYhvonjJTXatlE8UyBPalTgwrJSilp3KYo1X0/4roMhpoCb/fN0Zh/43Lbc9uG5A 1PPo+qIsT+LQowJIihgnAY5Hzm/QWGmQ0q0t+Bq2DxzE8pIT3fJSpwicKkpLrQjVKTagGI yEnoKBBUR3Rqxp8SDOA9cNqchREgapAvqpgTV/vYgvbI7BlRl7PgvEEI0WzZJ3AJOWwj8W mR9pOwsiS+agpeKjFijP712f1LDB7tellyrmdeGcA+faZRwb4OnofmBFxZaqqA== ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1756989337; a=rsa-sha256; cv=none; b=oxwHaHPzQiL0zKPbBYHNpuL6dSnOxzVpnQLznv9XcJdcZOYlwz1i1DYlCvS+4muo6SviFf g1mWXv3hrGBPufZpE+nJBMVrYp7+n1aUO+YBGY8pc9d8EjKfzehdZbjm23p5agL4DWFIk9 8q5H4d7pNbXBzM8OeZCdAXsqg3SLjxbOOGajabcYl278bb1lU1RwJ2+vN85SQ8ziCRq6Tp gGOrEktAd0awUh4N0f8hWFPfSpXnMBTikgnSxkSoaoHtjPJMdUW/k0NXU1U7Hp49OoieHm nm9+33sOec7mJDju9HEMT4uNQ3oMif+Swjb6MFctM3uEo+kd6G2yu6Pq/PhWrA== ARC-Authentication-Results: i=1; mx1.freebsd.org; none Received: from amaryllis.le-fay.org (amaryllis.le-fay.org [IPv6:2a00:1098:6b:400::9]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) (Authenticated sender: ivy/mail) by smtp.freebsd.org (Postfix) with ESMTPSA id 4cHf8T0qRvzB1V; Thu, 04 Sep 2025 12:35:37 +0000 (UTC) (envelope-from ivy@freebsd.org) Date: Thu, 4 Sep 2025 13:35:34 +0100 From: Lexi Winter To: Ronald Klop Cc: net@freebsd.org Subject: Re: bridge new vlan and iftagged "none" Message-ID: Mail-Followup-To: Ronald Klop , net@freebsd.org References: <481902534.1074.1756977663370@localhost> <1a91faca-69ef-410d-95ad-2d371c84f759@klop.ws> List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@FreeBSD.org MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="DsUVz4jczTEAnUCM" Content-Disposition: inline In-Reply-To: --DsUVz4jczTEAnUCM Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Ronald Klop: > NB: I don't know if my setup fits your setup in relation to where > "host" traffic originates. My bridge does not have an IP address > itself. in this case the problem i identified probably doesn't affect you, but it would still be useful to know that the changes don't break your configuration. > I prefer to add an epair for local traffic. this is a perfectly reasonable configuration, but if you're using VLAN filtering, have you considered using SVIs instead? i.e., ifconfig bridge0.1 create # interface on vlan 1 ifconfig bridge0.3 create # interface on vlan 3 this gives you an interface attached to a specific VLAN on the bridge, meaning you can assign host addresses to this interface (which is a vlan(4)) instead of putting the addresses on the bridge itself. > I like this setup as IMHO it mimics more how a host is connected to a switch. the SVI is more like how you would configure this on the switch itself, so it's up to you, but it does save having to create both epair and vlan interfaces to communicate on different vlans on the bridge. --DsUVz4jczTEAnUCM Content-Type: application/pgp-signature; name=signature.asc -----BEGIN PGP SIGNATURE----- iHUEABYKAB0WIQSyjTg96lp3RifySyn1nT63mIK/YAUCaLmHkwAKCRD1nT63mIK/ YB96AP9iQjUpfWAm0rSVR2BjzHu/c5CMAhbCRQOVEyNz3XRvswD/Qanj1xCvq6zZ SnsYT2C+KhY7XNdymY4duy9ebZsdyAs= =/xXl -----END PGP SIGNATURE----- --DsUVz4jczTEAnUCM--