From owner-freebsd-net@FreeBSD.ORG  Sat Aug 25 23:04:04 2012
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id EE74E1065781
	for <freebsd-net@freebsd.org>; Sat, 25 Aug 2012 23:04:04 +0000 (UTC)
	(envelope-from djmitche@gmail.com)
Received: from mail-wg0-f50.google.com (mail-wg0-f50.google.com [74.125.82.50])
	by mx1.freebsd.org (Postfix) with ESMTP id 85B7B8FC1F
	for <freebsd-net@freebsd.org>; Sat, 25 Aug 2012 23:04:04 +0000 (UTC)
Received: by wgbds11 with SMTP id ds11so2205337wgb.31
	for <freebsd-net@freebsd.org>; Sat, 25 Aug 2012 16:04:03 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113;
	h=mime-version:sender:date:x-google-sender-auth:message-id:subject
	:from:to:content-type;
	bh=0Zzfj/dvDcN8oSbDmw8zQX2cKku3jmcS2pfKXDaAGt0=;
	b=JltkwtzeeK+GUxv2X+m80U9TctPg5yGQzfL83h0dEJ2x0PWB8GpslrMPc1JivjWX4C
	Sq/iq5yvzhdfioUy+ODpmsQQB0K43N7iD7ZdpG8ZEMS9rdqtMNYxdz/HeO1kipkr8xLE
	/djcfRr+PjhZQM9PeNtq07ceU3hhrcuTg+em1FU0v0qjX0Xfg7IO5wqnX7l3f7i5/uTK
	TENPv/40xezAPKa33tbD/ACFD9IZ+ilMsbYEXIBOoDl59UAdWTYOWjdUq8ppA1u7Mack
	cEwTboATjWQNEEkf4mDSCRdsi7WQHBKwOlKHZeK9H/NNG5eGhBTW2EK0lM51IPOsvUgZ
	qaeQ==
MIME-Version: 1.0
Received: by 10.180.81.66 with SMTP id y2mr14591173wix.22.1345935843474; Sat,
	25 Aug 2012 16:04:03 -0700 (PDT)
Sender: djmitche@gmail.com
Received: by 10.223.4.215 with HTTP; Sat, 25 Aug 2012 16:04:03 -0700 (PDT)
Date: Sat, 25 Aug 2012 19:04:03 -0400
X-Google-Sender-Auth: HULdO27f-H5VgNUh7zpfh9vRb5Y
Message-ID: <CAJtE5vRq8oJz1f8ujsTSjGJjoEMp_J-n6Nqj0YCUd_nrScnPqA@mail.gmail.com>
From: "Dustin J. Mitchell" <dustin@v.igoro.us>
To: freebsd-net@freebsd.org
Content-Type: text/plain; charset=UTF-8
Subject: bridging VLAN interfaces and STP
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 25 Aug 2012 23:04:05 -0000

Hey folks.  I'm trying to set up a system with one 802.1q-tagged
upstream, and a few untagged interfaces.  So I'd like to bridge the
vlan(4) interfaces on vr1 to specific other interfaces.

hilbert ~ # ifconfig bridge10
bridge10: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
        ether 02:f4:a1:63:5a:0a
        inet 172.16.1.21 netmask 0xffffff00 broadcast 172.16.1.255
        nd6 options=21<PERFORMNUD,AUTO_LINKLOCAL>
        id 00:00:00:00:00:00 priority 32768 hellotime 2 fwddelay 15
        maxage 20 holdcnt 6 proto rstp maxaddr 100 timeout 1200
        root id 00:00:00:00:00:00 priority 32768 ifcost 0 port 0
        member: vr3 flags=143<LEARNING,DISCOVER,AUTOEDGE,AUTOPTP>
                ifmaxaddr 0 port 4 priority 128 path cost 55
        member: vr2 flags=143<LEARNING,DISCOVER,AUTOEDGE,AUTOPTP>
                ifmaxaddr 0 port 3 priority 128 path cost 55
        member: vr1.10 flags=143<LEARNING,DISCOVER,AUTOEDGE,AUTOPTP>
                ifmaxaddr 0 port 8 priority 128 path cost 200000

Now, if I try to enable STP on these:

hilbert ~ # ifconfig bridge10 stp vr2
hilbert ~ # ifconfig bridge10 stp vr3
hilbert ~ # ifconfig bridge10 stp vr1.20
ifconfig: unable to get bridge flags: No such file or directory

and, indeed, the first two succeeded and the third did not:
  ...
        member: vr3 flags=147<LEARNING,DISCOVER,STP,AUTOEDGE,AUTOPTP>
                ifmaxaddr 0 port 4 priority 128 path cost 55 proto rstp
                role disabled state discarding
        member: vr2 flags=147<LEARNING,DISCOVER,STP,AUTOEDGE,AUTOPTP>
                ifmaxaddr 0 port 3 priority 128 path cost 55 proto rstp
                role disabled state discarding
        member: vr1.10 flags=143<LEARNING,DISCOVER,AUTOEDGE,AUTOPTP>
                ifmaxaddr 0 port 8 priority 128 path cost 200000

I tried a bridge interface with vlan'd members only (vr2.10 and
vr1.10, to be exact), and still saw this error.

So it looks like you can't run STP on vlan interfaces?  Can someone
confirm?  Or is there a secret sysctl to enable this?

I'll admit this is a minor point - I'll just leave STP off and not
make loops - but it'd be nice to do the right thing :)

Dustin