Date: Sat, 19 Feb 2011 13:40:06 +0200 From: Nikos Vassiliadis <nvass@gmx.com> To: kevin <k@kevinkevin.com> Cc: freebsd-net@freebsd.org Subject: Re: Bridging + VLANS + RSTP / MSTP Message-ID: <4D5FAC16.7080207@gmx.com> In-Reply-To: <000c01cbcf94$35e76e20$a1b64a60$@com> References: <000c01cbcf94$35e76e20$a1b64a60$@com>
next in thread | previous in thread | raw e-mail | index | archive | help
On 2/18/2011 7:49 PM, kevin wrote: > My current testing has shown little promise -- both firewalls will go up, > traffic will only go to the first firewall. If I reboot that first firewall, > no traffic will flow to the second bridging firewall. Note that all IPs on > my network (inside and out) are public IPs, there are no private ips on my > network. Could you send your ifconfig bridge output from both firewalls? If STP is turned off on the four switch ports that the firewalls are patched, one of the two firewalls must be root of the spanning tree. Be sure that STP is *really* turned off on the switch, use tcpdump on the physical ports for this. Be sure that the FreeBSD's BPDUs are forwarded by the switch, so the one bridging firewall can exchange BPDUs with the other. HTH, Nikos
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4D5FAC16.7080207>