From owner-freebsd-net@FreeBSD.ORG  Sat Sep  1 21:55:31 2012
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id D2B811065670
	for <freebsd-net@freebsd.org>; Sat,  1 Sep 2012 21:55:31 +0000 (UTC)
	(envelope-from peter@rulingia.com)
Received: from vps.rulingia.com (host-122-100-2-194.octopus.com.au
	[122.100.2.194])
	by mx1.freebsd.org (Postfix) with ESMTP id 7ECB58FC16
	for <freebsd-net@freebsd.org>; Sat,  1 Sep 2012 21:55:30 +0000 (UTC)
Received: from server.rulingia.com
	(c220-239-249-137.belrs5.nsw.optusnet.com.au [220.239.249.137])
	by vps.rulingia.com (8.14.5/8.14.5) with ESMTP id q81LtLRh011859
	(version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK);
	Sun, 2 Sep 2012 07:55:22 +1000 (EST)
	(envelope-from peter@rulingia.com)
X-Bogosity: Ham, spamicity=0.000000
Received: from server.rulingia.com (localhost.rulingia.com [127.0.0.1])
	by server.rulingia.com (8.14.5/8.14.5) with ESMTP id q81LtFfp061176
	(version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO);
	Sun, 2 Sep 2012 07:55:15 +1000 (EST)
	(envelope-from peter@server.rulingia.com)
Received: (from peter@localhost)
	by server.rulingia.com (8.14.5/8.14.5/Submit) id q81LtEex061174;
	Sun, 2 Sep 2012 07:55:14 +1000 (EST) (envelope-from peter)
Date: Sun, 2 Sep 2012 07:55:14 +1000
From: Peter Jeremy <peter@rulingia.com>
To: "Dustin J. Mitchell" <dustin@v.igoro.us>
Message-ID: <20120901215514.GA84970@server.rulingia.com>
References: <CAJtE5vRq8oJz1f8ujsTSjGJjoEMp_J-n6Nqj0YCUd_nrScnPqA@mail.gmail.com>
	<CAJtE5vQLdtXtyejKUHkX1DKfVS-SaVF4n3=nfA+ecH4Jhn3VXQ@mail.gmail.com>
	<20120827094956.GA93853@server.rulingia.com>
	<CAJtE5vSQ2W_H_jsr=BA7e0pcU1wJ_qiKHTSc3W2AuWbWgAjvpA@mail.gmail.com>
MIME-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha1;
	protocol="application/pgp-signature"; boundary="HcAYCG3uE/tztfnV"
Content-Disposition: inline
In-Reply-To: <CAJtE5vSQ2W_H_jsr=BA7e0pcU1wJ_qiKHTSc3W2AuWbWgAjvpA@mail.gmail.com>
X-PGP-Key: http://www.rulingia.com/keys/peter.pgp
User-Agent: Mutt/1.5.21 (2010-09-15)
Cc: freebsd-net@freebsd.org
Subject: Re: bridging VLAN interfaces and STP
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 01 Sep 2012 21:55:32 -0000


--HcAYCG3uE/tztfnV
Content-Type: text/plain; charset=utf-8
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

Sorry for the delay, Real Life=E2=84=A2 intervened.

On 2012-Aug-27 07:45:41 -0400, "Dustin J. Mitchell" <dustin@v.igoro.us> wro=
te:
>On Mon, Aug 27, 2012 at 5:49 AM, Peter Jeremy <peter@rulingia.com> wrote:
>> On 2012-Aug-26 08:12:51 -0400, "Dustin J. Mitchell" <dustin@v.igoro.us> =
wrote:
>>>On Sat, Aug 25, 2012 at 7:04 PM, Dustin J. Mitchell <dustin@v.igoro.us> =
wrote:
>>>> Hey folks.  I'm trying to set up a system with one 802.1q-tagged
>>>> upstream, and a few untagged interfaces.  So I'd like to bridge the
>>>> vlan(4) interfaces on vr1 to specific other interfaces.
=2E..
>bridge10: flags=3D8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mt=
u 1500
>        ether 02:f4:a1:63:5a:0a
>        nd6 options=3D21<PERFORMNUD,AUTO_LINKLOCAL>
>        id 00:00:00:00:00:00 priority 32768 hellotime 2 fwddelay 15
>        maxage 20 holdcnt 6 proto rstp maxaddr 100 timeout 1200
>        root id 00:00:00:00:00:00 priority 32768 ifcost 0 port 0
>        member: vr3 flags=3D143<LEARNING,DISCOVER,AUTOEDGE,AUTOPTP>
>                ifmaxaddr 0 port 4 priority 128 path cost 55
>        member: vr2 flags=3D143<LEARNING,DISCOVER,AUTOEDGE,AUTOPTP>
>                ifmaxaddr 0 port 3 priority 128 path cost 55
>        member: vr1.10 flags=3D143<LEARNING,DISCOVER,AUTOEDGE,AUTOPTP>
>                ifmaxaddr 0 port 9 priority 128 path cost 200000
>bridge20: flags=3D8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mt=
u 1500
>        ether 02:f4:a1:63:5a:14
>        nd6 options=3D21<PERFORMNUD,AUTO_LINKLOCAL>
>        id 00:00:00:00:00:00 priority 32768 hellotime 2 fwddelay 15
>        maxage 20 holdcnt 6 proto rstp maxaddr 100 timeout 1200
>        root id 00:00:00:00:00:00 priority 32768 ifcost 0 port 0
>        member: vr0 flags=3D143<LEARNING,DISCOVER,AUTOEDGE,AUTOPTP>
>                ifmaxaddr 0 port 1 priority 128 path cost 55
>        member: vr1.20 flags=3D143<LEARNING,DISCOVER,AUTOEDGE,AUTOPTP>
>                ifmaxaddr 0 port 10 priority 128 path cost 200000

That looks like RSTP is enabled on both bridge10 and bridge20 but is
not seeing incoming [R]STP packets.  Are you sure the switch connected
to vr1 is configured with per-VLAN STP (this is probably not the
switch default).

Have you tried running tcpdump on vr1 and checked that you are seeing
STP packets within the VLANs.

>gateway_enable=3D"YES"
>firewall_enable=3D"YES"
>firewall_type=3D"OPEN"

gateway_enable=3D"YES" will let the system route packets between bridge10
and bridge20 but shouldn't have any effect on bridging packets between
(eg) vr1.10, vr2 & vr3.

--=20
Peter Jeremy

--HcAYCG3uE/tztfnV
Content-Type: application/pgp-signature

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.19 (FreeBSD)

iEYEARECAAYFAlBChEIACgkQ/opHv/APuIf8qwCgtEu8+0uuCfU0BbeDOJiJ6YGU
ml4An1KET0o4371JU/qoERDxglvUfye8
=6Vtb
-----END PGP SIGNATURE-----

--HcAYCG3uE/tztfnV--