From owner-freebsd-net@freebsd.org Sat Apr 28 12:28:26 2018 Return-Path: Delivered-To: freebsd-net@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 891CEFADC6F for ; Sat, 28 Apr 2018 12:28:26 +0000 (UTC) (envelope-from eugen@grosbein.net) Received: from hz.grosbein.net (unknown [IPv6:2a01:4f8:d12:604::2]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "hz.grosbein.net", Issuer "hz.grosbein.net" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id E53F679350 for ; Sat, 28 Apr 2018 12:28:25 +0000 (UTC) (envelope-from eugen@grosbein.net) Received: from eg.sd.rdtc.ru (root@eg.sd.rdtc.ru [62.231.161.221] (may be forged)) by hz.grosbein.net (8.15.2/8.15.2) with ESMTPS id w3SCSIA7031937 (version=TLSv1.2 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Sat, 28 Apr 2018 14:28:18 +0200 (CEST) (envelope-from eugen@grosbein.net) X-Envelope-From: eugen@grosbein.net X-Envelope-To: ab.tariq90@gmail.com Received: from [10.58.0.4] ([10.58.0.4]) by eg.sd.rdtc.ru (8.15.2/8.15.2) with ESMTPS id w3SCSARk062528 (version=TLSv1.2 cipher=DHE-RSA-AES128-SHA bits=128 verify=NOT); Sat, 28 Apr 2018 19:28:10 +0700 (+07) (envelope-from eugen@grosbein.net) Subject: Re: NETGRAPH- bridge vlans using netgraph help To: Abdullah Tariq References: <5AE216DC.7010905@grosbein.net> <5AE33513.1000001@grosbein.net> <5AE34754.6040905@grosbein.net> <5AE34CFA.7000207@grosbein.net> <5AE437C1.8010706@grosbein.net> <5AE44ADD.7020302@grosbein.net> Cc: freebsd-net@freebsd.org From: Eugene Grosbein Message-ID: <5AE468D5.9030702@grosbein.net> Date: Sat, 28 Apr 2018 19:28:05 +0700 User-Agent: Mozilla/5.0 (Windows NT 6.3; WOW64; rv:38.0) Gecko/20100101 Thunderbird/38.7.2 MIME-Version: 1.0 In-Reply-To: Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 8bit X-Spam-Status: No, score=2.2 required=5.0 tests=BAYES_00, LOCAL_FROM, RDNS_NONE, SPF_PASS autolearn=no autolearn_force=no version=3.4.1 X-Spam-Report: * -0.0 SPF_PASS SPF: sender matches SPF record * -2.3 BAYES_00 BODY: Bayes spam probability is 0 to 1% * [score: 0.0000] * 2.6 LOCAL_FROM From my domains * 1.9 RDNS_NONE Delivered to internal network by a host with no rDNS X-Spam-Level: ** X-Spam-Checker-Version: SpamAssassin 3.4.1 (2015-04-28) on hz.grosbein.net X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.25 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 28 Apr 2018 12:28:26 -0000 28.04.2018 19:10, Abdullah Tariq wrote: > However, we still have several ways to bridge tagged traffic > by means of creation multiple bridges (one per vlan) or using ng_vlan+ng_bridge to do the same. > > bridge1 will contain vlan 1 > bridge2 will containn vlan2 > > and bridge3 should have bridge1 and bridge2? No, its simplier: single bridge contains all interfaces corresponting to ports of single vlan. You can bridge plain igb* interfaces for untagged ports; or bridge interface igbX with interface vlanY when one port carries untagged frames of vlan and another ports carries tagged frames of the same vlan; or bridge interface vlans together when all of them carry tagged frames of the vlan. > If not, can you please give some instructions/guidelines for ng_vlan+ng_bridge? I still think you should not dive into building complex netgraph structures while the task can be solved simplier. But if you want to take that path, start by reading man ng_vlan, man ng_ether, man ng_bridge and man ng_eiface and try examples therein.