From owner-freebsd-bugs@freebsd.org Sun Dec 31 16:04:31 2017 Return-Path: Delivered-To: freebsd-bugs@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id E5379E8229B for ; Sun, 31 Dec 2017 16:04:31 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2001:1900:2254:206a::16:76]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id D0E7C7812D for ; Sun, 31 Dec 2017 16:04:31 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.118]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id vBVG4VUM041477 for ; Sun, 31 Dec 2017 16:04:31 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id vBVG4VVY041476 for freebsd-bugs@FreeBSD.org; Sun, 31 Dec 2017 16:04:31 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: freebsd-bugs@FreeBSD.org Subject: [Bug 224795] vlan interfaces created off tap devices do not work Date: Sun, 31 Dec 2017 16:04:31 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: new X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 11.1-RELEASE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: gdcosta@gmail.com X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: freebsd-bugs@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: bug_id short_desc product version rep_platform op_sys bug_status bug_severity priority component assigned_to reporter Message-ID: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-bugs@freebsd.org X-Mailman-Version: 2.1.25 Precedence: list List-Id: Bug reports List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 31 Dec 2017 16:04:32 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D224795 Bug ID: 224795 Summary: vlan interfaces created off tap devices do not work Product: Base System Version: 11.1-RELEASE Hardware: amd64 OS: Any Status: New Severity: Affects Only Me Priority: --- Component: kern Assignee: freebsd-bugs@FreeBSD.org Reporter: gdcosta@gmail.com (I am not sure if this is a technical problem or a documentation issue ... = the only relevant-seeming info I could find on this issue was an unanswered pos= t in the forums https://forums.freebsd.org/threads/49106/) I have been running the pfSense FreeBSD-based firewall/routing OS as a bhyv= e VM on my FreeBSD box. I have two (relevant) network devices, bge0 and em0. I have a bridge0 device with bge0 and the tap0 from the pfSense bhye vm as members. This is a trunk connection with multiple VLANs' worth of data runn= ing over them. They have a standard MTU of 1500. I created a vlan20 (for example) device off tap0, since I cannot create vlan devices off bridge devices and creating it off the bge0 device means no oth= er VMs or jails get traggic passed through (since presumably bge0 only gets traffic that isn't another virtual instance but needs to go through the attached network switch) The vlan20 device has an MTU of 1496, which is a different behaviour from w= hen vlan devices are created off bge0 or em0 where they retain an MTU of 1500. = The reason I mention this is because if I want to bridge this vlan20 device with other VM or jail interfaces (VNET or otherwise) I have to lower the other interfaces' MTUs to 1496 and this is all for naught as vlan20 doesn't seem = to pass traffic anywhere. -- HOWEVER, if I configure my em0 device to accept the VLAN traffic I need and create vlan20 interface off it, all bridging and network traffic work fine. I have a workaround, but it feels to me like creating a vlan device off a t= ap is either broken or is something that possibly shouldn't be allowed. -- I am not a networking or FreeBSD expert so my diagnostics probably can be improved. I used tcpdump and showed that the vlan20 device would never send= ARP data (and ICMP data) through to the tap0 trunk. Other jail/VM members on the bridge could talk to each other because presumably the bridge device was working fine, just not this particular vlan20 member. I can reproduce this scenario fairly easy so if there are any other logs or commands you would like to run I would be happy to do so. Hello, I am not a networking or FreeBSD poweruser; --=20 You are receiving this mail because: You are the assignee for the bug.=