From owner-freebsd-net@freebsd.org Sun Apr 1 21:09:57 2018 Return-Path: Delivered-To: freebsd-net@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id BC565F7C12E for ; Sun, 1 Apr 2018 21:09:57 +0000 (UTC) (envelope-from hf@spg.tu-darmstadt.de) Received: from lnx503.hrz.tu-darmstadt.de (mail-relay239.hrz.tu-darmstadt.de [130.83.156.239]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 49F7E7DD54 for ; Sun, 1 Apr 2018 21:09:56 +0000 (UTC) (envelope-from hf@spg.tu-darmstadt.de) Received: from Bounce.nt.e-technik.tu-darmstadt.de (bounce.nt.e-technik.tu-darmstadt.de [130.83.197.1]) by lnx503.hrz.tu-darmstadt.de (8.14.4/8.14.4/HRZ/PMX) with ESMTP id w31L97m1021572; Sun, 1 Apr 2018 23:09:08 +0200 (envelope-from hf@spg.tu-darmstadt.de) Received: from [172.16.8.22] (p4FC6C1A4.dip0.t-ipconnect.de [79.198.193.164]) (authenticated bits=0) by Bounce.nt.e-technik.tu-darmstadt.de (8.15.2/8.15.2) with ESMTPSA id w31L9h34008942 (version=TLSv1 cipher=DHE-RSA-AES128-SHA bits=128 verify=NO); Sun, 1 Apr 2018 23:09:46 +0200 (CEST) Date: Sun, 1 Apr 2018 23:10:22 +0200 From: Hauke Fath To: Eugene Grosbein Cc: freebsd-net@freebsd.org Message-ID: <20180401231022184335.e841ceaf@spg.tu-darmstadt.de> In-Reply-To: <5AC101AC.60906@grosbein.net> References: <20180401164209528151.6f554119@spg.tu-darmstadt.de> <5AC101AC.60906@grosbein.net> Subject: Re: Bridging a vlan trunk with a gif tunnel? MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: quoted-printable Organization: TU Darmstadt X-Mailer: GyazMail version 1.5.19 X-PMX-TU: seen v1.2 by 5.6.1.2065439, Antispam-Engine: 2.7.2.376379, Antispam-Data: 2018.4.1.210017 X-PMX-RELAY: outgoing X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.25 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 01 Apr 2018 21:09:57 -0000 On Sun, 1 Apr 2018 22:58:36 +0700, Eugene Grosbein wrote: > 01.04.2018 21:42, Hauke Fath wrote: >=20 >> I am trying to network a remote site with a main site through a bridged= =20 >> gif tunnel, and it doesn't work for me.=20 >=20 > gif(4) supports only untagged frames when added to a bridge. Well, as I said, bridging the trunk from the gif tunnel to the hardware=20 ix interface works, in that the attached switch sorts it out and=20 machines on both sides connect. It's the router's vlan interfaces that=20 do not communicate with the bridge. =20 > You need to create gif-per-vlan=20 ... three vlans, one ip. > or switch to newer vxlan(4). That wouldn't work with the switches, would it, like vlans? =20 >> In the past, I have set up a similar link by tunneling ip over gif, but= =20 >> routing turned out to be intricate >=20 > what problems do you have with routing over gif? It works just fine for m= e. Routing requires new subnets, with acl changes rippling through the=20 whole installation. Since the university is essentially out of public=20 ipv4 space, we would have to NAT those subnets. Plus, with the past=20 setup, we got asymmetric routing, with some machines not reachable from=20 the other side - I successfully forgot the gory details, it's been a=20 while. >> and I figured just bridging the exclave with the main site would=20 >> save me routing issues, >=20 > And bring in bridging issues that are more severe. Like what, besides the shortcomings of if_bridge(4)? >> plus I could stick with the existing subnets. >=20 > And have extra overhead to pass +14 bytes of headers of MAC addresses=20 > per frame. >=20 > Single gif+bridge does not support trunks. I'll take that, and look into a routing setup. Thanks for your answers,=20 even if I don't like them. ;) Cheerio, hauke --=20 The ASCII Ribbon Campaign Hauke Fath () No HTML/RTF in email Institut f=FCr Nachrichtentechnik /\ No Word docs in email TU Darmstadt Respect for open standards Ruf +49-6151-16-21344