From owner-freebsd-questions@FreeBSD.ORG Wed Aug 13 01:00:48 2008 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 868F1106567E for ; Wed, 13 Aug 2008 01:00:48 +0000 (UTC) (envelope-from mikesw@adhost.com) Received: from mail-defer01.adhost.com (mail-defer01.adhost.com [216.211.128.150]) by mx1.freebsd.org (Postfix) with ESMTP id 655AC8FC12 for ; Wed, 13 Aug 2008 01:00:48 +0000 (UTC) (envelope-from mikesw@adhost.com) Received: from mail-in01.adhost.com (mail-in01.adhost.com [10.212.3.11]) by mail-defer01.adhost.com (Postfix) with ESMTP id 6CCC01127B for ; Tue, 12 Aug 2008 17:44:27 -0700 (PDT) (envelope-from mikesw@adhost.com) Received: from ad-exh01.adhost.lan (exchange.adhost.com [216.211.143.69]) by mail-in01.adhost.com (Postfix) with ESMTP id 1E2DE2D74FF for ; Tue, 12 Aug 2008 17:44:43 -0700 (PDT) (envelope-from mikesw@adhost.com) X-MimeOLE: Produced By Microsoft Exchange V6.5 Content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Date: Tue, 12 Aug 2008 17:44:30 -0700 Message-ID: <17838240D9A5544AAA5FF95F8D5203160472C95E@ad-exh01.adhost.lan> X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: Transparent Bridge with VLAN Tagging - How? Thread-Index: Acj83b7lLu98yTOHTgKkUXOML5O8ng== From: "Mike Sweetser - Adhost" To: Subject: Transparent Bridge with VLAN Tagging - How? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 13 Aug 2008 01:00:48 -0000 Hello, I'm attempting to set up a transparent bridge in FreeBSD 7.0 to eventually act as a PF/Snort box, and it needs to be VLAN aware. However, I don't seem to be on the right track as far as setting it up. I have, for instance, VLAN 10 that it needs to be aware of, and this network segment is on VLAN 10 from a switch higher up. I have the current setup, but once it's running, I can't ping anything. bge0 is the outside interface, bge1 is inside: defaultrouter=3D"192.168.1.1" gateway_enable=3D"YES" cloned_interfaces=3D"bridge0 vlan0 vlan1" ifconfig_vlan0=3D"vlan 10 vlandev bge0" ifconfig_vlan1=3D"vlan 10 vlandev bge1" ifconfig_bridge0=3D"inet 192.168.1.10 netmask 255.255.0.0 addm bge0 addm bge1 addm vlan0 addm vlan1 up" ifconfig_bge0=3D"up" ifconfig_bge1=3D"up" What am I doing wrong? Thank You, Mike Sweetser