From owner-freebsd-questions@FreeBSD.ORG Mon Apr 27 20:21:00 2015 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 6DFDF598 for ; Mon, 27 Apr 2015 20:21:00 +0000 (UTC) Received: from mout.gmx.net (mout.gmx.net [212.227.17.21]) (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "mout.gmx.net", Issuer "TeleSec ServerPass DE-1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 0033B1782 for ; Mon, 27 Apr 2015 20:20:59 +0000 (UTC) Received: from moby.local ([88.65.182.178]) by mail.gmx.com (mrgmx103) with ESMTPSA (Nemesis) id 0LeNGL-1Z5gGf01a1-00qEM8 for ; Mon, 27 Apr 2015 22:20:52 +0200 Message-ID: <553E9A07.1020900@gmx.com> Date: Mon, 27 Apr 2015 22:20:23 +0200 From: Nikos Vassiliadis User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:31.0) Gecko/20100101 Thunderbird/31.6.0 MIME-Version: 1.0 To: freebsd-questions@freebsd.org Subject: Re: tunneling L2 tagged traffic over IP References: <20150425174935.GA48023@admin.sibptus.tomsk.ru> <553C1F66.4060901@gmx.com> <20150426123629.GA48916@admin.sibptus.tomsk.ru> <20150427093355.GA86151@admin.sibptus.tomsk.ru> <553E400F.2040906@gmx.com> <20150427143952.GA94033@admin.sibptus.tomsk.ru> In-Reply-To: <20150427143952.GA94033@admin.sibptus.tomsk.ru> Content-Type: text/plain; charset=windows-1252; format=flowed Content-Transfer-Encoding: 7bit X-Provags-ID: V03:K0:Z7RDb/oEEDBb8BCNqMyI6ZsCjTU82MwSrhqZZagmU3K98NMWuc9 6K/ITQJNNsgas3UBfU0gTopOBFxybmRlCPGdCF60A5RJ/9P1iNAjpzyw7vKi9KLkN7wIj0l 9IbOAj4VNIzwxD79KlQe9W+yewyyVHed3Waxa9RnLF9kj8Nla9joCPJkC1MFaiss5yjqc67 8F5zjdjTOR4HYO4cZiKrA== X-UI-Out-Filterresults: notjunk:1; X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 27 Apr 2015 20:21:00 -0000 On 04/27/15 16:39, Victor Sudakov wrote: > Nikos, > > I have two interfaces in a bridge: > > # ifconfig bridge0 > bridge0: flags=8843 metric 0 mtu 1500 > ether 02:d7:d7:0d:ff:00 > inet 10.14.133.20 netmask 0xffffffc0 broadcast 10.14.133.63 > nd6 options=9 > id 00:00:00:00:00:00 priority 61440 hellotime 2 fwddelay 15 > maxage 20 holdcnt 6 proto rstp maxaddr 2000 timeout 1200 > root id 00:00:00:00:00:00 priority 61440 ifcost 0 port 0 > member: vr0 flags=1c3 > ifmaxaddr 0 port 6 priority 128 path cost 200000 > member: tap0 flags=143 > ifmaxaddr 0 port 11 priority 128 path cost 2000000 > # > > "tcpdump -i vr0 stp" sees incoming STP traffic while "tcpdump -i tap0 stp" > sees none no matter if net.link.bridge.pfil_onlyip is "1" or "0". > > I see however some IP6, IPX (!) and CDP frames. > STP frames are not forwarded. As well as other special frames: > /* > * Check if its a reserved multicast address, any address > * listed in 802.1D section 7.12.6 may not be forwarded by the > * bridge. > * This is currently 01-80-C2-00-00-00 to 01-80-C2-00-00-0F > */ FreeBSD does that unconditionally. That could probably be a tunable:) If you have a "simple" ethernet bridge (without STP) you should forward STP frames. I guess a patch would be welcome! PS: It's better if you add my email address to your reply. I will see it fast(er). HTH, Nikos