From nobody Tue May 20 09:24:01 2025
X-Original-To: freebsd-current@mlmmj.nyi.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
	by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4b1q045xxZz5w6V1
	for <freebsd-current@mlmmj.nyi.freebsd.org>; Tue, 20 May 2025 09:25:08 +0000 (UTC)
	(envelope-from freebsd@walstatt-de.de)
Received: from smtp6.goneo.de (smtp6.goneo.de [85.220.129.31])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256)
	(Client did not present a certificate)
	by mx1.freebsd.org (Postfix) with ESMTPS id 4b1q031FQKz45K7;
	Tue, 20 May 2025 09:25:06 +0000 (UTC)
	(envelope-from freebsd@walstatt-de.de)
Authentication-Results: mx1.freebsd.org;
	dkim=pass header.d=walstatt-de.de header.s=DKIM001 header.b=TnosFcm3;
	spf=pass (mx1.freebsd.org: domain of freebsd@walstatt-de.de designates 85.220.129.31 as permitted sender) smtp.mailfrom=freebsd@walstatt-de.de;
	dmarc=none
Received: from hub2.goneo.de (hub2.goneo.de [85.220.129.53])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (4096 bits))
	(No client certificate requested)
	by smtp6.goneo.de (Postfix) with ESMTPS id A5C702404EA;
	Tue, 20 May 2025 11:25:04 +0200 (CEST)
Received: from hub2.goneo.de (localhost [127.0.0.1])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (4096 bits))
	(No client certificate requested)
	by hub2.goneo.de (Postfix) with ESMTPS id C45D4240165;
	Tue, 20 May 2025 11:25:02 +0200 (CEST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=walstatt-de.de;
	s=DKIM001; t=1747733102;
	h=from:from:reply-to:subject:subject:date:date:message-id:message-id:
	 to:to:cc:cc:mime-version:mime-version:content-type:content-type:
	 in-reply-to:in-reply-to:references:references;
	bh=uOdG+63KDD1mbwuoffP6C+D9wpNdACf7nYKKNZwnbSI=;
	b=TnosFcm3aAJWRxxz9bAwOhDm/CFZW0WuoR878/5QmIAHEHXvtieHE52uEg/vMbmvlheHSo
	ikrBq3QhIkHVvGxcF9eJhvfp4jbGARH4PfE8Z32qvOrAXb0VLp5DYE7+cUHcI0Ib9RRV8V
	AdEoDNVK25NmOISXBfdoNLWRMIyJ2iR4nizoEtR3OwA/LDwHvlbdAK78O9ErU8VuRN91GS
	A/cpBcm/2EAB8CMUu9s1+Lw+A79zwTgUooc7+7r60KUVmBQ0mdbac8ZNkAjYw6wsQBnYX7
	lhGEvZhSkbD3Bimoo0PacA4yMdZWQjH1HYSgJrB1slBqCbloLwOJ1IIEkI5vrA==
Received: from thor.sb211.local (dynamic-002-245-169-065.2.245.pool.telefonica.de [2.245.169.65])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange ECDHE (prime256v1) server-signature RSA-PSS (4096 bits) server-digest SHA256)
	(No client certificate requested)
	by hub2.goneo.de (Postfix) with ESMTPSA id 4308924039C;
	Tue, 20 May 2025 11:25:02 +0200 (CEST)
Date: Tue, 20 May 2025 11:24:01 +0200
From: A FreeBSD User <freebsd@walstatt-de.de>
To: "Patrick M. Hausen" <pmh@hausen.com>
Cc: Lexi Winter <ivy@FreeBSD.org>, Kristof Provost <kp@FreeBSD.org>, Marek
 Zarychta <zarychtam@plan-b.pwste.edu.pl>, Alexander Leidinger
 <Alexander@Leidinger.net>, rgrimes@freebsd.org, FreeBSD CURRENT
 <freebsd-current@freebsd.org>
Subject: Re: CURRENT: can not add device to bridge: ifconfig: BRDGADD igb0:
 Invalid argument
Message-ID: <20250520112428.3de8301e@thor.sb211.local>
In-Reply-To: <C3DAAC11-7029-4964-BA19-AE7AB2D941DA@hausen.com>
References: <20250518180658.2e58d55a@thor.sb211.local>
	<192c8e37-4a85-4916-9986-0a556333a527@plan-b.pwste.edu.pl>
	<20250518182404.3a760da9@thor.sb211.local>
	<1ca30cdfb783848eafce24b77f10c0a5@Leidinger.net>
	<310d460a-d372-47c8-8275-2908bb8417ad@plan-b.pwste.edu.pl>
	<7A4E0DDE-77F7-4CDC-8C52-BE938298E105@FreeBSD.org>
	<aCrxeWv2FmAdEMkB@ragweed.eden.le-fay.org>
	<C3DAAC11-7029-4964-BA19-AE7AB2D941DA@hausen.com>
List-Id: Discussions about the use of FreeBSD-current <freebsd-current.freebsd.org>
List-Archive: https://lists.freebsd.org/archives/freebsd-current
List-Help: <mailto:freebsd-current+help@freebsd.org>
List-Post: <mailto:freebsd-current@freebsd.org>
List-Subscribe: <mailto:freebsd-current+subscribe@freebsd.org>
List-Unsubscribe: <mailto:freebsd-current+unsubscribe@freebsd.org>
Sender: owner-freebsd-current@FreeBSD.org
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="Sig_/p3Xe/kh7kheASGxxHylfGCs";
 protocol="application/pgp-signature"; micalg=pgp-sha512
X-Rspamd-UID: 4023db
X-Rspamd-UID: c28fcb
X-Rspamd-Queue-Id: 4b1q031FQKz45K7
X-Spamd-Bar: -----
X-Spamd-Result: default: False [-5.69 / 15.00];
	SIGNED_PGP(-2.00)[];
	NEURAL_HAM_LONG(-1.00)[-1.000];
	NEURAL_HAM_MEDIUM(-1.00)[-1.000];
	NEURAL_HAM_SHORT(-0.99)[-0.993];
	R_DKIM_ALLOW(-0.20)[walstatt-de.de:s=DKIM001];
	R_SPF_ALLOW(-0.20)[+ip4:85.220.129.0/25];
	MIME_GOOD(-0.20)[multipart/signed,text/plain];
	RCVD_IN_DNSWL_LOW(-0.10)[85.220.129.31:from];
	ARC_NA(0.00)[];
	ASN(0.00)[asn:25394, ipnet:85.220.128.0/17, country:DE];
	RCVD_TLS_ALL(0.00)[];
	MIME_TRACE(0.00)[0:+,1:+,2:~];
	MISSING_XM_UA(0.00)[];
	TO_DN_SOME(0.00)[];
	RCVD_VIA_SMTP_AUTH(0.00)[];
	DMARC_NA(0.00)[walstatt-de.de];
	RCVD_COUNT_THREE(0.00)[3];
	FROM_HAS_DN(0.00)[];
	RCPT_COUNT_SEVEN(0.00)[7];
	FROM_EQ_ENVFROM(0.00)[];
	MLMMJ_DEST(0.00)[freebsd-current@freebsd.org];
	TO_MATCH_ENVRCPT_SOME(0.00)[];
	DKIM_TRACE(0.00)[walstatt-de.de:+]

--Sig_/p3Xe/kh7kheASGxxHylfGCs
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: quoted-printable

Am Tage des Herren Mon, 19 May 2025 11:22:31 +0200
"Patrick M. Hausen" <pmh@hausen.com> schrieb:

> Hi all,
>=20
> > Am 19.05.2025 um 10:53 schrieb Lexi Winter <ivy@FreeBSD.org>:
> >=20
> > the basic problem here is that putting IP addresses on a bridge member
> > is a layering violation and it's just not reasonable (or even possible)
> > to support this in a sensible way in bridge.  this is why most dedicated
> > network devices (switches, routers, etc.) don't let you do this. =20
>=20
> Adding to this, the fact that IP addresses on member interfaces are not
> supported has been documented from day one of the introduction of if_brid=
ge(4).

So the concept is to have if_bridge() facing "towards the network", with IP=
v4 and/or IPv6.

My "concept" - or better "minded topology" - on how to connect computers is=
 probably outdated
or mislead, sorry for the noise.

On the host in question I was able to switch towards the correct concept wi=
thout consulting
the aformentioned sysctl. bridge0 has a internal IPv4, IPv6 ULA, has a phys=
ical NIC (igb0) as
member and a bunch of epair() vnet interfaces.

I need a IPv6 prefix on bridge0. With the "wrong/faulty" concept I simply u=
sed=20

rtsold_flags=3D"-iu igb0"

within /etc/rc.conf. Changing this line to
rtsold_flags=3D"-iu bridge0" while bridge0 is up and running doesn't work, =
neither does "rtsol
bridge0" show any results.

Is there any othe MIB OID for if_bridge() to be aware of to achieve the des=
ired behaviour?

Kind regards,
Oliver

>=20
> A couple of months ago I did check the commit times of the code and the
> relevant handbook section because exactly this discussion came up again
> in a different context.
>=20
> https://docs.freebsd.org/en/books/handbook/advanced-networking/#network-b=
ridging
>=20
> > If the bridge host needs an IP address, set it on the bridge interface,=
 not on the member
> > interfaces =20
>=20
> Kind regards,
> Patrick



--=20

A FreeBSD user

--Sig_/p3Xe/kh7kheASGxxHylfGCs
Content-Type: application/pgp-signature
Content-Description: OpenPGP digital signature

-----BEGIN PGP SIGNATURE-----

iHUEARYKAB0WIQRQheDybVktG5eW/1Kxzvs8OqokrwUCaCxKTAAKCRCxzvs8Oqok
r/YIAPwKPc034Q5v5oLbJ18HbO0z4IOADtDvlMr9CfIdoDSEjwEAvjUol9yvpc8q
CA6JKLpfHRbzEILoYqTVJg7lT5RjUAQ=
=KU3P
-----END PGP SIGNATURE-----

--Sig_/p3Xe/kh7kheASGxxHylfGCs--