From owner-freebsd-net@FreeBSD.ORG  Fri Dec 17 00:30:32 2010
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 68438106567A
	for <freebsd-net@freebsd.org>; Fri, 17 Dec 2010 00:30:32 +0000 (UTC)
	(envelope-from crapsh@monkeybrains.net)
Received: from lavash.monkeybrains.net (mail.monkeybrains.net [208.69.40.9])
	by mx1.freebsd.org (Postfix) with ESMTP id 4D3C68FC1B
	for <freebsd-net@freebsd.org>; Fri, 17 Dec 2010 00:30:32 +0000 (UTC)
Received: from [208.90.212.192] (208-90-212-192.PUBLIC.monkeybrains.net
	[208.90.212.192]) (authenticated bits=0)
	by lavash.monkeybrains.net (8.14.4/8.14.4) with ESMTP id oBH0Hnjv056741
	(version=TLSv1/SSLv3 cipher=DHE-RSA-CAMELLIA256-SHA bits=256 verify=NO)
	for <freebsd-net@freebsd.org>; Thu, 16 Dec 2010 16:17:49 -0800 (PST)
	(envelope-from crapsh@monkeybrains.net)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=monkeybrains.net;
	s=monkey; t=1292545069;
	bh=PrevkzUetIyJJEX0xqOUJOgpje7hSJclFCsYOvdqiAs=;
	h=Message-ID:Date:From:MIME-Version:To:Subject:Content-Type:
	Content-Transfer-Encoding;
	b=LITGdZFM3KtrTq6CYXb51TBHLxHsJyylm7+vhv4dUB9QDlwEUtykpRjGgI4dCR6TV
	clC15TBhtF2VBvU+a0PwUoeHFoLUt+Vjx8s+4d2G596dnubLP/r4aNTxWgz6QkKYAK
	PoD67ypUdTkippy2JEiy2dMArs2zy65uJ4p3d2nQ=
Message-ID: <4D0AAC30.1090202@monkeybrains.net>
Date: Thu, 16 Dec 2010 16:17:52 -0800
From: Rudy <crapsh@monkeybrains.net>
User-Agent: Mozilla/5.0 (X11; U; Linux x86_64; en-US;
	rv:1.9.1.14) Gecko/20101006 Thunderbird/3.0.9
MIME-Version: 1.0
To: freebsd-net@freebsd.org
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
X-Virus-Scanned: clamav-milter 0.96.4 at lavash.monkeybrains.net
X-Virus-Status: Clean
Subject: unicast flooding on bridge0 and odd DUP! ICMP packets
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 17 Dec 2010 00:30:32 -0000


I am having issues when I add 3 vlans (all off of em1) to bridge0.

[1] when I ping ips on 2 of the 3 vlans, I get a redirect from localhost 
and then a dup
# ifconfig bridge0 10.7.0.1/16
# ping 10.7.1.31  (which lives on vlan714)
PING 10.7.1.31 (10.7.1.31): 56 data bytes
36 bytes from localhost (127.0.0.1): Redirect Host(New addr: 10.7.1.31)
Vr HL TOS  Len   ID Flg  off TTL Pro  cks      Src      Dst
  4  5  00 0054 af97   0 0000  3f  01 b6e4 10.7.0.1  10.7.1.31

64 bytes from 10.7.1.31: icmp_seq=0 ttl=64 time=286.316 ms
64 bytes from 10.7.1.31: icmp_seq=0 ttl=64 time=286.350 ms (DUP!)

# ping 10.7.1.5  (which lives on vlan7)
PING 10.7.1.5 (10.7.1.5): 56 data bytes
64 bytes from 10.7.1.5: icmp_seq=0 ttl=64 time=5.160 ms
64 bytes from 10.7.1.5: icmp_seq=1 ttl=64 time=3.392 ms
64 bytes from 10.7.1.5: icmp_seq=2 ttl=64 time=6.250 ms

So, what would possible cause my localhost to spit out the redirect? 
(the route is the same for both IPs:
arana-zebra> sh ip route 10.7.1.5
Routing entry for 10.7.0.0/16
   Known via "connected", distance 0, metric 1, best
   * directly connected, bridge0

arana-zebra> sh ip route 10.7.1.31
Routing entry for 10.7.0.0/16
   Known via "connected", distance 0, metric 1, best
   * directly connected, bridge0


[2] When putting live traffic on the links, I saw a lot of unicast 
traffic going over the wire.  I had 'PRIVATE' set on all bridge members.

Is anyone running a bridge with 50 vlan members?  Do you see any unicast 
flooding?  (I added "switchport block unicast" to the vlan egree points 
on the switches -- going to wifi antennas.)

My goal: set up dhcpd router with a big pool -- spanning all the vlans 
-- but keeping the vlan traffic separate (hence the PRIVATE on the 
bridge members).

Rudy