From owner-freebsd-net Wed Dec 19 11: 3:33 2001 Delivered-To: freebsd-net@freebsd.org Received: from hotmail.com (f196.pav2.hotmail.com [64.4.37.196]) by hub.freebsd.org (Postfix) with ESMTP id 27C1637B416 for ; Wed, 19 Dec 2001 11:03:31 -0800 (PST) Received: from mail pickup service by hotmail.com with Microsoft SMTPSVC; Wed, 19 Dec 2001 11:03:27 -0800 Received: from 209.167.77.135 by pv2fd.pav2.hotmail.msn.com with HTTP; Wed, 19 Dec 2001 19:03:26 GMT X-Originating-IP: [209.167.77.135] From: "Graham Dunn" To: freebsd-net@freebsd.org Subject: Bridging vlan0 with de0 Date: Wed, 19 Dec 2001 19:03:26 +0000 Mime-Version: 1.0 Content-Type: text/plain; format=flowed Message-ID: X-OriginalArrivalTime: 19 Dec 2001 19:03:27.0071 (UTC) FILETIME=[D705FEF0:01C188BF] Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org I sent this to -questions, and the response was "no, you can't bridge a vlan interface." So I guess the question is now, how can I improve the design? The situation: Lan extension, vlan1 (10.5.0.0/16) and external IP block, vlan0 (x.x.x.x/27) arrive over a 802.1q interface (fxp0). I need to connect to two other subnets, 10.0.0.0/24 (our internal space), and our DMZ (x.x.x.x/27). At present, I have de0 and de1 as interfaces to our internal IP space (10.0.0.0/24) and the DMZ, respectively. However, this presents a problem (I think), in that I now have two interfaces onto the DMZ subnet: vlan0 and de1. (10.5.0.1) vlan1 |------| de0 (10.0.0.0/24) =======| |--------- vlan0 |______| (x.x.x.193) | | | de1 (x.x.x.194) Thanks, Graham _________________________________________________________________ MSN Photos is the easiest way to share and print your photos: http://photos.msn.com/support/worldwide.aspx To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message