Re: [Bridge] 802.1q packets - Stephen Hemminger

All of lore.kernel.org
 help / color / mirror / Atom feed

From: Stephen Hemminger <shemminger@vyatta.com>
To: Fulvio Ricciardi <fulvio.ricciardi@zeroshell.net>
Cc: bridge@linuxfoundation.org
Subject: Re: [Bridge] 802.1q packets
Date: Sat, 28 Jun 2008 11:31:54 -0700	[thread overview]
Message-ID: <20080628113154.67930358@extreme> (raw)
In-Reply-To: <48662985.39f.51db.729627875@webmaildh1.aruba.it>

On Sat, 28 Jun 2008 14:07:33 +0200
"Fulvio Ricciardi" <fulvio.ricciardi@zeroshell.net> wrote:

> 
> > Hi,
> > 
> > I notice that with the Kernel 2.6.25.9 the 802.1q VLAN
> > tagged packets larger than 1470 bytes are not forwarded at
> > all by a bridge.
> > I think there is a bad interaction between bridge and
> > netfilter codes. Any chance to a have a patch to solve
> > this problem that limit the possibility to use the Linux
> > bridges in a environment with VLANs?
> 
> With the following command it works:
> 
> echo 0 > /proc/sys/net/bridge/bridge-nf-call-iptables
> 
> but this disable the iptables support that it's important
> for obtaining complex bridge-firewall scenarios.
> 
> Regards
> Fulvio Ricciardi

Your iptables need to know about VLAN's as well.
I bet your default action is to DROP.

next prev parent reply	other threads:[~2008-06-28 18:31 UTC|newest]

Thread overview: 20+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2008-06-28 12:07 [Bridge] 802.1q packets Fulvio Ricciardi
2008-06-28 18:31 ` Stephen Hemminger [this message]
  -- strict thread matches above, loose matches on Subject: below --
2008-07-22 17:40 Fulvio Ricciardi
2008-07-22 19:35 ` Adam Osuchowski
2008-07-22 21:59   ` Stephen Hemminger
2008-07-23  3:51     ` richardvoigt
2008-09-20 20:47     ` Adam Osuchowski
2008-06-30 17:07 Fulvio Ricciardi
2008-06-30 22:42 ` richardvoigt
2008-07-01 15:10   ` Patrick McHardy
2009-03-17 14:58     ` Saikiran Madugula
2009-03-17 16:26       ` Saikiran Madugula
2008-06-30 16:58 Fulvio Ricciardi
2008-06-30  5:53 Leigh Sharpe
2008-06-28 21:17 Fulvio Ricciardi
2008-06-29  0:08 ` richardvoigt
2008-06-28 19:50 Fulvio Ricciardi
2008-06-28 21:06 ` richardvoigt
2008-06-28  4:56 Fulvio Ricciardi
2008-07-22 11:09 ` Adam Osuchowski

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=20080628113154.67930358@extreme \
    --to=shemminger@vyatta.com \
    --cc=bridge@linuxfoundation.org \
    --cc=fulvio.ricciardi@zeroshell.net \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.