From mboxrd@z Thu Jan 1 00:00:00 1970 Date: Wed, 6 Oct 2010 15:17:48 -0700 From: Stephen Hemminger Message-ID: <20101006151748.603b0636@nehalam> In-Reply-To: References: Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Subject: Re: [Bridge] Bridge between switch and router + VLAN issue List-Id: Linux Ethernet Bridging List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , To: krunal patel Cc: bridge@lists.linux-foundation.org On Tue, 5 Oct 2010 13:46:31 +0530 krunal patel wrote: > Hi, > > There is one setup i am not able to complete. > > I am putting bridge between a VLAN aware switch and a router with VLAN's. > > All hosts are behind VLAN switch and their gateway is router. > All works well when there are no VLANs. > > br0 > |--------eth0 > |--------eth1 > > When VLAN tags are added and passed to bridge, for forwarded traffic > it works well. > > Now, if i want to do transparent proxy i have to create vlan devices > for eth0, eth1 and add them to bridge > > br0 > |--------eth0 > |--------eth1 > |--------eth0.2 > |--------eth1.2 > > Problem here is, on one side of bridge router is there which gives > same mac for different tagged and untagged traffic. So bridge only > learns one mac. So some tagged frame entered into bridge and if we do > transparent proxy on it. Frames generated by proxy to router goes > untagged or with different tag. > To do proxy and handle vlan tag i have to add vlan interfaces into > same bridge but vlan tags are not same. This isn't going to work because it creates a loop. eth0 sees both tagged and untagged frames and eth0.2 sees tagged frames In recent kernels vlan 0 is supposed to work as way to manage untagged frames. Maybe using: br0 |--------eth0.0 |--------eth1.0 |--------eth0.2 |--------eth1.2 --