From: Jesse Gross <jesse@nicira.com>
To: Dominique Martinet <rnfhrznznaq.tf@noclue.notk.org>
Cc: netdev@vger.kernel.org
Subject: Re: bnx2 vlan issue
Date: Fri, 17 Jun 2011 09:47:27 -0700 [thread overview]
Message-ID: <BANLkTinPQSB_Jc5xGL=pSLekun4LZjbGfA@mail.gmail.com> (raw)
In-Reply-To: <loom.20110617T075702-107@post.gmane.org>
On Thu, Jun 16, 2011 at 11:10 PM, Dominique Martinet
<rnfhrznznaq.tf@noclue.notk.org> wrote:
> Hi,
>
> Jesse Gross <jesse <at> nicira.com> writes:
>> On Thu, Mar 24, 2011 at 5:26 PM, Seblu <seblu <at> seblu.net> wrote:
>> > Maybe i was not enough clear. It seems to me that new behaviour, with
>> > vlan on top of bridge rather than above interface in bridge is not
>> > functional.
>> > In other words, i cannot use vlan and bridge together in 2.6.38 (with
>> > e1000e).
>>
>> Sorry, I misunderstood what you were saying before. Can you try and
>> see where the packets are getting lost or improperly handled by
>> running tcpdump on the various interfaces? For example, check that
>> packets are coming in with tags on the physical interfaces, have tags
>> on the bridge interface, no tag on the vlan interface, etc.
>
> I think I ran into the same problem, and my workaround for this was to add
> a vlan do the bridge and then add the vlan'ed bridge to another bridge, i.e.
> (since I can't draw, commands will be better :P)
>
> brctl addbr br0
> brctl addif br0 eth0
> ip link add link br0 name br0.42 type vlan id 42
> ip link set br0.42 up
>
> brctl addbr br_42
> brctl addif br_42 br0.42
>
> and then I could put VMs in br_42 which got network "as expected"
> before, I used to have br_42 with eth0.42 in it, so it is just one more
> step..
> What bothers me is that I also want to put VMs in br0, and it does work,
> but this bridge also sees all the tagged data - isn't there a way to just
> "pick" the untagged network?
You are bridging the VMs to the physical network, so it is expected
that they will see all traffic. That said, you could use ebtables to
only take vlan 0, similar to if you only wanted them to see packets to
their MAC address and not flooding.
> My other question is that I'm not certain if that's the expected way to
> use the new behaviour, if not I wouldn't mind light shining from above :)
Yes, that's the intended behavior and correct usage.
prev parent reply other threads:[~2011-06-17 16:47 UTC|newest]
Thread overview: 13+ messages / expand[flat|nested] mbox.gz Atom feed top
2011-03-17 14:51 bnx2 vlan issue Seblu
2011-03-17 18:02 ` Seblu
2011-03-17 19:16 ` Jesse Gross
2011-03-17 23:22 ` Seblu
2011-03-22 2:05 ` Jesse Gross
2011-03-22 10:59 ` Seblu
2011-03-22 23:19 ` Jesse Gross
2011-03-24 12:58 ` Seblu
2011-03-24 19:55 ` Jesse Gross
2011-03-25 0:26 ` Seblu
2011-04-02 2:01 ` Jesse Gross
2011-06-17 6:10 ` Dominique Martinet
2011-06-17 16:47 ` Jesse Gross [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to='BANLkTinPQSB_Jc5xGL=pSLekun4LZjbGfA@mail.gmail.com' \
--to=jesse@nicira.com \
--cc=netdev@vger.kernel.org \
--cc=rnfhrznznaq.tf@noclue.notk.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).