From owner-freebsd-net@FreeBSD.ORG Mon Feb 25 09:17:12 2008 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id B519516A401 for ; Mon, 25 Feb 2008 09:17:12 +0000 (UTC) (envelope-from ccowart@rescomp.berkeley.edu) Received: from hal.rescomp.berkeley.edu (hal.Rescomp.Berkeley.EDU [169.229.70.150]) by mx1.freebsd.org (Postfix) with ESMTP id A189213C455 for ; Mon, 25 Feb 2008 09:17:12 +0000 (UTC) (envelope-from ccowart@rescomp.berkeley.edu) Received: by hal.rescomp.berkeley.edu (Postfix, from userid 1225) id 4FAEB3C0480; Mon, 25 Feb 2008 01:17:12 -0800 (PST) Date: Mon, 25 Feb 2008 01:17:12 -0800 From: Christopher Cowart To: freebsd-net@freebsd.org Message-ID: <20080225091712.GM88015@hal.rescomp.berkeley.edu> Mail-Followup-To: freebsd-net@freebsd.org MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="guYUoZW38XEuSLXo" Content-Disposition: inline Organization: RSSP-IT, UC Berkeley User-Agent: Mutt/1.5.16 (2007-06-09) Subject: vlan issues with 7.0-RC3 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 25 Feb 2008 09:17:12 -0000 --guYUoZW38XEuSLXo Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Hello, I have a mac mini running 7.0-RC3, which I'm trying to turn it into a router. I have a Linksys SRW2008 "fully managed" (via an IE only web interface, ick) switch.=20 Switch: Port 1 - Trunk vlans 10,60,98 - FreeBSD Box Port 7 - Access vlan 98 - Existing LAN (192.168.1.0/24) OpenWRT (192.168.1.1): WRT54G box on the Existing LAN FreeBSD Box: ifconfig msk0 up ifconfig vlan98 create vlan 98 vlandev msk0 inet 192.168.1.67/24 With this configuration, I can ping hosts on the other lan segment (Port 7). Arp and icmp seem to be quite happy. Unfortunately, I'm not having any luck with tcp and udp. Any attempt to ssh to OpenWRT or dig @OpenWRT hangs indefinitely. If I do a tcpdump, I see the SYN or A? leaving and absolutely no response returning. If I run a tcpdump on OpenWRT, I see no incoming traffic. When I try to connect *to* the FreeBSD box from the other lan segment, I continue to have problems. tcpdump shows the SYNs arriving via vlan98 and the FreeBSD box responding with SYN-ACK. OpenWRT receives the SYNACK. I disabled ipfw just to be sure (sysctl -w net.inet.ip.fw.enable=3D0), but it had no effect on the problem. If I connect the FreeBSD box to a vlan 98 access port and assign the address to msk0, my connectivity problems go away. This leads me to believe that the firewall on OpenWRT is not the problem and the problem is related to vlans. Thinking it was a problem with the not-so-cheap Linksys POS (bitterness about the IE web interface again), I plugged my MacBook (running Leopard, not FreeBSD) into the trunk port. Running the ifconfig commands above (s/msk0/en0/), I got up and running without any problems. This causes me to suspect the FreeBSD box. Does anyone have any idea what's going on here? Any suggestions for further troubleshooting? Thanks, --=20 Chris Cowart Network Technical Lead Network & Infrastructure Services, RSSP-IT UC Berkeley --guYUoZW38XEuSLXo Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4 (FreeBSD) iQIVAwUBR8KHmCPHEDszU3zYAQIYsA//Y+rhokPJtQW2V6RP+UWN2RD2N1nC7Sf+ WDWINQvjGIMLrtCX0r6DrgPIIDxHDd3uSBDBSoqH9rI8GMGJhUfA2POvY/mv4aYU AegMfo/ms8a9iY/82T7017/n2VJBvvwgW3Our8HBL4q90iqOyx9hB+KARZ3CGMR7 7YLauH1UGmGYU6HjIPcUlGc5tOvZxxiGdvb/ZixkG4l3t4V0O3jsxFWlCt/VGpme 4Yos1jh6Tt0AL7PRufnH63HO3IlWapU+XNBu/iKGwU022FpUEgw4eldvt3FcS/Nb 9vFp5w2E6B5Hgqw1ccwBQ1Swfuu1Zaar4OeSTUqV3yNcQQjopFhZFHRmHfktJg3J S6wLuHs6G1cwTLn7zRHPrQUFwdF0qI+JrmknGBGTVTCR9RRYmZ0Dy2d5rBS4m70d EK/bKV1fA2+95lnL20b472aNHib1SNizfnBvEPPWqVAY8p7lh8YbIBtooZqsVNqP I/B+UA4oyHW5//MyE2d0mLKKARyCj2lpbG8aJdUO/2G+d8qZ3Bnlb/rWv6drB1XD ub6PsVB/MPRMczq2vD5rtEMGJa61z1nF5ihzfUOZzHR4apD1LZyipMiNkw+HdaHx 3qmArKfbcfwBHkHQrntx9sKB3F1tKrZidz6z7dsI/T8o01NlPl34hy8FKp3NPJKo nsZAjhJ3zIk= =QhN1 -----END PGP SIGNATURE----- --guYUoZW38XEuSLXo--