From owner-freebsd-net@freebsd.org Fri May 20 06:30:21 2016 Return-Path: Delivered-To: freebsd-net@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 7E2B0B41F01 for ; Fri, 20 May 2016 06:30:21 +0000 (UTC) (envelope-from poczta@aquaz.eu) Received: from mail-io0-x22e.google.com (mail-io0-x22e.google.com [IPv6:2607:f8b0:4001:c06::22e]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 514ED1BE6 for ; Fri, 20 May 2016 06:30:21 +0000 (UTC) (envelope-from poczta@aquaz.eu) Received: by mail-io0-x22e.google.com with SMTP id 190so135264077iow.1 for ; Thu, 19 May 2016 23:30:21 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=aquaz-eu.20150623.gappssmtp.com; s=20150623; h=mime-version:date:message-id:subject:from:to; bh=dQ30tdPA85x8+OiCYiPpxF3VvIbuwG4QRng3IEHBrao=; b=hjvfO4hOf5E7M+C46CnX5MeLtrCbPLz6dF4cibXnDQppbkrHks/8xuOTNfP2rYHBUc kvScMmuiGnn3JYxcou4+/6s37VHoKEgT6KBvye7a0gNoQBvybCF1lk2DJv7p2J+X0yO5 /vIzk9Ycb9sVmqHx+gHDCrM10wODzv+m7CLXbcK0vl8KFN14ACciWn/YEk4b7Mbk8umx V+Wd54gMHwMrxF58VL2vEgyWbVqrw2WtqFLZPxgOOCF/zL/vwWuB2R1DL/oGO6CeIacw cHG7+GAl/fp4ysRG+rNXhQtUA8VotB3kLzZKpGNzzRPvryU+EZNUx9+9nAHED3lPHmTU 9JGg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:date:message-id:subject:from:to; bh=dQ30tdPA85x8+OiCYiPpxF3VvIbuwG4QRng3IEHBrao=; b=MxzFEuMNhY5xcCxEKf3HiCIVxDw5/LJEa7fNLlHogVNvS6mtVzAUctzIB7GRCEBv10 mExxkYw7JbSCTbixlif8BV6cCztxf+k1gIGWKda29MhgATwj7FGvG9MgH+y8lwAxaSnA pwNcJizCoL3Aav0104aWgjOGKcyRCRTUpFP2hqd8vJCqcK6/K3BZU0+pJ0uKVQqknFyc cNBzV/p29uPa3PbTWaTiAXzcMvDsPDg3wZwFlhkqL0A893bd2g9Bpa48WwZCPQtK8CEa QFe4aS/aMv2YfvXS6/ArXkQEfC1yHewzLyGxwohez+5oV/uGCNtS6e1xSnmM0SYxZhhd JvLA== X-Gm-Message-State: AOPr4FX6MBw+RxIqruRHMgG1/4Mzt3xy4nbLF4yEwaUlj8RAxte3v94GI3NaUnuBcPFqlU5yfXF6opjQmJmAGA== MIME-Version: 1.0 X-Received: by 10.107.182.137 with SMTP id g131mr1483953iof.27.1463725820657; Thu, 19 May 2016 23:30:20 -0700 (PDT) Received: by 10.107.137.219 with HTTP; Thu, 19 May 2016 23:30:20 -0700 (PDT) X-Originating-IP: [5.135.186.11] Date: Fri, 20 May 2016 08:30:20 +0200 Message-ID: Subject: Bridge interface and ARP traffic From: Aqz To: freebsd-net@freebsd.org Content-Type: text/plain; charset=UTF-8 X-Content-Filtered-By: Mailman/MimeDel 2.1.22 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.22 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 20 May 2016 06:30:21 -0000 Hello, I have a very strange issue with passing ARP traffic through bridge interface. I'm using FreeBSD 10.3-REL VMWare virtual machine as bridge between two networks using the same IP address space. Bridge interface doesn't have IP address assigned so it acts more like a switch between those two virtual networks - let's call them NET and PUB. Gateway for our network is in NET vlan, all the virtual machines are in the PUB vlan. Traffic passes through this bridge, but there are few problems. I have to manually add static ARP table entries for gateway on all the machines in PUB network - I can see ARP broadcasts from machines asking where's the gateway, and the reply but only on one of bridged interfaces - the one from NET side. The response is not visible on bridge interface, nor the PUB vlan interface. Also, when I try to ping a machine that's in NET network from PUB network all network traffic suddenly stops, even when I'm pinging some nonexistent host. I have to use virtual console and ping for ex. DNS server, or any internet host to make traffic start again. I'm not sure what I'm doing wrong - I've been using a similar configuration before (with physical machines). Here's my ifconfig output http://aquaz.eu/bridgeifconfig.txt -- Wojtek www.aquaz.eu