From owner-freebsd-questions@FreeBSD.ORG Tue Mar 17 09:03:18 2009 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 0E88C106564A for ; Tue, 17 Mar 2009 09:03:18 +0000 (UTC) (envelope-from nvass9573@gmx.com) Received: from mail.gmx.com (unknown [213.165.64.42]) by mx1.freebsd.org (Postfix) with SMTP id 58D138FC0A for ; Tue, 17 Mar 2009 09:03:17 +0000 (UTC) (envelope-from nvass9573@gmx.com) Received: (qmail invoked by alias); 17 Mar 2009 09:03:15 -0000 Received: from adsl42-14.ath.forthnet.gr (EHLO [192.168.1.5]) [77.49.73.14] by mail.gmx.com (mp-eu001) with SMTP; 17 Mar 2009 10:03:15 +0100 X-Authenticated: #46156728 X-Provags-ID: V01U2FsdGVkX1/ALsBSjinATp78jXSnMJVkevO4gQwWPA0qQNMGo8 uEtQ0CB0GRJX6Z Message-ID: <49BF674C.80209@gmx.com> Date: Tue, 17 Mar 2009 11:03:08 +0200 From: Nikos Vassiliadis User-Agent: Thunderbird 2.0.0.19 (Windows/20081209) MIME-Version: 1.0 To: Peter Cornelius References: <20090315163416.257870@gmx.net> In-Reply-To: <20090315163416.257870@gmx.net> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Y-GMX-Trusted: 0 X-FuHaFi: 0.5 Cc: freebsd-questions@freebsd.org Subject: Re: FreeBSD Networking Questions / vlan, lagg, routing, FIBs, ezjail X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 17 Mar 2009 09:03:18 -0000 Peter Cornelius wrote: > - On my router, why do I have to set the base interface to > promiscuous mode in order to get packets from/to my vlans through? Am > I doing something wrong? Are there any implications of working this > way? Hm, the promiscuous mode must be needed for the vlan driver. But you don't have to set it. I can't think of any implication in a switched ethernet environment. It is just that every frame received from the cable is offered to the operating system for further evaluation. In a switched ethernet environment every frame that will reach your card will be either: 1) for you. 2) a broadcast frame. 3) a multicast frame. Things would be very different, if your system was connected to a hub where a multitude of frames(every frame on the ethernet) would be interrupting the kernel for no reason. - On my "server", is there any way to set up individual > "default" routes (to the router) for each of the vlans short of > tucking the ezjails behind the vlan interfaces each into their own > FIB (btw,. has anyone ever done that?)? Yes, from FreeBSD-7.1 and beyond, there is support for up to 16 routing tables. Use the setfib command to select routing table for outgoing connections. Something like, "setfib 10 jail $JAILOPTSANDARGS", in the jail case. You have to compile a kernel with the option ROUTETABLES=n. Read the message for revision 1.1485 from here: http://www.freebsd.org/cgi/cvsweb.cgi/src/sys/conf/NOTES Nikos