Date: Thu, 10 Nov 2005 12:49:03 +0000 From: Brian Candler <B.Candler@pobox.com> To: Jon Otterholm <jon.otterholm@ide.resurscentrum.se> Cc: freebsd-net@freebsd.org Subject: Re: arp-proxy Message-ID: <20051110124903.GB67086@uk.tiscali.com> In-Reply-To: <1131541588.996.13.camel@localhost.localdomain> References: <1131541588.996.13.camel@localhost.localdomain>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, Nov 09, 2005 at 02:06:28PM +0100, Jon Otterholm wrote:
> I want to create a bridge-interface (if_bridge) with a bunch (500+) of
> sub-interfaces (vlan) as members. All members of the bridge should be
> able to "talk" to each other but MAC-addresses must be isolated to their
> "own" vlan.
That doesn't really make any sense to me, can you give a concrete example of
how it should behave? And/or a higher-level description of what it is you're
actually trying to achieve?
Note that if the VLANs are *bridged* together then:
(1) they form a single broadcast domain. A broadcast packet on any one VLAN
will be forwarded to all other VLANs
(2) a unicast packet to MAC address XX:XX:XX:XX:XX:XX will be forwarded only
to the VLAN which has that node, as long as the forwarding table knows
where it is (if not, it will be forwarded to all VLANs)
So bridging VLANs really just collapses them back into a single LAN, which
means you shouldn't have set up any VLANs in the first place :-(
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20051110124903.GB67086>