From owner-freebsd-net@FreeBSD.ORG  Fri Apr 14 11:18:37 2006
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
X-Original-To: freebsd-net@freebsd.org
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 0436F16A401
	for <freebsd-net@freebsd.org>; Fri, 14 Apr 2006 11:18:37 +0000 (UTC)
	(envelope-from doconnor@gsoft.com.au)
Received: from cain.gsoft.com.au (cain.gsoft.com.au [203.31.81.10])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 04E6443D49
	for <freebsd-net@freebsd.org>; Fri, 14 Apr 2006 11:18:33 +0000 (GMT)
	(envelope-from doconnor@gsoft.com.au)
Received: from inchoate.gsoft.com.au (ppp222-116.lns2.adl4.internode.on.net
	[203.122.222.116]) (authenticated bits=0)
	by cain.gsoft.com.au (8.13.5/8.13.4) with ESMTP id k3EBISmm062756
	(version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO);
	Fri, 14 Apr 2006 20:48:29 +0930 (CST)
	(envelope-from doconnor@gsoft.com.au)
From: "Daniel O'Connor" <doconnor@gsoft.com.au>
To: freebsd-net@freebsd.org
Date: Fri, 14 Apr 2006 20:47:55 +0930
User-Agent: KMail/1.9.1
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="nextPart1270450.XrEKhFNLPO";
	protocol="application/pgp-signature"; micalg=pgp-sha1
Content-Transfer-Encoding: 7bit
Message-Id: <200604142048.20189.doconnor@gsoft.com.au>
X-Spam-Score: 0 () 
X-Scanned-By: MIMEDefang 2.56 on 203.31.81.10
Subject: How to use if_bridge
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 14 Apr 2006 11:18:37 -0000

--nextPart1270450.XrEKhFNLPO
Content-Type: text/plain;
  charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
Content-Disposition: inline

I am trying to use if_bridge with OpenVPN and I am having some trouble with=
=20
basic bridging.

I am testing it on my laptop with has an ath interface which uses WPA to a=
=20
Linksys WRT54G and then to a FreeBSD gateway.

I have tried both configuring ath0 with an IP as well as bridge0 but neithe=
r=20
work. It seems that none of the packets from ath0 appear on bridge0.
ie..
ath0: flags=3D8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 1500
        ether 00:90:96:c1:90:54
        media: IEEE 802.11 Wireless Ethernet autoselect (OFDM/48Mbps)
        status: associated
        ssid dons channel 6 bssid 00:13:10:9b:52:d4
        authmode WPA privacy ON deftxkey UNDEF TKIP 2:128-bit txpowmax 35
        protmode CTS burst roaming MANUAL bintval 100
bridge0: flags=3D8143<UP,BROADCAST,RUNNING,PROMISC,MULTICAST> mtu 1500
        inet 10.0.2.102 netmask 0xff000000 broadcast 10.255.255.255
        ether ac:de:48:67:74:b6
        priority 32768 hellotime 2 fwddelay 15 maxage 20
        member: ath0 flags=3D7<LEARNING,DISCOVER,STP>
                port 4 priority 128 path cost 55 blocking

When I run tcpdump..
[inchoate 20:35] ~ >sudo tcpdump -ni bridge0
Password:
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on bridge0, link-type EN10MB (Ethernet), capture size 96 bytes
20:35:30.586751 arp who-has 10.0.2.7 tell 10.0.2.102
[etc]

Whereas a tcpdump on ath0 shows no ARP packets..
I did the following to configure it..

killall devd [to stop it running dhclient]
/etc/rc.d/netif stop ath0
ifconfig bridge0 create
wpa_supplicant -i ath0 -c /etc/wpa_supplicant.conf
ifconfig bridge0 create
ifconfig bridge0 addm ath0
dhclient bridge0

I see the DHCPDISCOVER requests when I tcpdump bridge0 but they don't appea=
r=20
on ath0.

If I run dhclient on ath0 it works fine for normal traffic but I don't see =
any=20
ath0 traffic on bridge0. If I create a tap interface (eg cat /dev/tap0) and=
=20
add it to the bridge (ifconfig bridge0 addm tap0) it sees no packets either.

bridge0 appears to learn no addresses..
[inchoate 20:46] ~ >ifconfig bridge0 addr
[inchoate 20:46] ~ >

Am I missing something obvious?
(This is on -current as of 27 Mar)

PS please CC me as I am not subscribed to the list.

Thanks.

=2D-=20
Daniel O'Connor software and network engineer
for Genesis Software - http://www.gsoft.com.au
"The nice thing about standards is that there
are so many of them to choose from."
  -- Andrew Tanenbaum
GPG Fingerprint - 5596 B766 97C0 0E94 4347 295E E593 DC20 7B3F CE8C

--nextPart1270450.XrEKhFNLPO
Content-Type: application/pgp-signature

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (FreeBSD)

iD8DBQBEP4T85ZPcIHs/zowRAmA/AJ4x8HLMLNiK2/s3K2APsemec22h4wCdEdBt
RvpcnAhIQPLpKXKH4a3Xnco=
=cuMk
-----END PGP SIGNATURE-----

--nextPart1270450.XrEKhFNLPO--