From owner-freebsd-net@freebsd.org  Fri Apr 27 16:17:22 2018
Return-Path: <owner-freebsd-net@freebsd.org>
Delivered-To: freebsd-net@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id A06F4FAC33F
 for <freebsd-net@mailman.ysv.freebsd.org>;
 Fri, 27 Apr 2018 16:17:22 +0000 (UTC)
 (envelope-from eugen@grosbein.net)
Received: from hz.grosbein.net (unknown [IPv6:2a01:4f8:d12:604::2])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client CN "hz.grosbein.net", Issuer "hz.grosbein.net" (not verified))
 by mx1.freebsd.org (Postfix) with ESMTPS id 04BEB7DEEE
 for <freebsd-net@freebsd.org>; Fri, 27 Apr 2018 16:17:21 +0000 (UTC)
 (envelope-from eugen@grosbein.net)
Received: from eg.sd.rdtc.ru (root@eg.sd.rdtc.ru [62.231.161.221] (may be
 forged))
 by hz.grosbein.net (8.15.2/8.15.2) with ESMTPS id w3RGHCUa050474
 (version=TLSv1.2 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT);
 Fri, 27 Apr 2018 18:17:13 +0200 (CEST)
 (envelope-from eugen@grosbein.net)
X-Envelope-From: eugen@grosbein.net
X-Envelope-To: ab.tariq90@gmail.com
Received: from [10.58.0.4] ([10.58.0.4])
 by eg.sd.rdtc.ru (8.15.2/8.15.2) with ESMTPS id w3RGH4EO049932
 (version=TLSv1.2 cipher=DHE-RSA-AES128-SHA bits=128 verify=NOT);
 Fri, 27 Apr 2018 23:17:04 +0700 (+07)
 (envelope-from eugen@grosbein.net)
Subject: Re: NETGRAPH- bridge vlans using netgraph help
To: Abdullah Tariq <ab.tariq90@gmail.com>
References: <CAPFxuwQOBkGTHZbGfJz=-fUW8M+QGOpTM9T+-RO6H4fWcGEtqA@mail.gmail.com>
 <5AE216DC.7010905@grosbein.net>
 <CAPFxuwSEDTNhfn1+1nXPAC6skJt+dAych10FN9bwwBVdqevO2w@mail.gmail.com>
 <5AE33513.1000001@grosbein.net>
 <CAPFxuwRceDDoTw-4EohRdjUMSE-YN4YKWhbObuvEpxzEWOh2_A@mail.gmail.com>
 <5AE34754.6040905@grosbein.net>
 <CAPFxuwQ5TwZnnW+1TT7urq_0pgb=sM_VwH4x0eq0363MCdb7hw@mail.gmail.com>
Cc: "freebsd-net@freebsd.org" <freebsd-net@freebsd.org>
From: Eugene Grosbein <eugen@grosbein.net>
Message-ID: <5AE34CFA.7000207@grosbein.net>
Date: Fri, 27 Apr 2018 23:16:58 +0700
User-Agent: Mozilla/5.0 (Windows NT 6.3; WOW64; rv:38.0) Gecko/20100101
 Thunderbird/38.7.2
MIME-Version: 1.0
In-Reply-To: <CAPFxuwQ5TwZnnW+1TT7urq_0pgb=sM_VwH4x0eq0363MCdb7hw@mail.gmail.com>
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 8bit
X-Spam-Status: No, score=2.2 required=5.0 tests=BAYES_00, LOCAL_FROM, RDNS_NONE,
 SPF_PASS autolearn=no autolearn_force=no version=3.4.1
X-Spam-Report: * -0.0 SPF_PASS SPF: sender matches SPF record
 * -2.3 BAYES_00 BODY: Bayes spam probability is 0 to 1%
 *      [score: 0.0000]
 *  1.9 RDNS_NONE Delivered to internal network by a host with no rDNS
 *  2.6 LOCAL_FROM From my domains
X-Spam-Level: **
X-Spam-Checker-Version: SpamAssassin 3.4.1 (2015-04-28) on hz.grosbein.net
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.25
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-net>,
 <mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net/>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-net>,
 <mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 27 Apr 2018 16:17:22 -0000

27.04.2018 22:57, Abdullah Tariq wrote:

>     And please do not top-post and reply to the list, not privately. Thank you.
> 
> sorry for that.
> 
>      
>     They do but that's not what you need. You deal with untagged frames on igb5,
>     so do not create any vlan on top on igb5 but use it directly:
>     ifconfig bridge10 create addm igb5 addm vlan3 up
> 
> 
> so if i need 2 ports with same vlan tags to communicate with each other
> i create 2 bridges
> ifconfig vlan2 create vlan 5 vlandev igb5
> ifconfig vlan3 create vlan 5 vlandev igb6
> ifconfig bridge10 create addm igb5 addm vlan3 up
> ifconfig bridge11 create addm igb6 addm vlan2 up
> 
> is this the right way?

No. If you have two ports that should carry untagged frames and form single vlan
and this vlan has no other ports carrying tagged frames, then
this vlan effectively has *no* tag number, or better say, its tag number does not matter.

In that case, do not create any vlan interfaces for the vlan at all but bridge ports directly:

ifconfig bridge10 addm igb5 addm igb6