[Bridge] Problem Bridging VLANs

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Hi bridge list:
Bart de Schuymer suggested that this question might be better placed on 
this list rather than in the ebtables area.  So here it is :
=================================================================
Hi listers:

    I am a relative Penquin Newcomer, and I am (therefore?) encountering 
problems trying to setup a simple bridge/firewall between two vlans 
sharing portions of the same subnet, x.y.z.0/24.  The VLANs are created 
and managed by a campus wide arrangement of Nortel Baystack 450's. The 
bridge machine has a "stock kernel" 2.6.0-test9, and two  3Com 905B  
nics enslaved to a single bridge.   There are no rules installed yet, in 
either ip- or ebtables.  The current network is on Port 1(eth0), and a 
portion is moved to the NewVLAN on Port 2 (eth1)

Extent Network Vlan -->  Port1(eth0)[BridgeMachine]Port2(eth1) --> 
NewVLAN network

    Problem:
    The firewalled side of the bridge (Port2, eth1) consistently moves 
from "listening state" to "blocking state" and stays there. No 
connections can be made across the bridge.  However, This seems to occur 
only when the nic is sharing an IRQ.  
    If the IRQ question is circumvented by fiddling with startup, a pair 
of unique IRQs can be obtained for the nics.  Then both Ports of the 
Bridge enter Forwarding state. 
    But even in this case, when the bridge appears to be forwarding 
traffic to both nics, (as seen by tcpdump), pings fail to reach across  
the bridge.  Pings succeed when both sending and receiving hosts are on 
the same side of bridge.   A SHOWMACs command shows primarily MACs on 
the original network side (Port 1).  Only the bridge  MAC for eth1 and 
the MAC of the 450 Switch show in the list,.  None of the MACS for the 
hosts moved into NewVLAN show up at all.

    What do I need to successfully move traffic across the bridge?

Thanks in advance

Patrick Burr
systems Administrator
604 822-8932
Woodward IRC, Room 109
College of Health Disciplines
UBC

Don't send me any attachment in Micro$oft (.DOC, .PPT) format please
 Read <http://www.fsf.org/philosophy/no-word-attachments.html>
Preferable attachments: .PDF, .HTML, .TXT
 Thanx for adding this text to Your signature
[Index of Archives]     [Netdev]     [AoE Tools]     [Linux Wireless]     [Kernel Newbies]     [Security]     [Linux for Hams]     [Netfilter]     [Bugtraq]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux RAID]     [Linux Admin]     [Samba]     [Video 4 Linux]

  Powered by Linux