Hi,
Is there any support at all for Cisco's PVST+ in Linux (kernel and
brctl) ? Please read on for what I'm trying to accomplish:
I'm trying to set up a redundant pair of filtering bridges connected
to two cisco 6500 hybrid L2/L3 switch/routers. At the edge of the
network I have a bunch of untrusted devices on a layer-2 subnet, and
the idea is to offer selective access to the subnet's default router
on the trusted side of the network. Here's a quick picture:
+---------------+ +---------------+
| .2 | .1 (HSRP) | .3 |
+-------+ - - - - - - - +-----------------+ - - - - - - - +-------+
| X | | vlanX (trusted) | | X |
Linux | Cisco | | Cisco | Linux
Bridge | 6500 | | 6500 | Bridge
| Y | | vlan Y | | Y |
+-------+ - + - + - + - +-----------------+ - + - + - + - +-------+
| | | | | (untrusted) | | | | |
+---+---+---+---+ +---+---+---+---+
| | | | | |
| | | +-------------+ | | |
| | +-----+ edge switch +-----+ | |
| | +-------------+ | |
| | | |
| | +-------------+ | |
| +---------+ edge switch +---------+ |
| +-------------+ |
| |
| +-------------+ |
+-------------+ edge switch +-------------+
+-------------+
The ciscos use pvstp+, and the problem is that when a Vlan-X BPDU is received
on a Vlan-Y (sub)interface, that subinterface is shut down due to a perceived
misconfiguration.
Is Linux equipped to handle this (by, e.g., translating the BPDUs received
over vlan X into BPDUs that would be appropriate to forward into vlan Y, and
vice versa) ?
If not, any other ideas on how to accomplish redundancy would be much
appreciated. The topology prevents me from inserting the linux bridge in
a way that would allow bridging between the same vlan on two different
physical interfaces.
Thanks much,
--Gabriel
_______________________________________________
Bridge mailing list
Bridge@xxxxxxxxxxxxxxxxxxxxxxxxxx
https://lists.linux-foundation.org/mailman/listinfo/bridge
