I have the following scenario
Internet Access
|
|
UserPortal AAA Device
|
|
|
|
Cisco CMTS Cable Modem Router
|
|
Cable Modem Cloud
The issue we have is that the UserPortal device is a Linux box and all
the traffic that will come from the Cable modem clients will be tagged
with VLANs. The UserPortal can't be configured with all the VLAN
interfaces because some sites will have close to 2000 VLANs. So I ran
across ebtables and brctl and it sounds like it might be able to solve
my issue. This is the topology I am thinking might work
Internet Access
|
|
UserPortal AAA Device
|
|
Linux Bridge/ebtables
|
|
Cisco CMTS Cable Modem Router
|
|
Cable Modem Cloud
I am thinking that the two interfaces on the Linux box will be bridged
(in transparent mode) and when traffic passes through the linux box
the vlan 802.1q tag can be removed and then the traffic goes to the
UserPortal device without issue. And when the traffic comes back from
the UserPortal to the Cisco CMTS Cable Modem Router the Linux Bridge
will be able to send the traffic to the client that initiated the
conversation in the first place.
Is my thinking correct? Will this work? What all do I need to be
aware of and are there any current examples that point to what I am
trying to do??? I am very new to netfilter and ebtables (I found out
about it last night). I have a project that is very close to failing
unless we can find some type of layer 2 solution.
Any help or pointers are appreciated.
--
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
