[Bridge] MAC learning and VLAN

Joakim Tjernlund joakim.tjernlund at transmode.se
Wed Aug 19 10:07:13 PDT 2009


Benny Amorsen <benny+usenet at amorsen.dk> wrote on 19/08/2009 18:40:10:
>
> Joakim Tjernlund <joakim.tjernlund at transmode.se> writes:
>
> > trying to do private VLAN, http://tools.ietf.org/html/draft-sanjib-private-vlan-10,
> > using ebtables. It does not seem to be enough to only filter
> > pkgs. Isolated port are special and, as I understand it, they only
> > receive pkgs from the uplink via the primary VLAN and only
> > TX onto the isolated VLAN on the uplink(forget about other ports, it is
> > the uplink that is the problem)
>
> You are trying to make private VLAN's, and at the same time you're
> mixing in 802.1q tagging... I think you should start with making
> everything work using physical interfaces only.

ehh, 802.1q tagging is required for PVLAN. I have one uplink
to another switch. You have to treat the Isolated/Primary VLANs
especially though.



More information about the Bridge mailing list