Hello Bassem Armanyous, Sunday, March 16, 2003, 13:44:26, you wrote: BA> There seems to be a problem with netfilter when having VLAN 802.1q bridges BA> running alongside with non-802.1q (untagged) bridges (Both types binding the BA> same physical interfaces) BA> This has been previously indicated by Nick Fedchik BA> (http://www.math.leidenuniv.nl/pipermail/bridge/2002-May/001907.html) One important comment - now I know that Cisco Catalyst is unable to keep a trunk with various frame types (802.1Q with any other (IP, ARP)). So keep Your attention on this issue before build a vlan-aware bridge with Cisco switches.
BA> Do I need to upgrade the kernel? BA> are there any patches that fix this problem? AFAIK nothing. I think it should be option to bridge non-802.1q frames via ordinary (non-vlan-aware) bridge. Also You may try to apply br-nf-bds patch (by Bart De Schuymer) for 2.4.20 (or You can use devel kernel => 2.5.50 without any patches), than to review the "ebtables/iptables interaction on a Linux-based bridge" article. I wrote a little extension for ebtables to match 802.1q frames by TCI fields (VID or priority). -- Best regards, Nick Fedchik FNM3-RIPE R.E.D. Team Leader/UkrSat ISP _______________________________________________ Bridge mailing list [EMAIL PROTECTED] http://www.math.leidenuniv.nl/mailman/listinfo/bridge
