Greetings.
My goal is to set up three vlan interfaces on a FreeBSD 4.6.2R box for use with an IDS
product.
Currently, the switch to which the BSD box is connected is set up properly with
tagging enabled for the respective VLANS.
I have a parent interface (fxp1) configured with no IP address.
If I use TCPDUMP on the parent interface to test whether or not the tagged packets are
being received I get something like:
#tcpdump -i fxp1
00:03:42.758875 802.1Q vlan#10 P0 ...
<lots and lots of VLAN10 stuff here>
Which to me implies that the packets are arriving at the BSD box appropriately tagged.
So, I configure a vlan with no IP address:
#ifconfig vlan0 vlan 10 vlandev fxp1 up
And when I do a:
#tcpdump -i vlan0
All I get are broadcasts... ARPs, ICMP to something.255, etc for VLAN10. All unicast
packets for VLAN10 are dropped.
Am I barking up a wrong tree? Is it possible to do this? Ideally, I'd like to have
the following:
+------+ +-------+
| FBSD | vlan0....VLAN#10 | |
| +-vlan1----VLAN#11-+ switch|
| IDS | vlan2....VLAN#12 | |
+--+---+ +-+-+-+-+
| | | |
| | | \__VLAN#10
\__iface with IP | \____VLAN#11
\______VLAN#12
Thanks for any input...
-ed
--
_______________________________________________
Talk More, Pay Less with Net2Phone Direct(R), up to 1500 minutes free!
http://www.net2phone.com/cgi-bin/link.cgi?143
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-questions" in the body of the message
