> In 5.3.0, we separated the default VLAN and > the native VLAN. Prior to 5.3.0, the default VLAN is the same as the > native VLAN. In this case, defining the VSWITCH to default to VLAN 147 > means that 147 is the native VLAN (or untagged set). Most likely, the > OSA card is plugged into an access port on the physical switch and traffic > coming into the VSWITCH for 147 is not tagged. Once you change the > default on the VSWITCH that untagged traffic is associated with the new > default (which does not equal 147) and is then not delivered to the guest > (granted VLAN 147). A conversation with your networking folks is > probably in order. In most situations, we recommend that if you want to > use VLANs on your VSWITCH plug your OSA card into a trunk port on the > physical switch. Then define your VSWITCH to default to the native VLAN > id of the physical switch.
Huh? One more time, in very small words, please.... As I understand it, the rules are: If the switch port is defined as access mode (IOS "switchport mode access"), packets with tags presented are either: 1) stripped of the tag and the switch inserts the correct tag as per port definition, or 2) if the tag does not match the defined tag for the port, the packet is dropped. It's the straitjacket mode; you can't get out of the box the network designer built. If the switch port is defined as trunk mode (IOS "switchport mode trunk"), packets must already have tags assigned, and the switch either passes the tag as is if it matches the permitted tags for that port, or drops the packet if the tag does not match any of the permitted VLANs for that port. If you are using untagged traffic, you should always connect to an access port, and the default VLAN should never appear, because the stack should do no tagging at all (the switch will just destroy it, so there's really no point in doing tagging at all). If you are doing tagging, you should be connected to a trunk port, and any traffic coming out of that OSA should have appropriate tags already assigned by the stack. Do I misunderstand you? -- db ---------------------------------------------------------------------- For LINUX-390 subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390
