Ïðîáëåìû ñ tagged vlan (802.1q)

**Oleg** · 11-03-2008, 07:15

Òàê ðàáîòàòü íå áóäåò. Íàïèñàòü ìîæíî ÷òî óãîäíî, òîëüêî ê ñâèò÷ó ýòà êîìàíäà îòíîøåíèÿ íå èìååò.

IGMP snooping áûâàåò ðàçíûé: ñîôòîâûé äëÿ ñîôòîâîãî áðèäæà, æåëåçíûé äëÿ æåëåçíîãî. Âðîäå íàø ñâèò÷ ïîääåðæèâàåò ÷òî-òî â æåëåçå, íî âîçìîæíî åìó òðåáóåòñÿ ïîìîùü ñíàðóæè äëÿ ïîëíîöåííîé ðàáîòû ýòîãî ìåõàíèçìà. ß íå ïðîâåðÿë.

**avryabov** · 11-03-2008, 07:35

Originally Posted by Oleg

Òàê ðàáîòàòü íå áóäåò. Íàïèñàòü ìîæíî ÷òî óãîäíî, òîëüêî ê ñâèò÷ó ýòà êîìàíäà îòíîøåíèÿ íå èìååò.

Áëèí. Ïî ÷åìó íå áóäåò-òî?
âîò â òàêîé êîíôèãóðàöèè:

nvram set vlan0tag=48
nvram set vlan0ports="1 2 5*"
nvram set vlan1ports="0 5"
nvram set vlan2ports="0t 4"
nvram set lan_ifnames="vlan48 eth1"
nvram set wan_ifnames="vlan49"
nvram set wan_ifname="vlan49"

íà vlan 49 êðîìå ñàìîãî òðàôôèêà wan ÿâíî ïðèõîäÿò è òàãèãîâàíûå âòîðûì óðîâíåì 40 è 50 vlan'û êîòîðûå ïîòîì äðîïàþòñÿ, èáî ñ íèìè íå÷åãî äåëàòü.
50-ûé ðàçáèðàåòñÿ ñâè÷îì, íî ÷òî íàì ìåøàåò ðàçáèðàòü 40-îé íå ñâè÷îì, à öåíòðàëüíûì ïðîöåññîðîì?
Äîáàâèòü vlan over vlan íà öåíòðàëüíîì ïðîöåññîðå è åùå îäèí ïðîñòîé âëàí òèïà:

nvram set vlan3ports="3 5"

à ïîòîì èõ çàáðèäæåâàòü äðóã íà äðóãà, êàê íàïðèìåð eth1 çàáðèäæåâàí íà vlan0.

òîãäà âõîäÿùèé vlan c tag 40 áóäåò çàâîðà÷èâàòüñÿ âòîðîé ðàç â tag 48
ðàçáèðàòüñÿ ñíà÷àëà îäèí ðàç â vlan0, ïîòîì âòîðîé ðàç ÷åðåç vlan over vlan ïîòîì öåíòðàëüíûì ïðîöåññîðîì ïåðåêèäûâàòüñÿ â vlan3 ñ tag 51 à òàì óæå ñâè÷îì íà 3-èé ïîðò.

À îáðàòíî - â îáðàòíîì ïðîöåññå.

Èçâðàùåíèå, ïîíÿòíîå äåëî, íî ïî÷åìó íå äîëæíî ðàáîòàòü-òî?

ß áû è ñàì ïîïðîáîâàë, òîëüêî íå äîãîíÿþ ïîêà, êàê nvram ïåðåìåííûå ðàçáèðàþòñÿ ïðè ñòàðòå ñèñòåìû.

**Oleg** · 11-03-2008, 08:16

Âû ïðåäñòàâëÿåòå ñåáå, ÷òî òàêîå vlan íà ôèçè÷åñêîì óðîâíå? Òàì íå áûâàåò âëîæåííîñòåé... Íà vlan49 íè÷åãî êðîìå íåãî íå ïðèõîäèò (ïðè÷¸ì òàì óæå âûðåçàí òàã).

Âû ïðîñòî ïîéìèòå, êàê ðàáîòàåò íàø ñâèò÷. vlan50 íå ïðîñòî òàê íà òðåòüåì ìåñòå îêàçàëñÿ. Ýòî çàïèñü â òàáëèöå ïîä íîìåðîì 2, â êîòîðóþ ñâèò÷ áóäåò ñìîòðåòü ïðè ïîëó÷åíèè ïàêåòà ñ òàãîì 50 è ðåøàòü ÷òî, ñ ýòèì ïàêåòîì äåëàòü. Íèêàêèì îáðàçîì vlan40 òàêèì îáðàçîì íå îáðàáîòàåòñÿ.

Óâèäåòü âñå òàãèðîâàííûå ïàêåòû (íó òîëüêî îïÿòü íå âñå, à òîëüêî äëÿ òåõ âëàíîâ, íà êîòîðûå ïîäïèñàí ïðîöåññîð) ìîæíî òîëüêî íà eth0. Ïðàâäà â òîé ïðîøèâêå, ÷òî ó Âàñ âõîäÿùèå ïàêåòû ïîêàçûâàþòñÿ íå âåðíî, íî ýòî ÿ ïîïðàâèë óæå.

**avryabov** · 11-03-2008, 08:20

Originally Posted by Oleg

Òàì íå áûâàåò âëîæåííîñòåé...

Íå ñëèøêîì õîðîøî ïðåäñòàâëÿþ.
Íî, òî÷íî íå áûâàåò?
http://en.wikipedia.org/wiki/IEEE_802.1Q

Double-tagging can be useful for Internet Service Providers, allowing them to use VLANs internally while mixing traffic from clients that is already VLAN-tagged. The outer tag comes first, followed by the inner tag. In such cases, an alternate TPID such as hex 9100, or even 9200 or 9300, sometimes may be used for the outer tag; however this is being deprecated by 802.1ad, which specifies 88a8 for service-provider outer tags. Triple-tagging is also possible.

**Oleg** · 11-03-2008, 08:24

Ãû-ãû. Çíà÷èò áûâàþò, íî íå ó íàñ.

**avryabov** · 11-03-2008, 08:39

Originally Posted by Oleg

Ãû-ãû. Çíà÷èò áûâàþò, íî íå ó íàñ.

Íå ñîâñåì ïîíÿë ïðèêîë.
È ïî÷åìó òàãèðîâàíûå ïàêåòû ìîãóò áûòü òîëüêî íà eth0?
Òåêóùåå ÿäðî ëèíóêñà íå ïîçâîëÿåò ðàçáèðàòü vlan êðîìå êàê íà eth0?
Ñâèò÷ ó ìåíÿ äîìà, ÿ òàì òàêè ïîïðîáóþ ïîýêñïåðåìåíòèðîâàòü. Ñ 50-òûì vlan'îì ïðàâäà.
Õîòÿ ÿ äî òîãî íè ðàçó áðèäæ íèãäå íå íàñòðàèâàë.

brctl addbr br1
brctl addif br1 vlan40
brctl addif br1 vlan51

ýòîãî áóäåò äîñòàòî÷íî äëÿ ñòàðòà áðèäæà?

**Oleg** · 11-03-2008, 09:30

Ïîòîìó ÷òî vlanX ñîçäà¸òñÿ íà îñíîâå eth0. Ïàêåòû ôèçè÷åñêè ïðèõîäÿò íà eth0, äàëüøå ñîçäàþòñÿ ëîãè÷åñêèå èíòåðôåéñû vlanX.

Ñ áðèäæåì âñ¸ òàê.

**ramyras** · 14-03-2008, 05:51

Originally Posted by Oleg

Ó íàøåãî ñâèò÷à íåò. Åìó ìîæíî óñòàíîâèòü íîìåð, ñîîòâåòñòâóþùèé 0-ìó âëàíó (âåðíåå ñòàðøèå áèòû), îñòàëüíûå áóäóò ïîäðÿä.

Íî, âðîäå ðåøåíèå åñòü. Âîçüìèòå ïîñëåäíþþ ïðåâüþ 8.22.

Äàëåå íóæíî âûïîëíèòü

nvram set vlan0tag=48
nvram set vlan0ports="1 2 3 5*"
nvram set vlan1ports="0 5"
nvram set vlan2ports="0t 4"
nvram set lan_ifnames="vlan48 eth1"
nvram set wan_ifnames="vlan49"
nvram set wan_ifname="vlan49"
nvram commit
reboot

Ïîñëå ýòîãî êàáåëü îò ïðîâàéäåðà â WAN, ïðèñòàâêó â LAN4.

robocfg òîæå îáíîâë¸í, äîëæåí ïîêàçàòü ïðàâèëüíûé êîíôèã.

íå âðóáèëñÿ â êîíôèã:
1. ÷òî çíà÷èò 5* è "0 5". Íà wl500G deluxe âñåãî 5 ïîðòîâ wan-0, lan 1-4 ?
2. 0t ýòî îñòàâèòü âëàí òàã íà wan'e?

ÑÏÑ

**avryabov** · 14-03-2008, 07:04

Originally Posted by ramyras

íå âðóáèëñÿ â êîíôèã:
1. ÷òî çíà÷èò 5* è "0 5". Íà wl500G deluxe âñåãî 5 ïîðòîâ wan-0, lan 1-4 ?
2. 0t ýòî îñòàâèòü âëàí òàã íà wan'e?

1. 5-ûé ïîðò, ýòî âíóòðåíèé ïîðò ñâè÷à êîòîðûé ïðèñîåäèíåí ê eth0.

ïðîùå âñåãî ïîíÿòü äåâàéñ êàê äâå ðàçíûå æåëåçêè - íåçàâèñèìûé ñâè÷ ñ 6-üþ ïîðòàìè, è ðîóòåð ñ 2-ìÿ.
ñâè÷ ïîñëåäíèì ïîðòîì ñ íîìåðîì 5 ïîäöåïëåí ê eth0 íà ðîóòåðå. À eth1 - ýòî wifi.

ïîðòû íà ñâè÷å ðàçäåëåíû vlan'àìè, ÷òîáû èõ ìîæíî áûëî èñïîëüçîâàòü ïî ëþáîìó íàçíà÷åíèþ.
vlan 0 çàáðèäæåâàí ê eth1 è ïîòîìó wifi óñòðîéñòâà âèäÿò è äðóãèå æåëåçêè, ïîäêëþ÷åííûå ê ïîðòàì ñâè÷à.

2. t - ýòî çíà÷èò ÷òî ýòîò ïîðò òàãèðîâàííûé, ò.å. ïàêåòû ïðèõîäÿùèå ñ äðóãèõ ïîðòîâ íàäî ñíà÷àëà òàãèðîâàòü, è òîëüêî
ïîòîì îòîñëàòü â ýòîò ïîðò. è ïðèõîäÿùèå èç ýòîãî ïîðòà ñíà÷àëà ðàçòàãèðîâàòü, è ïîòîì îòîñëàòü â äðóãèå ïîðòû.

À âîò ÷òî çíà÷èò * ÿ òàê è íå ïîíÿë. íàïèñàíî ignore, à ÷òî èìåííî èãíîðèðóåòñÿ - íå ÿñíî, òîëè ñàìà çâåçäî÷êà,
òîëè ïàêåòû ñ ýòîãî ïîðòà, òîëè íàîáîðîò, â íåãî. ìíîãîçíà÷íîñòü êàêàÿ-òî.

Originally Posted by Oleg

Ãû-ãû. Çíà÷èò áûâàþò, íî íå ó íàñ.

Äåéñòâèòåëüíî íå ó íàñ. Íå âûøëî â îáùåì. Ïî÷åìó - ÿ òàê è íå ïîíÿë. Âàðèàíòîâ - äîôèãà.
Ìîæåò ÿäðî ëèíóêñà íàäî ïàò÷èòü, ÷òîáû íå áûëî îøèáîê ïðè îáðàáîòêè âëîæåííûõ vlan
(íåñêîëüêî ðàç íàòûêàëñÿ íà ñîîáùåíèå ÷òî â 2.6.xx ÿäðå íàëîæåíû êàêèå-òî ïàò÷è äëÿ nested vlan)

Òîëè ñâèò÷ íå õî÷åò ïîâòîðíî òàãèðîâàòü ïàêåòû, õîòÿ íå ïîíÿòíî ñ ÷åãî ýòî, ðàçâå ÷òî êàê çàùèòà îò íåïðàâèëüíîé êîíôèãóðàöèè, òîëè
îí ïðîñòî íå õî÷åò ïåðåñûëàòü ïàêåòû íà 5-ûé ïîðò êîãäà ïðèñòàâêà ñ íóæíûì ìàêîì âèñèò íà 4-îì, íåñìîòðÿ íà òî ÷òî îíà â äðóãîì vlan.
Íå çíàþ. Ôàêò ïîëó÷àåòñÿ ÷òî äâå ðàçíûõ vlan 50 è 40 îäíîâðåìåííî ïîäöåïèòü íå óäàåòñÿ. Íó è ëàäíî. Îäíîãî òîæå õâàòèò.

**Oleg** · 14-03-2008, 07:42

Originally Posted by ramyras

íå âðóáèëñÿ â êîíôèã:
1. ÷òî çíà÷èò 5* è "0 5". Íà wl500G deluxe âñåãî 5 ïîðòîâ wan-0, lan 1-4 ?
2. 0t ýòî îñòàâèòü âëàí òàã íà wan'e?

ÑÏÑ

5é ïîðò - ïîðò ïðîöåññîðà. Ïî óìîë÷àíèþ îí âñåãäà òàãèðóåòñÿ (ïîýòîìó òàì íåò t), íî âñòðîåííûé çàãðóç÷èê íå óìååò ðàáîòàòü ñ vlanàìè, ïîýòîìó äëÿ íåãî ñòîèò çâ¸çäî÷êà, ÷òîáû îí íå òàãèðîâàë åãî. Ëèíóêñîâûé äðàéâåð çâ¸çäî÷êó èãíîðèðóåò.

Âàø êîíôèã:

nvram set vlan0ports="1 2 3 4 5*"
nvram set vlan1ports="0 5"
nvram set vlan6ports="0t 5"
nvram set vlan6hwname=et0
nvram commit

Ïîñëå ýòîãî ðîóòåð áóäåò âèäåòü vlan6 (ñêàæèòå ifconfig -a), Âàì îñòàíåòñÿ ïðèñâîèòü àäðåñ èíòåðôåéñó è çàïóñòèòü udpxy èëè igmpproxy (âñ¸ ýòî ìîæíî ñäåëàòü â post-boot).

Íå çàáóäüòå âçÿòü ïîñëåäíþþ ïðåâüþ âåðñèþ.

**ramyras** · 15-03-2008, 08:55

Originally Posted by Oleg

5é ïîðò - ïîðò ïðîöåññîðà. Ïî óìîë÷àíèþ îí âñåãäà òàãèðóåòñÿ (ïîýòîìó òàì íåò t), íî âñòðîåííûé çàãðóç÷èê íå óìååò ðàáîòàòü ñ vlanàìè, ïîýòîìó äëÿ íåãî ñòîèò çâ¸çäî÷êà, ÷òîáû îí íå òàãèðîâàë åãî. Ëèíóêñîâûé äðàéâåð çâ¸çäî÷êó èãíîðèðóåò.

Âàø êîíôèã:

nvram set vlan0ports="1 2 3 4 5*"
nvram set vlan1ports="0 5"
nvram set vlan6ports="0t 5"
nvram set vlan6hwname=et0
nvram commit

Ïîñëå ýòîãî ðîóòåð áóäåò âèäåòü vlan6 (ñêàæèòå ifconfig -a), Âàì îñòàíåòñÿ ïðèñâîèòü àäðåñ èíòåðôåéñó è çàïóñòèòü udpxy èëè igmpproxy (âñ¸ ýòî ìîæíî ñäåëàòü â post-boot).

Íå çàáóäüòå âçÿòü ïîñëåäíþþ ïðåâüþ âåðñèþ.

nerabotaet, nevizu Vlan6. Mozno utocnit konfig "nvram set vlan6hwname=et0"

Sorry cto ne kirilicei (na etom kompe netu)

P.S. gde mozno naidti doc na konfig?

**Vityok** · 29-03-2008, 21:01

Íà ÍÅÎ-ñåòè QWERTY, ïîñòàâèë ýòîò ñàìûé Ïðåìèóì, ïîñòàâèë ïðîøèâêó 1.9.2.7-9, ñäåëàë, êàê áûëî íàïèñàíî, íå ðàáîòàåò ïðèñòàâêà, îøèáêó 101 ïîêàçûâàåò. Ïî÷åìó? Èíåò è ÒÂ íà êîìïå ðàáîòàåò.
robocfg:

[admin@WL-001D60DFFAB5 root]$ robocfg show
Switch: enabled
Port 0: 100FD enabled stp: none vlan: 49 mac: 00:00:00:00:00:00
Port 1: 100FD enabled stp: none vlan: 48 mac: 00:00:00:00:00:00
Port 2: 100FD enabled stp: none vlan: 48 mac: 00:00:00:00:00:00
Port 3: 100FD enabled stp: none vlan: 48 mac: 00:00:00:00:00:00
Port 4: 100FD enabled stp: none vlan: 50 mac: 00:00:00:00:00:00
Port 5: 100FD enabled stp: none vlan: 0 mac: 00:00:00:00:00:00
VLANs: BCM5325/535x enabled mac_check mac_hash
0: vlan48: 1 2 3 5t
1: vlan49: 0 5t
2: vlan50: 0t 4
3: vlan51:
4: vlan52:
5: vlan53:
6: vlan54:
7: vlan55:
8: vlan56:
9: vlan57:
10: vlan58:
11: vlan59:
12: vlan60:
13: vlan61:
14: vlan62:
15: vlan63:

**Oleg** · 30-03-2008, 08:06

Â Íåî-ñåòè íè÷åãî ïîäîáíîãî äåëàòü íå íàäî. Ñäåëàòü íàäî êàê â ôàêå íàïèñàíî.

**Vityok** · 30-03-2008, 16:02

Âñåì áîëüøîå ñïàñèáî, âñ¸ çàðàáîòàëî îòëè÷íî

nvram set vlan0ports="1 2 3 5*"
nvram set vlan1ports="0 4 5"
nvram commit
reboot

ïðèñòàâêà íà 4-îì ËÀÍå.

**Vityok** · 05-08-2008, 21:19

À êàê ìíå òåïåðü îáðàòíî âåðíóòü, ÷òîáû âñå 4 ïîðòà â 1 âëàíå áûëè?

Thread: Ïðîáëåìû ñ tagged vlan (802.1q)

Thread Tools

Rate This Thread

Display

Tags for this Thread

Posting Permissions