I am using an Ubnt LS2 with a recent build of 8.09. The eth0 interface is an IC+ IP175C bridge with 2 physical ports.
SETUP:
PC A/Modem has 192.168.1.1/24 - connects to eth0 port0 (wan port) - eth0.1
PC B/local PC has 192.168.1.10/24 - connects to eth0 port4 (lan port) - eth0.2
No PC - connects to ath0 (wireless) - ath0
br0 gets a dhcp address and has eth0.1, eth0.2 and ath0 attached.
br0:1 has 192.168.1.2/24
BROKEN:
Ping from B to A
WORKING:
- ssh from B to 192.168.1.2 (openwrt)
- then start ping from openwrt to PC A
At this point the arp entry in the openwrt box for A is correct and present
BROKEN:
- Follow working setction and then start a ping from B to A
At this point the ping from openwrt box to A stops, the arp table the entry for A is now gone
Stopping the ping from B to A will cause it to start working again and the arp entry to reappear.
It has been suggested in IRC that I am creating a loop between eth0.1 and eth0.2 through the switch back plane and the software bridge, but that would mean that the vlans on the switch are not actually keeping layer to traffic separate. If I take out the vlans and just have eth0 it works but I want to run hostapd (wpa2 with a remote freeradius server) on eth0.1 (lan) and ath0 (wireless).
Can anyone confirm that this is a bug? Any suggestions on how to isolate if it is an issue with the bridge , vlans, arp or the switch? Any suggestions on another way to set things up to have authentication on the lan and wireless interfaces while leaving the wan interface?