Topic: Creating a bridge interface breaks VLAN functionality

I have created two interfaces, one native and one VLAN interface as follows:

config 'interface' 'lan'
        option 'ifname' 'eth0'
        option 'proto' 'static'
        option 'ipaddr' '192.168.27.9'
        option 'netmask' '255.255.255.0'
        option 'gateway' '192.168.27.1'

config 'interface' 'test'
        option 'ifname' 'eth0.16'
        option 'proto' 'static'
        option 'ipaddr' '10.10.10.10'
        option 'netmask' '255.255.255.0'

With this setup both interfaces work just fine.

I'd then like to bridge wireless networks to them so I change the type of interface lan to bridge:

config 'interface' 'lan'
        option 'ifname' 'eth0'
        option 'type' 'bridge'
        option 'proto' 'static'
        option 'ipaddr' '192.168.27.9'
        option 'netmask' '255.255.255.0'

What happens is that the VLAN interface test stops working. It can send packets but any reply is never seen on the interface.

For example pinging the connected router 10.10.10.1 tcpdump will show that ARP requests are sent:
18:58:47.204732 ARP, Request who-has 10.10.10.1 tell 10.10.10.10, length 28

I can also verify from the router that the ARP request are received and replied. But the ARP reply never shows up in the OpenWrt VLAN interface:
eth0.16   Link encap:Ethernet  HWaddr 00:18:0A:01:67:27
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:0 errors:0 dropped:0 overruns:0 frame:0
          TX packets:777 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0
          RX bytes:0 (0 B)  TX bytes:36156 (35.3 KiB)

Arp table shows the address as incomplete:
10.10.10.1       0x1         0x0         00:00:00:00:00:00     *        eth0.16

I tried to change also the type of the VLAN interface named test to a bridge interface but it changes nothing. When I remove the bridge type from eth0 the interface eth0.16 starts working again.

Removing all firewall rules (iptables -P FORWARD ACCEPT && iptables -F) doesn't help.


Platform is Meraki Mini (one ethernet interface, no switch), OpenWrt version 10.03.1.

Any help or hints where to debug this problem are welcome!

Re: Creating a bridge interface breaks VLAN functionality

if you attach  the phys eth0 to a bridge its no more available to the vlan driver, hence your "problem".

Try to create a veth-device  fot eth0 (veth package) and create your bridge with veth0.

This setup helps most times as does some indepth reading about bridge design & implementation in Linux

regards
3zl

"use  *search* or give me your  I*  so i can show you"

        mesh applications with batman-adv

Re: Creating a bridge interface breaks VLAN functionality

OpenWrt / Problems with bridge and vlan
OpenWrt / Needs help configuring my Soekris net4801 to get vlan VID 100 working

Re: Creating a bridge interface breaks VLAN functionality

Ok, I see. I didn't really need a native/untagged VLAN on my OpenWrt as I can handle all VLANs as tagged at the connected switch.

So I now configured all networks to be bridged as VLAN networks. This setup works correctly.

Thanks for your help!

Re: Creating a bridge interface breaks VLAN functionality

kobolt - would you provide your "uci export network" for the benefit of others?

Thanks

Re: Creating a bridge interface breaks VLAN functionality

config 'interface' 'lan'
        option 'ifname' 'eth0'
        option 'type' 'bridge'
        option 'proto' 'static'
        option 'ipaddr' '192.168.27.9'
        option 'netmask' '255.255.255.0'

config 'interface' 'test'
        option 'ifname' 'br-lan.16'
        option 'proto' 'static'
        option 'ipaddr' '10.10.10.10'
        option 'netmask' '255.255.255.0'

OpenWrt / Problem: configuration VLAN on the NANOSTATION2 - NS2

Re: Creating a bridge interface breaks VLAN functionality

My network config looks as follows

config 'interface' 'lan'
        option 'ifname' 'eth0.27'
        option 'proto' 'static'
        option 'type' 'bridge'
        option 'ipaddr' '192.168.27.9'
        option 'netmask' '255.255.255.0'
        option 'gateway' '192.168.27.1'

config 'interface' 'test'
        option 'ifname' 'eth0.16'
        option 'type' 'bridge'
        option 'proto' 'static'
        option 'ipaddr' '10.10.10.10'
        option 'netmask' '255.255.255.0'

I believe the config above from fyi is working too and supporting a native vlan.