I have a six port Mini PC that I'm using as my firewall with pf. Interface 0 is the WAN connection to the internet. After finally figuring out that bridge is what is used to group ports together on FreeBSD and not vlan I setup bridge1 interface to group interfaces 3/4/5 together on their own subnet. I have my wireless AP on interface 1 with its own subnet.
I changed the network config on my NAS and moved it to interface 5 however I am not able to reach it. The bridge interface doesn't show any members. I believe I have everything setup correctly but no connectivity from the bridge1 interface.
kldstat shows that the modules are loaded... rc.conf looks correct. pf.conf is setup to allow traffic to pass ... not sure what the issue could be.
config info below..
rc.conf
pf.conf
thx
-jbw
I changed the network config on my NAS and moved it to interface 5 however I am not able to reach it. The bridge interface doesn't show any members. I believe I have everything setup correctly but no connectivity from the bridge1 interface.
kldstat shows that the modules are loaded... rc.conf looks correct. pf.conf is setup to allow traffic to pass ... not sure what the issue could be.
config info below..
rc.conf
Code:
# LAN 2
cloned_interfaces="bridge1"
ifconfig_bridge1="addm igb3 addm igb4 addm igb5 up"
ifconfig_bridge1="inet 10.11.17.129 netmask 255.255.255.192"
ifconfig_igb3="up"
ifconfig_igb4="up"
ifconfig_igb5="up"
Code:
table <int_ntwk> { 10.11.17.0/26 10.11.17.128/26 }
pass in log inet from <int_ntwk> to any keep state
Code:
ifconfig bridge1
bridge1: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
ether 58:9c:fc:10:ff:87
inet 10.11.17.129 netmask 0xffffffc0 broadcast 10.11.17.191
id 00:00:00:00:00:00 priority 32768 hellotime 2 fwddelay 15
maxage 20 holdcnt 6 proto rstp maxaddr 2000 timeout 1200
root id 00:00:00:00:00:00 priority 32768 ifcost 0 port 0
groups: bridge
nd6 options=9<PERFORMNUD,IFDISABLED>
igb3: flags=8863<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
options=4e527bb<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING,JUMBO_MTU,VLAN_HWCSUM,TSO4,TSO6,LRO,WOL_MAGIC,VLAN_HWFILTER,VLAN_HWTSO,RXCSUM_IPV6,TXCSUM_IPV6,NOMAP>
ether 40:62:31:14:84:af
media: Ethernet autoselect
status: no carrier
nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
igb4: flags=8863<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
options=4e527bb<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING,JUMBO_MTU,VLAN_HWCSUM,TSO4,TSO6,LRO,WOL_MAGIC,VLAN_HWFILTER,VLAN_HWTSO,RXCSUM_IPV6,TXCSUM_IPV6,NOMAP>
ether 40:62:31:14:84:b0
media: Ethernet autoselect
status: no carrier
nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
igb5: flags=8863<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
options=4e527bb<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING,JUMBO_MTU,VLAN_HWCSUM,TSO4,TSO6,LRO,WOL_MAGIC,VLAN_HWFILTER,VLAN_HWTSO,RXCSUM_IPV6,TXCSUM_IPV6,NOMAP>
ether 40:62:31:14:84:b1
media: Ethernet autoselect (1000baseT <full-duplex>)
status: active
nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
netstat -rn
Code:
Internet:
Destination Gateway Flags Netif Expire
10.11.17.0/26 link#2 U igb1
10.11.17.1 link#2 UHS lo0
10.11.17.128/26 link#9 U bridge1
10.11.17.129 link#9 UHS lo0
thx
-jbw