VLANs on multiple interfaces

Started by firewalled101, August 29, 2022, 01:44:04 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions
August 29, 2022, 01:44:04 AM
I am setting up a Topton 4-NIC box. I assigned defaults of one NIC for WAN and another for LAN. I have 2 unassigned ports (OPT2,OPT3). My LAN is a trunk port and has multiple VLANs. How can assign one of those VLANs to unused OPT interfaces? The reason I want this because my desktop has 2.5gb NIC to utilize the speed on my network. I have TL-SG3428X gigabit switch. My NAS is connected to SFP+ port. I plan to connect my LAN trunk to another SFP+ port on the switch, and utilize one of the OPT ports on OPNsense box for my desktop.

I recognize that I cannot create VLANs on bridged interfaces. Can create a bridge assigned to VLAN? (thinking loud here).

Thank you so much.
August 29, 2022, 08:07:12 AM #1
Do you want these ports to be port based VLAN members, i.e. carrying untagged frames?

What you need to do in this case is create your VLAN on the trunk port (you already did that), then create a bridge interface with that VLAN and the untagged additional port as members. Then, and this is important, assign the logical interface (Interfaces > Assignments) including IP address configuration etc. to the bridge interface, not the VLAN interface. Don't assign anything to the VLAN interface at all.

Additionally you might want to change two kernel tunables as documented in the "LAN bridge" chapter of the wiki.

HTH,
Patrick
Deciso DEC750
People who think they know everything are a great annoyance to those of us who do. (Isaac Asimov)
August 29, 2022, 12:53:38 PM #2
Maybe I'm missing something but from what I read, just go to Interfaces/assignments and change the vlan you want to move to opt2.
August 29, 2022, 08:19:36 PM #3
Quote from: pmhausen on August 29, 2022, 08:07:12 AM
Do you want these ports to be port based VLAN members, i.e. carrying untagged frames?

What you need to do in this case is create your VLAN on the trunk port (you already did that), then create a bridge interface with that VLAN and the untagged additional port as members. Then, and this is important, assign the logical interface (Interfaces > Assignments) including IP address configuration etc. to the bridge interface, not the VLAN interface. Don't assign anything to the VLAN interface at all.

Additionally you might want to change two kernel tunables as documented in the "LAN bridge" chapter of the wiki.

HTH,
Patrick

This is exactly what I intended to do; that is to bridge logical to physical interfaces. The question is now the trunk port does not have that VLAN anymore, right?
August 29, 2022, 08:52:10 PM #4 Last Edit: January 10, 2025, 06:00:18 PM by Patrick M. Hausen
But of course it does.
Code Select
                             ┌────────┐                             
                             │        │                             
 Device in                   │   ┌────┴──────────────┬─┐           
  VLAN 2     ◀───────────────│   └────┬──────────────┤ │           
                             │        │              │ │           
                             └────────┘              │ │           
                           Phys. Interface           │ │           
                                                     │ │           
                                                     │ │           
                                                     │ │   Bridge   
                             ┌────────┐              │ │  Interface
                             │  ┌─────┴────────┐     │ │           
                             │  │    VLAN 1    │     │ │           
                             │  │              │     │ │           
                             │  └─────┬────────┘     │ │           
                             │  ┌─────┴────────┐     │ │           
                             │  │    VLAN 2 ┌──┴─────┤ │           
                             │  │           └──┬─────┴─┘           
   Trunk                     │  └─────┬────────┘                   
Switchport   ◀───────────────│  ┌─────┴────────┐                   
                             │  │    VLAN 3    │                   
                             │  │              │                   
                             │  └─────┬────────┘                   
                             │  ┌─────┴────────┐                   
                             │  │   VLAN ...   │                   
                             │  │              │                   
                             │  └─────┬────────┘                   
                             └────────┘                             
                           Phys. Interface                         
Deciso DEC750
People who think they know everything are a great annoyance to those of us who do. (Isaac Asimov)
August 29, 2022, 11:01:58 PM #5
Thank you so much. Very nice drawing  ;D
August 29, 2022, 11:05:17 PM #6
Deciso DEC750
People who think they know everything are a great annoyance to those of us who do. (Isaac Asimov)
January 10, 2025, 05:58:40 PM #7
Hello,
Just to say thank you for the thread/posts.
I will receive my NUC with 4 x 2,5gbps interfaces and i was looking how to create a trunk/tagged interfaces with multiples interfaces on a port (LAN side) and use other interfaces as access/untagged port using one vlan that is part of the trunk.
I understand thanks to this reading that i should use bridge interfaces to create a virtual link between the physical port and allow the specified vlan to be part of both of them.

Thanks !!
Print
Go Up Pages1
User actions