Home
Help
Search
Login
Register
OPNsense Forum
»
Archive
»
19.7 Legacy Series
»
Intel i350 SR-IOV + VLAN does not work properly in OPNSense
« previous
next »
Print
Pages: [
1
]
Author
Topic: Intel i350 SR-IOV + VLAN does not work properly in OPNSense (Read 3359 times)
park0kyung0won
Newbie
Posts: 24
Karma: 2
Intel i350 SR-IOV + VLAN does not work properly in OPNSense
«
on:
July 30, 2019, 08:23:22 pm »
Hello
My setup is:
Host machine: Arch Linux + KVM, has Intel i350 NIC.
Created SR-IOV virtual function, VF on physical interface enp5s0,
then tagged it with VLAN ID 20.
```
echo 1 > /sys/class/net/enp5s0f0/device/sriov_numvfs
ip link set enp5s0f0 vf 0 mac blahblah
ip link set enp5s0f0 vf 0 vlan 20
```
Passed this VF to OPNSense VM.
Also I created VLAN interface on the same port, which is enp5s0,
tagged with VLAN ID 20.
```
ip link add link enp5s0f0 name VIRT type vlan id 20
```
Created bridge on top of this VLAN interface VIRT, for other VMs(Let's call them clients).
I could capture packets on three places: Client VM, OPNSense VM and Host physical interface(enp5s0f0).
When OPNSense VM sends packet to the guest VM(ping):
On OPNSense VM: ping packet is untagged
On Host enp5s0f0: ping packet has VLAN ID 20 (Which is expected, for VF is tagged with VLAN ID 20)
On client VM: ping packet is untagged (Which is expected, for interface that libvirt network bridge is sitting on(VIRT) is VLAN interface on enp5s0 with VLAN ID 20)
Here is the problem.
When client VM sends DHCP request to OPNSense VM,
On client VM: DHCP Req packet is untagged
On Host enp5s0f0: DHCP Req packet is tagged with VLAN ID 20 (Expected)
On OPNSense VM: DHCP Req packet is tagged with VLAN ID 1024 (
??)
DHCP Req packet had VLAN ID 20 at the moment it was passing Virtual Function for it passed VF with VLAN filter of VID 20.
After passing Virtual Function device, it should have changed into untagged packet
But instead, it got VLAN ID 1024.
There must be something wrong with igbvf driver with OPNSense I suspect
«
Last Edit: July 30, 2019, 09:03:27 pm by park0kyung0won
»
Logged
mimugmail
Hero Member
Posts: 6766
Karma: 494
Re: Intel i350 SR-IOV + VLAN does not work properly in OPNSense
«
Reply #1 on:
July 30, 2019, 09:03:20 pm »
Can you try with 19.1.10 too? There were some reports about problems with combinations of I350, QEMU and 19.7
Logged
WWW:
www.routerperformance.net
Support plans:
https://www.max-it.de/en/it-services/opnsense/
Commercial Plugins (German):
https://opnsense.max-it.de/
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
Archive
»
19.7 Legacy Series
»
Intel i350 SR-IOV + VLAN does not work properly in OPNSense