Can I pass 802.1q (VLAN tagged) through a VPN Tinc inHUB/Switch mode?.
Peter Dey
tinc at realmtech.net
Thu Mar 18 12:19:21 CET 2010
> The physical config:
>
> VLAN1(U)--| Switch Switch |-- VLAN1(U)
> VLAN5(T)--|-- Trunk -- TincS-01 ---VPN--- TincS-02 -- Trunk --|-- VLAN5(T)
> VLAN10(T)-| Port Port |-- VLAN10(T)
>
Note the "Trunk" part. I've never seen a facility under Linux to create a trunk
interface (correct me if I'm wrong).
Your eth0 interface will only carry traffic for the native VLAN. The kernel's
already ditched traffic intended for other vlans. You will note that you can't
see traffic for vlan5 on eth0. Hence why you need to create an eth0.5 to get
traffic for vlan5.
You will need to create vlan interfaces on your vpn interface for each vlan, and
bridge them.
What you want is...
VLAN1 --- eth0.1---vpn0.1 --| |-- vpn0.1---eth0.1 ---VLAN1
VLAN5 --- eth0.5---vpn0.5 --|---VPN---|-- vpn0.5---eth0.5 ---VLAN5
VLAN10--- eth0.10--vpn0.10--| |-- vpn0.10--eth0.10---VLAN10
Cheers
Peter
More information about the tinc
mailing list