inter vlan routing

From: joe (josef.brunner_at_azlan.com)
Date: 04/01/05

• Next message: kernel.lover: "How to block specific IPs?"
• Previous message: Paul Burke: "Re: What Is God?"
• Next in thread: Andrew Gideon: "Re: inter vlan routing"
• Reply: Andrew Gideon: "Re: inter vlan routing"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

---

Date: 1 Apr 2005 01:41:11 -0800

hi,

sorry for disturbing you. I got a problem with linux and vlans. Would be
great if you could give me some hints so that I can solve my problem.

I want to secure my internal network with linux firewalling using
content filtering. This works - of course - great if i stay in the world
"of layer 3". But if i want to rape my linux box so that the box acts
like a switch it does not work. it is possible for me to configure some
kind of "inter vlan routing" but what i need is "inter vlan switching".

an example:
i got two cisco switches in every location offering lots of vlan (w-lan
for voice over ip, w-lan for data, printer stuff, citrix stuff ...).
these switches are communicating with a big cisco catalyst in the main
data center (we got two of them). I want to secure the traffic between
the two switches using linux + content filtering + iptables ... but i am
too stupid to make the switches communicate through the linux box. i can
communicate trough vlans with the linux box. but i can not communicate
with the switch at the other side. i guess this is because the box does
not send the packets for certain vlans to all physical interfaces having
configured the sender (same) vlan (only two one ... maybe the box wants
to route ?)...

would be great if youŽd got some ressources for me to solve my problem
--> learn how to build a linux switch.

thx i advance

joe

---

• Next message: kernel.lover: "How to block specific IPs?"
• Previous message: Paul Burke: "Re: What Is God?"
• Next in thread: Andrew Gideon: "Re: inter vlan routing"
• Reply: Andrew Gideon: "Re: inter vlan routing"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

---

Relevant Pages Re: Configuring Cisco IPS High Bandwidth Using EtherChannel Load Balancing ... VLAN Pair mode uses one interface only and this is the only supported ... The ECLB feature allows you to load balance upto eight Cisco IPS ... All ports will be part of the same etherchannel ... All servers are connected to the backbone switches via another ... (Focus-IDS) Re: MAC-based Ethernet VLANs ... Ethernet VLANs using Cisco 2900-series switches running IOS 12.1. ... to a VLAN with unrestricted network connectivity, ... get tagged as VLAN 10 upon ingress, if the source MAC address matches ... (comp.dcom.sys.cisco) Re: VLAN IP and DHCP ... address at all since the switches will forward the traffic ... To permit remote switch management. ... Set up a VLAN for each floor plus wireless plus management. ... The servers need to be reachable by clients on all floors. ... (comp.dcom.sys.cisco) Re: Solution for Resilient VLAN Trunk Bonding ... > solution for building a resilient VLAN interfaces over a VLAN trunk. ... > connected to two different switches. ... > them detects link failures. ... (freebsd-net) Re: STP and high availability ... Spanning tree is so simple its invisible when it works, ... And if each vlan runs a instance of spanning ... This means the RTR interface is attached to the STP ... of switches from distribution down. ... (comp.dcom.sys.cisco)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• Mailing-Lists
• Newsgroups
• About
• Privacy
• Search
• Imprint

linux.derkeiler.com  > Newsgroups  > comp.os.linux.networking  > 2005-04