[prev in list] [next in list] [prev in thread] [next in thread] 

List:       linux-bridge
Subject:    [Bridge] RE: Bridge digest, Vol 1 #480 - 7 msgs
From:       "Jeremy Junginger" <jjunginger () interactcommerce ! com>
Date:       2002-06-19 14:12:37
[Download RAW message or body]

[Attachment #2 (text/plain)]
I'm not sure if this applies to the bridging firewall setup mentioned
here, but with Cisco Routers, this type of scenario involves Integrated
Routing and Bridging.  When you are switching packets from a bridged
interface to a routed interface or vice-versa, don't you need a bvi
(bridge virtual interface) that applies an ip address to the bridged
interface in order to have a source ip to route packets properly?  In
addition, the device would need to know which traffic to bridge and
which traffic to route.  Just something to think about.  As I mentioned,
I'm not sure if this concept applies to this firewall, nor am I sure
that this is supported, but I wanted to put my 2 cents in to see if it
helps.

-Jeremy

-----Original Message-----
From: bridge-request@math.leidenuniv.nl
[mailto:bridge-request@math.leidenuniv.nl] 
Sent: Wednesday, June 19, 2002 3:01 AM
To: bridge@math.leidenuniv.nl
Subject: Bridge digest, Vol 1 #480 - 7 msgs


Send Bridge mailing list submissions to
	bridge@math.leidenuniv.nl

To subscribe or unsubscribe via the World Wide Web, visit
	http://www.math.leidenuniv.nl/mailman/listinfo/bridge
or, via email, send a message with subject or body 'help' to
	bridge-request@math.leidenuniv.nl

You can reach the person managing the list at
	bridge-admin@math.leidenuniv.nl

When replying, please edit your Subject line so it is more specific than
"Re: Contents of Bridge digest..."


Today's Topics:

   1. Real ZOO web site, welcome! ID<eulgjhCpdwk1ohlghqxqly1qo>
(Farmgirl4124)
   2. problem with non bridge interface when setting up bridge (Namit
Sikka)
   3. Presentation and problem. (Samuel Partida)
   4. Re: Presentation and problem. (Steen Suder)
   5. Re: Presentation and problem. (Samuel Partida)
   6. Re: Presentation and problem. (dave.capella@cornell.edu)
   7. Re: Presentation and problem. (Samuel Partida)

--__--__--

Message: 1
From: "Farmgirl4124" <MAILER-DAEMON24100@port.net>
To: <bridge@math.leidenuniv.nl>
Date: Tue, 18 Jun 2002 22:25:38 +0400
Subject: [Bridge] Real ZOO web site, welcome!
ID<eulgjhCpdwk1ohlghqxqly1qo>

<html>
<!--1675-->
<body text="#000000" bgcolor="#FFFFFF"> 
The BEST zoo site on the @net! <br> 
<!--18314-->
Sex With Dogs<br> 
Horse Blow Jobs.<br> 
<!--19648-->
Snake Fuck.<br> 
<a
href="http://ww1.only-beasts.com/?refid=eulgjhCpdwk1ohlghqxqly1qo">REAL
ANIMAL FUCKING!</a><br> 
<b>100% HARDCORE!<br> 
<!--31885-->
<a
href="http://ww1.only-beasts.com/?refid=eulgjhCpdwk1ohlghqxqly1qo">ww1.o
nly-beasts.com</a><br> 
<hr> 
<i><a
href="http://ww1.only-beasts.com/unsub.cgi?em=bridge@math.leidenuniv.nl"
>unsub</a></i><br>
Good luck, .<br><br>
<!--21349-->
</body></html>


--__--__--

Message: 2
Date: Tue, 18 Jun 2002 12:56:22 -0700
From: "Namit Sikka" <namit@stratum8.com>
To: <bridge@math.leidenuniv.nl>
Subject: [Bridge] problem with non bridge interface when setting up
bridge

This is a multi-part message in MIME format.


Hi,
 
I have a machine with three interfaces: eth0,eth1,eth2. eth0 and eth1
are part of a bridge instance br0, while eth2 is on an IP network.   My
problem is that when I run the following script to set up the bridge,
all connections (telnet, http, ssh) on the non bridge interface, eth2,
get dropped. The interface even stops responding to ping  for about
20-30 secs.   I am using linux kernel 2.4.15 and bridge-nf patch: 
bridge-nf-0.0.3-against-2.4.13-ac7.diff. This doesn't happen all the
time, I've seen it in about 50% of the cases.     The script:
ifconfig eth0 0.0.0.0 up ifconfig eth1 0.0.0.0 up brctl addbr br0 brctl
addif br0 eth0 brctl addif br0 eth1 ifconfig br0 192.168.1.1 brctl stp
br0 off iptables -P FORWARD DROP iptables -A FORWARD -p icmp -j ACCEPT
  Any help would be greatly appreciated.   Thanks Namit Sikka  
 

[Attachment #5 (text/html)]

<html xmlns:o="urn:schemas-microsoft-com:office:office" \
xmlns:w="urn:schemas-microsoft-com:office:word" \
xmlns="http://www.w3.org/TR/REC-html40">

<head>
<meta http-equiv=Content-Type content="text/html; charset=us-ascii"> <meta \
name=ProgId content=Word.Document> <meta name=Generator content="Microsoft Word 10"> \
<meta name=Originator content="Microsoft Word 10"> <link rel=File-List
href="cid:filelist.xml@01C216C7.8BE72700">
<!--[if gte mso 9]><xml>
 <o:OfficeDocumentSettings>
  <o:DoNotRelyOnCSS/>
 </o:OfficeDocumentSettings>
</xml><![endif]--><!--[if gte mso 9]><xml>
 <w:WordDocument>
  <w:DocumentKind>DocumentEmail</w:DocumentKind>
  <w:EnvelopeVis/>
  <w:BrowserLevel>MicrosoftInternetExplorer4</w:BrowserLevel>
 </w:WordDocument>
</xml><![endif]-->
<style>
<!--
 /* Style Definitions */
 p.MsoNormal, li.MsoNormal, div.MsoNormal
	{mso-style-parent:"";
	margin:0in;
	margin-bottom:.0001pt;
	mso-pagination:widow-orphan;
	font-size:12.0pt;
	font-family:"Times New Roman";
	mso-fareast-font-family:"Times New Roman";}
a:link, span.MsoHyperlink
	{color:blue;
	text-decoration:underline;
	text-underline:single;}
a:visited, span.MsoHyperlinkFollowed
	{color:purple;
	text-decoration:underline;
	text-underline:single;}
span.EmailStyle17
	{mso-style-type:personal-compose;
	mso-style-noshow:yes;
	mso-ansi-font-size:10.0pt;
	mso-bidi-font-size:10.0pt;
	font-family:Arial;
	mso-ascii-font-family:Arial;
	mso-hansi-font-family:Arial;
	mso-bidi-font-family:Arial;
	color:windowtext;}
@page Section1
	{size:8.5in 11.0in;
	margin:1.0in 1.25in 1.0in 1.25in;
	mso-header-margin:.5in;
	mso-footer-margin:.5in;
	mso-paper-source:0;}
div.Section1
	{page:Section1;}
-->
</style>
<!--[if gte mso 10]>
<style>
 /* Style Definitions */ 
 table.MsoNormalTable
	{mso-style-name:"Table Normal";
	mso-tstyle-rowband-size:0;
	mso-tstyle-colband-size:0;
	mso-style-noshow:yes;
	mso-style-parent:"";
	mso-padding-alt:0in 5.4pt 0in 5.4pt;
	mso-para-margin:0in;
	mso-para-margin-bottom:.0001pt;
	mso-pagination:widow-orphan;
	font-size:10.0pt;
	font-family:"Times New Roman";}
</style>
<![endif]-->
</head>

<body lang=EN-US link=blue vlink=purple style='tab-interval:.5in'>

<div class=Section1>

<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>Hi,<o:p></o:p></span></font></p>

<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p>&nbsp;</o:p></span></font></p>

<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt; \
font-family:Arial'>I have a machine with three interfaces: = eth0,eth1,eth2. eth0 and \
eth1 are part of a bridge instance br0, while eth2 is on an IP network.<span
style='mso-spacerun:yes'>&nbsp; </span><span
style='mso-spacerun:yes'>&nbsp;</span>My problem is that when I run the following \
script to set up the bridge, all connections (telnet, http, ssh) on the = non bridge \
interface, eth2, get dropped. The interface even stops responding = to ping <span
style='mso-spacerun:yes'>&nbsp;</span>for about 20-30 = secs.<span
style='mso-spacerun:yes'>&nbsp; </span><span
style='mso-spacerun:yes'>&nbsp;</span>I am using linux kernel 2.4.15 and bridge-nf \
patch: <o:p></o:p></span></font></p>

<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>bridge-nf-0.0.3-against-2.4.13-ac7.diff. This doesn&#8217;t happen \
all the time, I&#8217;ve seen it in about 50% of the = \
cases.<o:p></o:p></span></font></p>

<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p>&nbsp;</o:p></span></font></p>

<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p>&nbsp;</o:p></span></font></p>

<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt; \
font-family:Arial'>The script:<o:p></o:p></span></font></p>

<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt; \
font-family:Arial'>ifconfig eth0 0.0.0.0 up<o:p></o:p></span></font></p>

<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt; \
font-family:Arial'>ifconfig eth1 0.0.0.0 up<o:p></o:p></span></font></p>

<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt; \
font-family:Arial'>brctl addbr br0<o:p></o:p></span></font></p>

<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt; \
font-family:Arial'>brctl addif br0 eth0<o:p></o:p></span></font></p>

<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt; \
font-family:Arial'>brctl addif br0 eth1<o:p></o:p></span></font></p>

<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt; \
font-family:Arial'>ifconfig br0 192.168.1.1<o:p></o:p></span></font></p>

<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt; \
font-family:Arial'>brctl stp br0 off<o:p></o:p></span></font></p>

<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt; \
font-family:Arial'>iptables &#8211;P FORWARD = DROP<o:p></o:p></span></font></p>

<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt; \
font-family:Arial'>iptables &#8211;A FORWARD &#8211;p icmp &#8211;j = \
ACCEPT<o:p></o:p></span></font></p>

<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p>&nbsp;</o:p></span></font></p>

<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt; \
font-family:Arial'>Any help would be greatly = \
appreciated.<o:p></o:p></span></font></p>

<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p>&nbsp;</o:p></span></font></p>

<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'>Thanks<o:p></o:p></span></font></p>

<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt; \
font-family:Arial'>Namit Sikka<o:p></o:p></span></font></p>

<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p>&nbsp;</o:p></span></font></p>

<p class=MsoNormal><font size=2 face=Arial><span style='font-size:10.0pt;
font-family:Arial'><o:p>&nbsp;</o:p></span></font></p>

</div>

</body>

</html>



[Attachment #6 (()]
Message: 3
Date: Wed, 19 Jun 2002 00:22:50 +0200
From: Samuel Partida <morti@andalinux.org>
To: Linux Bridging <bridge@math.leidenuniv.nl>
Organization: AndaLinux
Subject: [Bridge] Presentation and problem.


Hi everybody, my name is Samuel, i'm from a LUG in Sevilla named
AndaLinux and i'm its founder. Well, my problem is that now i have added
a bridge in my network to join a wireless network with the wired one,
but now all transfer goes horribly slow, transfering files via ftp never
get more than 85kbyte/sec, i've played with brctl but nothing seems to
change, just when i shutdown the bridge everething goes ok but i need
the bridge so, can someone help me???

I'm using kernel 2.4.18.

Thanks.

-- 
------------------------------
     Samuel Partida Amores
  
           - Web -
    http://www.andalinux.org
 
         - E-Mail -
  samuelpartida@andalinux.org
  morti@andalinux.org
------------------------------

[Attachment #9 (application/pgp-signature)]
[Attachment #10 (.)]
Message: 4
Date: Tue, 18 Jun 2002 22:43:51 +0200
From: Steen Suder <steen@suder.dk>
To: bridge@math.leidenuniv.nl
Subject: Re: [Bridge] Presentation and problem.

Samuel Partida wrote:
> 
> Hi everybody, my name is Samuel, i'm from a LUG in Sevilla named 
> AndaLinux and i'm its founder. Well, my problem is that now i have 
> added a bridge in my network to join a wireless network with the wired

> one, but now all transfer goes horribly slow, transfering files via 
> ftp never get more than 85kbyte/sec, i've played with brctl but 
> nothing seems to change, just when i shutdown the bridge everething 
> goes ok but i need the bridge so, can someone help me???
> 
> I'm using kernel 2.4.18.

To me it could sound like you're experiencing a routing issue. It could
be that the traffic takes a detour over your wireless network in some
way.

-- 
Mvh. / Best regards,
Steen Suder		<http://www.suder.dk/>
ICQ UIN			4133803

--__--__--

Message: 5
Date: Wed, 19 Jun 2002 00:58:00 +0200
From: Samuel Partida <morti@andalinux.org>
To: bridge@math.leidenuniv.nl
Subject: Re: [Bridge] Presentation and problem.
Organization: AndaLinux


On Tue, 18 Jun 2002 22:43:51 +0200
Steen Suder <steen@suder.dk> wrote:

> Samuel Partida wrote:
> > 
> > Hi everybody, my name is Samuel, i'm from a LUG in Sevilla named 
> > AndaLinux and i'm its founder. Well, my problem is that now i have 
> > added a bridge in my network to join a wireless network with the 
> > wired one, but now all transfer goes horribly slow, transfering 
> > files via ftp never get more than 85kbyte/sec, i've played with 
> > brctl but nothing seems to change, just when i shutdown the bridge 
> > everething goes ok but i need the bridge so, can someone help me???
> > 
> > I'm using kernel 2.4.18.
> 
> To me it could sound like you're experiencing a routing issue. It 
> could be that the traffic takes a detour over your wireless network in

> some way.
> 
> --
> Mvh. / Best regards,
> Steen Suder		<http://www.suder.dk/>
> ICQ UIN			4133803
> _______________________________________________
> Bridge mailing list
> Bridge@math.leidenuniv.nl
> http://www.math.leidenuniv.nl/mailman/listinfo/bridge
> 

So... do you know what can i do to solve it??

Thanks.


-- 
------------------------------
     Samuel Partida Amores
  
           - Web -
    http://www.andalinux.org
 
         - E-Mail -
  samuelpartida@andalinux.org
  morti@andalinux.org
------------------------------

[Attachment #13 (application/pgp-signature)]
[Attachment #14 ())]
Message: 6
From: dave.capella@cornell.edu
Date: Tue, 18 Jun 2002 17:21:36 -0400 (EDT)
Subject: Re: [Bridge] Presentation and problem.
To: bridge@math.leidenuniv.nl

On 19 Jun, Samuel Partida wrote:
> Hi everybody, my name is Samuel, i'm from a LUG in Sevilla named
AndaLinux and i'm its founder. Well, my problem is that now i have added
a bridge in my network to join a wireless network with the wired one,
but now all transfer goes horribly slow, transfering files via ftp never
get more than 85kbyte/sec, i've played with brctl but nothing seems to
change, just when i shutdown the bridge everething goes ok but i need
the bridge so, can someone help me???
> 
> I'm using kernel 2.4.18.
> 
> Thanks.
 
Perhaps if you use routing instead of bridging? I put the wireless on a
different LAN, and simply use forwarding. For example, my real addresses
are 128.253.xxx.xxx, my internal ethernet is 192.168.1.0/24, and the
wireless is 10.0.0.0/24 (I know, should be 8 ;)
After enabling forwarding, I just added some rules to iptables
(and/or ipchains) for NAT.  

HTH,
...dave
-- 
   ~~~~ ____  |  It's kind of fun to do the impossible.- Disney  |
  Y_,___|[]|  | dave.capella@cornell.edu ~ www.bscb.cornell.edu  |
 {|_|_|_|__|,_|____dave_w_capella____BSCB____Cornell_University__|
//oo---OO=OO    OO     OO         OO      OO        OO       OO  


--__--__--

Message: 7
Date: Wed, 19 Jun 2002 01:26:02 +0200
From: Samuel Partida <morti@andalinux.org>
To: bridge@math.leidenuniv.nl
Subject: Re: [Bridge] Presentation and problem.
Organization: AndaLinux


On Tue, 18 Jun 2002 17:21:36 -0400 (EDT)
dave.capella@cornell.edu wrote:

> On 19 Jun, Samuel Partida wrote:
> > Hi everybody, my name is Samuel, i'm from a LUG in Sevilla named
AndaLinux and i'm its founder. Well, my problem is that now i have added
a bridge in my network to join a wireless network with the wired one,
but now all transfer goes horribly slow, transfering files via ftp never
get more than 85kbyte/sec, i've played with brctl but nothing seems to
change, just when i shutdown the bridge everething goes ok but i need
the bridge so, can someone help me???
> > 
> > I'm using kernel 2.4.18.
> > 
> > Thanks.
>  
> Perhaps if you use routing instead of bridging? I put the wireless on
a
> different LAN, and simply use forwarding. For example, my real
addresses
> are 128.253.xxx.xxx, my internal ethernet is 192.168.1.0/24, and the
> wireless is 10.0.0.0/24 (I know, should be 8 ;)
> After enabling forwarding, I just added some rules to iptables
> (and/or ipchains) for NAT.  
> 
> HTH,
> ...dave
> -- 
>    ~~~~ ____  |  It's kind of fun to do the impossible.- Disney  |
>   Y_,___|[]|  | dave.capella@cornell.edu ~ www.bscb.cornell.edu  |
>  {|_|_|_|__|,_|____dave_w_capella____BSCB____Cornell_University__|
> //oo---OO=OO    OO     OO         OO      OO        OO       OO  
> 
> _______________________________________________
> Bridge mailing list
> Bridge@math.leidenuniv.nl
> http://www.math.leidenuniv.nl/mailman/listinfo/bridge
> 

Oh, i didn't tell you that my Linux box is acting as an Access Point...
and needs the bridging mode :) so routing will not work, but thanks for
your help! :)

See you soon!

-- 
------------------------------
     Samuel Partida Amores
  
           - Web -
    http://www.andalinux.org
 
         - E-Mail -
  samuelpartida@andalinux.org
  morti@andalinux.org
------------------------------

[Attachment #17 (application/pgp-signature)]
--__--__--

_______________________________________________
Bridge mailing list
Bridge@math.leidenuniv.nl
http://www.math.leidenuniv.nl/mailman/listinfo/bridge


End of Bridge Digest

["smime.p7s" (application/x-pkcs7-signature)]
_______________________________________________
Bridge mailing list
Bridge@math.leidenuniv.nl
http://www.math.leidenuniv.nl/mailman/listinfo/bridge

[prev in list] [next in list] [prev in thread] [next in thread]

Configure | About | News | Add a list | Sponsored by KoreLogic