On 04/11/15(Wed) 18:03, Armin Wolfermann wrote: > * Martin Pieuchot <m...@openbsd.org> [04.11.2015 12:53]: > > I'd appreciate if you could test my diff and report back. > > Seems the bridge is working but tagged packets can still be blocked > with a bridge rule. This is a current system with your diff and > > ifconfig em0 up > ifconfig vlan10 <myip> vlandev em0 up > > If I add a bridge with > > ifconfig bridge0 add em0 up rule block on em0 > > the packets will not reach the vlan interface.
I think I was confused, could you test the other way around, adding the bridge before the vlan? # ifconfig em0 up # ifconfig bridge0 add em0 up rule block on em # ifconfig vlan10 <ip> vlandev em0 up
