Two bridge for one ethernet port

[babak]

Hi
I noticed if I have ethernet vlan trunk and I have vmbr0 bridged to enp.131 for managing proxmox If I define another vlan aware bridge vmbr1 to enp , in guest containers network interface If I user vmbr1 and VLAN 131 tag ,it is not working,(cannot ping outside) could someone explain me why?
(I know in container network interface I can use vmbr0 without tag but wants to know reason why another bridge not working)

 

[vesalius]

post your /etc/network/interfaces for better answers.

Why not make vmbr0 vlan aware and then give guest containers vmbr0 with vlan131 tagged?

 

[babak]

post your /etc/network/interfaces for better answers.

Why not make vmbr0 vlan aware and then give guest containers vmbr0 with vlan131 tagged?

If I do that I cannot use same vmbr and vlan tag and subnet for managing proxmox host(not ping outside). Will post config tomorrow.

 

[vesalius]

If I do that I cannot use same vlan and subnet for managing proxmox host(not ping outside). Will post config tomorrow.

You can do this but just takes a little different config to get the Proxmox management responding on the same vlan.

see section Example: Use VLAN 5 for the Proxmox VE management IP with VLAN aware Linux bridge at the link below.
https://pve.proxmox.com/wiki/Network_Configuration#_vlan_802_1q

 

[babak]

You can do this but just takes a little different config to get the Proxmox management responding on the same vlan.

see section Example: Use VLAN 5 for the Proxmox VE management IP with VLAN aware Linux bridge at the link below.
https://pve.proxmox.com/wiki/Network_Configuration#_vlan_802_1q

Thanks
If I have this configuration in Host:

auto vmbr0 iface vmbr0 inet static address 10.102.131.13/24 gateway 10.102.131.1 bridge-ports enp6s4f0.131 bridge-stp off bridge-fd 0 auto vmbr1 iface vmbr1 inet manual bridge-ports enp6s4f0 bridge-stp off bridge-fd 0 bridge-vlan-aware yes bridge-vids 2-4094
and I use vmbr1 and VLAN Tag 131 in guest container I cannot ping outside why ? but if I use vmbr0 without VLAN Tag in Container I can ping outside.

Regards

 

[spirit]

dont mix vlan-aware && non-vlanware setup

for vlan-aware use:

auto vmbr0
iface vmbr0 inet manual
        bridge-ports enp6s4f0
        bridge-stp off
        bridge-fd 0
        bridge-vlan-aware yes
        bridge-vids 2-4094

auto vmbr0.131
iface vmbr0.131 inet static
        address 10.102.131.13/24
        gateway 10.102.131.1

and be carefull than some nic model are limited in number of vlan, so maybe you need to limit "bridge-vids ...." vlan list.