untagged or tagged guest makes no difference for VLAN1

B

braham

New Member
Dec 7, 2023
5
0
1
Hi,

I have a LACP bond that I only want tagged traffic to pass through. I want a tagged management interface, and I want to tag the guest VMs.

This is my setup. When I create a VM with VLAN10, I need to specify the VLAN in the Network device, otherwise it doensn't work.

1701949203957.png

However, when I do this with another VM that is sitting in VLAN1, it works even if I do not tag the VLAN on the guest VM.

This is the config.

auto enp2s0 iface enp2s0 inet manual auto enp3s0 iface enp3s0 inet manual iface wlp4s0 inet manual auto bond0 iface bond0 inet manual bond-slaves enp2s0 enp3s0 bond-miimon 100 bond-mode 802.3ad bond-xmit-hash-policy layer2+3 auto vmbr0 iface vmbr0 inet manual bridge-ports bond0 bridge-stp off bridge-fd 0 bridge-vlan-aware yes bridge-vids 2-4094 auto vmbr0.1 iface vmbr0.1 inet static address 192.168.0.8/24 gateway 192.168.0.1 #VLAN 1 auto vmbr0.10 iface vmbr0.10 inet manual #VLAN 10


On the Cisco switch, the port channel (Po3) should only allow a tagged VLAN.

1701949365217.png

What am I doing wrong ?
Is it because 1 is the default VLAN on the switch ?
 
hi,
per default vmbr0 has VLAN 1 as PVID ->
Code: 
bridge vlan show | grep PVID

did you set native vlan on cisco to something different than vlan 1 on po3?
 
No I didn't. Would that help ?

I changed PVID to 99 for Po3. But then I can't reach management interface nor any of the VMs anymore on the Proxmox server
 
Last edited:
if you have PVID 1 on cisco and on PVID 1 on vmbr0 it explains this -> " ...it works even if I do not tag the VLAN on the guest VM" ;-)

if you set VLAN10 in the VM config upon vmbr0 (vlan aware) - you don't need vmbr0.10 in /etc/network/interfaces
 
ce3rd said:
if you have PVID 1 on cisco and on PVID 1 on vmbr0 it explains this -> " ...it works even if I do not tag the VLAN on the guest VM" ;-)

if you set VLAN10 in the VM config upon vmbr0 (vlan aware) - you don't need vmbr0.10 in /etc/network/interfaces
Click to expand...
Still does't explain why I lose connectivity if I change the PVID for Po3 to 99, does it ?
 
I would not use vlan 1 tagged and I would not use vlan 1 for mgmt.
-) but you can try to set different PVID on vmbr0.
-) or you can try to set vlan1 on bond0 and then give it a bridge, so that other VMs can use it
-) or I guess you could even make a vlan interface with IP on top of vmbr0 via gui (but I think the PVID of vmbr0 then also have to be different)
it all depends al little on what your plans are for the VM networks.
 
You must log in or register to reply here.

About

The Proxmox community has been around for many years and offers help and support for Proxmox VE, Proxmox Backup Server, and Proxmox Mail Gateway.
We think our community is one of the best thanks to people like you!

Quick Navigation

Home Get Subscription Wiki Downloads Proxmox Customer Portal About

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get yours easily in our online shop.

Buy now!
Community platform by XenForo® © 2010-2024 XenForo Ltd.
Top Bottom
Back