Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Questions about the built-in cpsw switch on the SG1000

    Scheduled Pinned Locked Moved Hardware
    5 Posts 2 Posters 711 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • J
      jason0
      last edited by

      Hello,

      When configuring my sg1000, I noticed there are already two vlans assigned:
      vlan 4071 to cpsw0 (aka WAN)
      vlan 4072 to cpsw1 (aka LAN)

      What sort of traffic is on these two vlans?

      Also, when digging into the switch configuration via Interfaces / switch / system, it shows:

      TI Common Platform Ethernet Switch (CPSW)
      3 ports
      128 vlan groups
      DOT1Q (vlan mode)
      DOT1Q ( capabilities)

      Interface / switch / vlans shows:

      VLAN group VLAN tag Members Description
      0                 4072       0,2       Default System VLAN
      1                 1001       0t,2t
      2                 1002       0t,2t
      3                 100         0t,2t
      4                 4071       0,1       Default System VLAN

      So by inference I can see that member 1 is probably cpsw0 (the WAN port) and that member 2 is probably cpsw1  (the LAN port).

      So what is member 0?  Is it /dev/etherswitch0?

      Thanks!

      1 Reply Last reply Reply Quote 0
      • DerelictD
        Derelict LAYER 8 Netgate
        last edited by

        Yes. Member 0 is the uplink to the SoC. You should be able to create traditional pfSense VLAN interfaces for VLAN IDs 100, 1001, and 1002 and those should be tagged on the LAN port.

        Chattanooga, Tennessee, USA
        A comprehensive network diagram is worth 10,000 words and 15 conference calls.
        DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
        Do Not Chat For Help! NO_WAN_EGRESS(TM)

        1 Reply Last reply Reply Quote 0
        • J
          jason0
          last edited by

          Sweet!  Thanks!

          Is there any significance to vlans 4071 and 4072, or are they just placeholders?

          –jason

          1 Reply Last reply Reply Quote 1
          • DerelictD
            Derelict LAYER 8 Netgate
            last edited by

            Just placeholders to both untagged interfaces. Pretty sure those are hardcoded internally though I don't believe a pfSense interface has to be assigned to them if you don't want untagged traffic there.

            Chattanooga, Tennessee, USA
            A comprehensive network diagram is worth 10,000 words and 15 conference calls.
            DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
            Do Not Chat For Help! NO_WAN_EGRESS(TM)

            1 Reply Last reply Reply Quote 1
            • J
              jason0
              last edited by

              Ok, Thank you!

              –jason

              1 Reply Last reply Reply Quote 0
              • First post
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.