VLANs and PFsense

jahonix

@doktornotor:

Either VLAN's HW tagging is completely broken for any NIC on FreeBSD, or Netgear is POS. Guess which is more likely.

He won't hear you. Even if you'd tattoo it on his forehead he wouldn't.
Unfortunately, the Netgate won't solve his problem either for obvious reason. Go figure what he's doing then…

Nature of a forum is that we're all talking at once.
Every time questions come too close to the Netgear switches he prefers to answer other posts instead.
We cannot "win" this thread unless we get someone on-site, swap-in another brand switch and show it is working (or solve other unrecognized problems).

One of the other problems might be ground loops! He's connecting different buildings and only mentioned two fiber connections. Without proper isolation and unless this is a three building only campus it screams for ground loop problems. The L2/L3 problems might only be mediocre compared to L1...

jahonix

@hda:

…there is a firmware revision 5.4.2.13

As I just wrote: every time we come close to his Netgear Babies he jumps on another post.

Derelict

@frater:

I haven't read this (just stumbled on it) and it mentions hardware vlan tagging:
http://wiki.wireshark.org/CaptureSetup/VLAN

Which is why, for anything but the simplest of captures, I like to use a switch mirror port.

If you want to have a prayer at solving this problem, you need to consider the possibility that you are seeing a problem with the combination of your NIC and your switching gear.  This is a combination apparently nobody else on the planet is experiencing, meaning it's unique to something about the way your network is rigged.  Pretty much nobody else ever feels the need to touch vlanhwtag on em(4) NICs.

Considering you've tried multiple NICs and they all do the same thing…..

It might be as simple as another switch that accepts all VLANs tagged on two ports between the NIC and the netgear switch.

I presume all these switch ports also pass VLAN1 untagged to manage all these netgear switches.  Or do they support a management VLAN?  I know my GS108PE doesn't.

Derelict

@hda:

@frater:

model:  GS108Tv2
boot:    B5.1.0.2
revision: 5.0.5.10

Case, if, but, and, there is a firmware revision 5.4.2.13  8)

Only 4 point revisions.  5.0.5.10 must have been perfect and they just changed cosmetic things in the webgui.

doktornotor

Can see 5.4.2.18 as latest. Overall, this looks like quality stuff, e.g. 5.0.5.10 release notes:

Fixed the problem that the device in management VLAN100 is not able to communicate with devices in other VLANs or other devices on the Internet after running over about 6 to 8 hours.

LULz?