Hi, I have quite dumb question but I can´t find a straight answer to it.
We have a router which has a bridge. On the top of this bridge, there is DHCP/DNS server.
That bridge has multiple physical ports connected to it without any VLAN tagging.
Recently we needed to connect some remote clients via VLAN QinQ on port sfp1 to our existing bridge. VLAN 2006 which has hidden inner VLANS:
- 100 (data)
- 101 (cpe_mgmt)
We´ve added VLAN interface with name “sfp1_vlan2006” on port sfp1 with VLAN ID 2006, then we added a new VLAN interface with name “sfp1_vlan_2006_vlan100” on interface with name “sfp1_vlan2006” to achieve QinQ. Further, we added that interface into existing bridge which has by default vlan_filtering DISABLED. It works! But is that a right way how to setup QinQ bridging?
We don´t need to relay any of those VLANs to other ports, we need to terminate them and connect them to existing DHCP/DNS server.
It would be nice to have abbility to bridge those vlans with untagged traffic from other ports but thats not required in case it would harm perfomance significantly. (explained in proposal2 in attachment)
I attached drawing how the setup looks like now.
