Hello,
in my scenario I am using more virtual switches. One of them has no physical network adapter. Traffic between TRUNK port group and VLAN xxx portgroup inside vSwitch2 is NOT tagged!
VM1 - virtual Linux firewall with 2 NICs and more internal TAP network adapters for VPNs:
NIC1 - vSwitch1, VLAN to WAN connection
NIC2 - TRUNK to vSwitch2 (VLAN 4095)
(NIC2 is bridged to one of TAP adapters to my custommers)
VM2 - virtual Linux server with 1 NIC
NIC1 - vSwitch2, VLAN correspondent to VLAN at my custommer.
Switch Name Num Ports Used Ports Configured Ports MTU Uplinks
vSwitch2 128 3 32 9000
PortGroup Name VLAN ID Used Ports Uplinks
111 vlan111 111 0
116 vlan116 116 0
113 vlan113 113 0
112 vlan112 112 0
120 vlan120 120 1
Trunk 4095 1
The problem is:
Ethernet frame from VM2 goes through port group vlan120 AND SHUT BE TAGGED. But it is not, because ON VM1 (which goes through port group Trunk) is all traffic untagged.
Important ifno:
Promiscuous mode on virtual switches is enabled.
I am using same VLAN numbers (corresponding to different VLAN netvorks) on other virtual switches.
Thanks for your help or info.
Best regards
Tomas Vasek