Hello,
I hope you are well.
As far as I skimmed the forum and help, it looks like there are two up-to-date ways to change the VLAN MAC address
1. create a bridge with a custom MAC and slave VLAN to it - VLAN will inherit the MAC address of the new bridge
2. manually mangle MAC address in ingress and egress packets using /interface bridge nat
I've read advice around the forum and help that it's no longer recommended to create several logical bridges if the device has one physical bridge, otherwise L2 offloading will suffer, and instead, manage VLANs via VLAN filtering. Will the logical bridge in the first approach harm performance in the same way? Will it hurt L3 offloading capabilities? Or does the advice against several bridges only correspond to physical topology vs logical, not fully virtual bridges? I'm not sure how to check if there is harm empirically.
Regarding the second approach, I worry that I will forget/don't know how to exclude some edge cases where this mangling should be skipped. I'm not sure whether to apply mangling to the VLAN virtual device or the physical port with the relevant traffic. Etc. I haven't found any how-to about that, only mentions this should work for the purpose.
The device in question is CRS309-1G-8S+-IN.
I hope you are well.
As far as I skimmed the forum and help, it looks like there are two up-to-date ways to change the VLAN MAC address
1. create a bridge with a custom MAC and slave VLAN to it - VLAN will inherit the MAC address of the new bridge
2. manually mangle MAC address in ingress and egress packets using /interface bridge nat
I've read advice around the forum and help that it's no longer recommended to create several logical bridges if the device has one physical bridge, otherwise L2 offloading will suffer, and instead, manage VLANs via VLAN filtering. Will the logical bridge in the first approach harm performance in the same way? Will it hurt L3 offloading capabilities? Or does the advice against several bridges only correspond to physical topology vs logical, not fully virtual bridges? I'm not sure how to check if there is harm empirically.
Regarding the second approach, I worry that I will forget/don't know how to exclude some edge cases where this mangling should be skipped. I'm not sure whether to apply mangling to the VLAN virtual device or the physical port with the relevant traffic. Etc. I haven't found any how-to about that, only mentions this should work for the purpose.
The device in question is CRS309-1G-8S+-IN.
Statistics: Posted by tryrtryrtryrt — Sat Jan 13, 2024 11:22 pm