[OpenVPN home] [Date Prev] [Date Index] [Date Next]
[OpenVPN mailing lists] [Thread Prev] [Thread Index] [Thread Next]
Google
 
Web openvpn.net

[Openvpn-users] Re: STP and fully-connected mesh of bridges

Jean-Pierre Schwickerath wrote: 

In order to avoid loops, etc., we've enabled STP on our VPN nodes.

The upshot of all this is the following:  we now have a fully
functioning, pretty rock-solid implementation.

Sadly we have a niggle (there's always one).  Because we're using STP,
one node is always elected as the root node.  Lets's say node A is
elected.  Now all communications from C -> B must go through A.  This
is slower than the ideal situation, where comms from C -> B (and back)
would go through the C -> B VPN link.



You can set a "path cost" for each link and if stp is indeed working it
will find out by its own, that directly going from A to B is cheaper
than first travelling to C. 

Check the brctl manpage:
brctl setpathcost <bridge> <port> <cost> sets the port cost of the port
<port> to <cost>. This is a dimensionless metric.


The problem then is, that all Traffic from A to C would then go over B ...


____________________________________________
Openvpn-users mailing list
Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/openvpn-users