VMware Communities
jenerics
Contributor
Contributor
‎12-21-2016 06:26 AM

Workstation VLAN tags

I have a workstation that has 2 NICs and Vmware Workstation 11 installed.  I would like to have multiple VMs running on different VLANs at the same time.  I know with ESXi I can add different VLAN tags on different switches, but how can I do this on Workstation?  Is it even possible to do this?  The switchport that the second NIC is patched to is a trunk with the VLANs I need tagged.

Thanks in advance.

9 Replies
RDPetruska
Leadership
Leadership
‎12-21-2016 08:26 AM

Unless it has changed in the past couple of versions, NO, this is not possible with Workstation.

0 Kudos
Confuzed
Contributor
Contributor
‎04-11-2017 12:58 AM

Hate to reply to an old thread, but I spent hours looking for a solution on a VMWare 12 system with a Windows 10 host.

First of all, switching to the vmxnet3 driver gave the option for VLAN tagging in the driver's advanced settings.  Just change ethernet0.virtualDev to "vmxnet3" in your VM's .vmx file.

Once that was done, I discovered that you must disable "Priority & VLAN" on the HOST LAN adapter that you are bridging... otherwise it drops all of the packets that contain tags targeting the VM.

pastedImage_0.png

Hope this helps someone else!

vstrom5
Contributor
Contributor
‎01-04-2019 02:45 AM

Hey Confuzed, Please don't hate replying to old posts, just made my day.

It also works with Workstation 11.5 Smiley Happy

0 Kudos
vitaprimo
Enthusiast
Enthusiast
‎01-08-2019 05:38 AM

Mine too! :smileygrin:

0 Kudos
AryaLee
Contributor
Contributor
‎08-02-2019 02:17 AM

Wow! Thank you so much. You are such a time saver Smiley Happy

Then how should we set VLAN tag in guest OS? I just saw VLANID in device manager-->vmxnet3-->Advanced-->VLANID.

Do we have to set VLANID here? Or we can change it somewhere else? What about other Guest OSes? Like Mikrotik RouterOS? Or Linux? How can I use this valuable feature?

0 Kudos
vmwcomm1
Contributor
Contributor
‎08-30-2019 09:17 AM

I tried this workaround and it didn't seem to work. I intend to configure VLANs inside the guests.

My setup:

  • Host: Windows 10
  • VMware: Workstation 12 and 15 Pro
  • Host NIC: Intel I350-T2 (2 port)
    • Driver: e1i65x64.sys Version 12.17.10.8 (standard Windows 10 driver)
  • One port of the NIC ("#2"), which I intend to use for VMs, has all protocols disabled except for VMware Bridge Protocol (and Wireshark npcap)
  • A Linux guest has a VLAN virtual interface ("vlan20")
  • For diagnosing this issue, I have another Linux system "Remote" connected directly to the Port #2.
    • It also has a VLAN virtual interface ("vlan20")

When I send a packet out of the guest vlan20, it seems to work correctly:

  • Sniffing guest eth0 with Wireshark, I see the VLAN tag was applied by the guest kernel
  • Sniffing host "#2" connection, I see the VLAN tag
  • Sniffing on "Remote" eth0, I see the VLAN tag -- this proves that I can transmit tagged frames
  • Sniffing on "Remote" vlan20 interface, I see the packet with VLAN tag removed (as expected)

However, receiving packets does not work as expected. When I send a packet out of "Remote" (on a VLAN virtual interface "vlan20"):

  • Sniffing "Remote" eth0, I see the VLAN tag was applied
  • Sniffing host "#2" connection, I see the VLAN tag is missing
  • Of course, the guest eth0 also shows no VLAN tag...
  • ...and thus, guest vlan20 interface does not see the packet

So it appears that the Intel NIC driver is, for some reason, stripping the VLAN tag, even though the host should know nothing about VLAN 20.

I even tried disabling "Priority & VLAN" and all other offload features, but it made no difference.

0 Kudos
sjesse
Leadership
Leadership
‎08-30-2019 09:38 AM

You can only do it on the same workstation host if your trying it doing two, I have it working on my workstation esxi lab using Sophos utm. Tagging a bridged interface doesn't seem to work.

0 Kudos
vmwcomm1
Contributor
Contributor
‎08-30-2019 09:54 AM

A colleague and I figured it out! It turns out the Intel driver was stripping the VLAN out of the frames.

This article explains how to enable "Monitor Mode" for the NIC. Apparently the "VMware Bridge Protocol" operates at the same level as a "sniffer":

My Sniffer Isn't Seeing VLAN, 802.1q, or QoS Tagged Frames

Set "MonitorMode" or "MonitorModeEnabled" (or both if you're not sure!) to "1".

0 Kudos
sjesse
Leadership
Leadership
‎09-12-2019 03:11 AM

Did you get tags to pass through though to a vm though? I can see the tags on the bridged adapter, but they never make it out or in.

pastedImage_0.png

0 Kudos