Hi,

Here is the bug with MAC VLAN that i was able to reproduce :

VLAN to create

1

2

1. 802.1Q VLAN -> VLAN Config

VLAN #1

- Port #1 untagged

- Port #3 untagged

VLAN #2

- Set two ports #1-2 untagged packet

- Set a port #3 with tagged packet

2. 802.1Q VLAN -> CONFIG -> Set PVID on Port #2 (Untagged) to 2. (All others stay to PVID 1)

3. Add MAC VLAN (set the MAC to put to VLAN 2) and enable MAC VLAN on port #1

Make some test.

1. Connect the device with MAC on port #1.

2. Connect a device on port #2.

3. Connect another switch or device that can do VLAN 2 or untagged (VLAN 1) on port #3.

Here are my results :

1. VLAN 2 - You can ping #1 to port #2 and vice-versa. OK (MAC VLAN work on untagged port!)

2. VLAN 2 - You can ping #3 to port #2  and vice-versa. OK

3. VLAN 2 - BUT YOU CANNOT PING #3 (A TAGGED PORT) to #1 (UNTAGGED PORT) (even if the device should be in VLAN 2 due to the MAC) ---- THIS IS THE BUGGY ONE

If you set PVID on port #1 to 2 it fix the issue and now you can ping #3 to #1. (Which break the whole MAC VLAN thing), instead of using the PVID to remove the tagged packet it must use the MAC VLAN rules instead.

4. VLAN 1 - If you plug another device (untagged on port #1 and #3) it work on VLAN 1 OK

I tried an Ubiquiti switch to see if it work and MAC VLAN don't have this issue on the other switch (the mac vlan is working with tagged packet which is not the case with the TL-SG3428X)

Thank you for your help,