From owner-freebsd-jail@FreeBSD.ORG Mon Feb 3 11:06:48 2014 Return-Path: Delivered-To: freebsd-jail@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id B01E7EB for ; Mon, 3 Feb 2014 11:06:48 +0000 (UTC) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:1900:2254:206c::16:87]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mx1.freebsd.org (Postfix) with ESMTPS id 9B34B1A4A for ; Mon, 3 Feb 2014 11:06:48 +0000 (UTC) Received: from freefall.freebsd.org (localhost [127.0.0.1]) by freefall.freebsd.org (8.14.7/8.14.7) with ESMTP id s13B6m7F022666 for ; Mon, 3 Feb 2014 11:06:48 GMT (envelope-from owner-bugmaster@FreeBSD.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.8/8.14.8/Submit) id s13B6m1v022664 for freebsd-jail@FreeBSD.org; Mon, 3 Feb 2014 11:06:48 GMT (envelope-from owner-bugmaster@FreeBSD.org) Date: Mon, 3 Feb 2014 11:06:48 GMT Message-Id: <201402031106.s13B6m1v022664@freefall.freebsd.org> X-Authentication-Warning: freefall.freebsd.org: gnats set sender to owner-bugmaster@FreeBSD.org using -f From: FreeBSD bugmaster To: freebsd-jail@FreeBSD.org Subject: Current problem reports assigned to freebsd-jail@FreeBSD.org X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 03 Feb 2014 11:06:48 -0000 Note: to view an individual PR, use: http://www.freebsd.org/cgi/query-pr.cgi?pr=(number). The following is a listing of current problems submitted by FreeBSD users. These represent problem reports covering all versions including experimental development code and obsolete releases. S Tracker Resp. Description -------------------------------------------------------------------------------- o kern/184719 jail [jail] Starting jails: cannot start jail "domain_com": o conf/181650 jail [jail] [patch] /etc/rc.d/jail fails if a kernel built o kern/180916 jail [jail] [regression] jail startup is broken for 8.4 wit o kern/180067 jail [jail] [patch] fix multicast support within jails o bin/178302 jail jail(8): unknown parameter: ip6.addr when kernel compi o kern/176112 jail [jail] [panic] kernel panic when starting jails o kern/174902 jail [jail] jail should provide validator for jail names o bin/173469 jail [jail] regression: security.jail.sysvipc_allowed=1 no o kern/169751 jail [jail] reading routing information does not work in ja o bin/167911 jail new jail(8) problem with removal, ifconfg -alias and k o kern/159918 jail [jail] inter-jail communication failure o kern/156111 jail [jail] procstat -b not supported in jail o misc/155765 jail [patch] `buildworld' does not honors WITHOUT_JAIL o conf/154246 jail [jail] [patch] Bad symlink created if devfs mount poin s conf/142972 jail [jail] [patch] Support JAILv2 and vnet in rc.d/jail o conf/141317 jail [patch] uncorrect jail stop in /etc/rc.d/jail o kern/133265 jail [jail] is there a solution how to run nfs client in ja o kern/119842 jail [smbfs] [jail] "Bad address" with smbfs inside a jail o bin/99566 jail [jail] [patch] fstat(1) according to specified jid 19 problems total. From owner-freebsd-jail@FreeBSD.ORG Tue Feb 4 13:19:06 2014 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 936EEB3B for ; Tue, 4 Feb 2014 13:19:06 +0000 (UTC) Received: from sam.nabble.com (sam.nabble.com [216.139.236.26]) (using TLSv1 with cipher AES256-SHA (256/256 bits)) (No client certificate requested) by mx1.freebsd.org (Postfix) with ESMTPS id 73CD51B41 for ; Tue, 4 Feb 2014 13:19:06 +0000 (UTC) Received: from [192.168.236.26] (helo=sam.nabble.com) by sam.nabble.com with esmtp (Exim 4.72) (envelope-from ) id 1WAfu5-0008S7-8A for freebsd-jail@freebsd.org; Tue, 04 Feb 2014 05:19:05 -0800 Date: Tue, 4 Feb 2014 05:19:05 -0800 (PST) From: Beeblebrox To: freebsd-jail@freebsd.org Message-ID: <1391519945225-5882902.post@n5.nabble.com> Subject: jail.conf setting - prevent alias removal on jail shutdown MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 04 Feb 2014 13:19:06 -0000 I have two NIC's, re1 faces internal LAN. re1 also has a jail running on it for diskless clients (tftp, dhcp). IP assigned to re1 by /etc/rc.conf and jail.conf are same: ip4.addr = 192.168.2.1/24 A /32 subnet will break diskless clients and also prevents gatewaying of traffic from laptops connecting from internal LAN. My problem is if I stop the jail, jail script removes IP assigned by rc.conf (obviously). This breaks host gateway function for laptops on the LAN. Is there a setting for jail.conf that prevents removal of jail IP on jail shutdown? If not, the only alternative remaining is to move jail IP to 192.168.2.xx/24 (which I would rather not do). ----- FreeBSD-11-current_amd64_root-on-zfs_RadeonKMS -- View this message in context: http://freebsd.1045724.n5.nabble.com/jail-conf-setting-prevent-alias-removal-on-jail-shutdown-tp5882902.html Sent from the freebsd-jail mailing list archive at Nabble.com. From owner-freebsd-jail@FreeBSD.ORG Tue Feb 4 16:40:11 2014 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id E7DAD6A for ; Tue, 4 Feb 2014 16:40:11 +0000 (UTC) Received: from m2.gritton.org (gritton.org [199.192.164.235]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mx1.freebsd.org (Postfix) with ESMTPS id C5D2C1088 for ; Tue, 4 Feb 2014 16:40:11 +0000 (UTC) Received: from [192.168.0.34] (c-50-168-192-61.hsd1.ut.comcast.net [50.168.192.61]) (authenticated bits=0) by m2.gritton.org (8.14.7/8.14.7) with ESMTP id s14Ge8aa009432; Tue, 4 Feb 2014 09:40:09 -0700 (MST) (envelope-from jamie@gritton.org) Message-ID: <52F117E0.8030307@gritton.org> Date: Tue, 04 Feb 2014 09:40:00 -0700 From: James Gritton User-Agent: Mozilla/5.0 (Windows NT 6.3; WOW64; rv:24.0) Gecko/20100101 Thunderbird/24.2.0 MIME-Version: 1.0 To: freebsd-jail@freebsd.org Subject: Re: jail.conf setting - prevent alias removal on jail shutdown References: <1391519945225-5882902.post@n5.nabble.com> In-Reply-To: <1391519945225-5882902.post@n5.nabble.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: Beeblebrox X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 04 Feb 2014 16:40:12 -0000 On 2/4/2014 6:19 AM, Beeblebrox wrote: > I have two NIC's, re1 faces internal LAN. re1 also has a jail running on it > for diskless clients (tftp, dhcp). IP assigned to re1 by /etc/rc.conf and > jail.conf are same: ip4.addr = 192.168.2.1/24 > A /32 subnet will break diskless clients and also prevents gatewaying of > traffic from laptops connecting from internal LAN. > > My problem is if I stop the jail, jail script removes IP assigned by rc.conf > (obviously). This breaks host gateway function for laptops on the LAN. Is > there a setting for jail.conf that prevents removal of jail IP on jail > shutdown? If not, the only alternative remaining is to move jail IP to > 192.168.2.xx/24 (which I would rather not do). The IP should only be brought up and down if there's an interface mentioned in the jail config. If there's only an IP address, then the jail will be restricted to that IP address without changing any interfaces. I assume your jail configuration has either an "interface" parameter, or an IP address designation like "re1|192.168.2.1"? Just remove that part and you should be good. Along the same lines, if you're not actually setting the interface, you don't need to worry about a subnet mask - the jail itself doesn't use that. - Jamie From owner-freebsd-jail@FreeBSD.ORG Tue Feb 4 17:04:39 2014 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 27D4479B for ; Tue, 4 Feb 2014 17:04:39 +0000 (UTC) Received: from sam.nabble.com (sam.nabble.com [216.139.236.26]) (using TLSv1 with cipher AES256-SHA (256/256 bits)) (No client certificate requested) by mx1.freebsd.org (Postfix) with ESMTPS id 0325012D8 for ; Tue, 4 Feb 2014 17:04:38 +0000 (UTC) Received: from [192.168.236.26] (helo=sam.nabble.com) by sam.nabble.com with esmtp (Exim 4.72) (envelope-from ) id 1WAjQL-0003pj-Ks for freebsd-jail@freebsd.org; Tue, 04 Feb 2014 09:04:37 -0800 Date: Tue, 4 Feb 2014 09:04:37 -0800 (PST) From: Beeblebrox To: freebsd-jail@freebsd.org Message-ID: In-Reply-To: <52F117E0.8030307@gritton.org> References: <1391519945225-5882902.post@n5.nabble.com> <52F117E0.8030307@gritton.org> Subject: Re: jail.conf setting - prevent alias removal on jail shutdown MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Content-Filtered-By: Mailman/MimeDel 2.1.17 X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 04 Feb 2014 17:04:39 -0000 > The IP should only be brought up and down if there's an interface > mentioned in the jail config. In jail.config specify IP address only and remove reference to interface (re1) Brilliant. Works like a charm - thank you very much. ----- FreeBSD-11-current_amd64_root-on-zfs_RadeonKMS -- View this message in context: http://freebsd.1045724.n5.nabble.com/jail-conf-setting-prevent-alias-removal-on-jail-shutdown-tp5882902p5882957.html Sent from the freebsd-jail mailing list archive at Nabble.com.