From owner-freebsd-net@freebsd.org  Wed Jul  3 07:48:16 2019
Return-Path: <owner-freebsd-net@freebsd.org>
Delivered-To: freebsd-net@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 51FAC15CA844
 for <freebsd-net@mailman.ysv.freebsd.org>;
 Wed,  3 Jul 2019 07:48:16 +0000 (UTC)
 (envelope-from eugen@grosbein.net)
Received: from eg.sd.rdtc.ru (eg.sd.rdtc.ru [IPv6:2a03:3100:c:13::5])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client CN "eg.sd.rdtc.ru", Issuer "eg.sd.rdtc.ru" (not verified))
 by mx1.freebsd.org (Postfix) with ESMTPS id 49AFB8E0F5
 for <freebsd-net@freebsd.org>; Wed,  3 Jul 2019 07:48:15 +0000 (UTC)
 (envelope-from eugen@grosbein.net)
X-Envelope-From: eugen@grosbein.net
X-Envelope-To: freebsd-net@freebsd.org
Received: from [10.58.0.4] ([10.58.0.4])
 by eg.sd.rdtc.ru (8.15.2/8.15.2) with ESMTPS id x637m9Lq011905
 (version=TLSv1.2 cipher=DHE-RSA-AES128-SHA bits=128 verify=NOT);
 Wed, 3 Jul 2019 14:48:09 +0700 (+07)
 (envelope-from eugen@grosbein.net)
Subject: Re: Network issues while jails are starting
To: wishmaster <artemrts@ukr.net>
References: <1562134249.868399000.r0je57so@frv50.fwdcdn.com>
 <2deee082-1dca-b93f-39f7-33d4c4f5b09d@grosbein.net>
 <1562138561.380322000.k6ndni22@frv50.fwdcdn.com>
Cc: freebsd-net@freebsd.org
From: Eugene Grosbein <eugen@grosbein.net>
Message-ID: <00f0cbdf-b68f-bb6e-c9d9-1abf735cdf19@grosbein.net>
Date: Wed, 3 Jul 2019 14:48:02 +0700
User-Agent: Mozilla/5.0 (Windows NT 6.3; WOW64; rv:45.0) Gecko/20100101
 Thunderbird/45.8.0
MIME-Version: 1.0
In-Reply-To: <1562138561.380322000.k6ndni22@frv50.fwdcdn.com>
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 8bit
X-Rspamd-Queue-Id: 49AFB8E0F5
X-Spamd-Bar: /
Authentication-Results: mx1.freebsd.org;
 spf=permerror (mx1.freebsd.org: domain of eugen@grosbein.net uses mechanism
 not recognized by this client) smtp.mailfrom=eugen@grosbein.net
X-Spamd-Result: default: False [-0.33 / 15.00]; MX_INVALID(0.50)[cached];
 TO_DN_SOME(0.00)[]; R_SPF_PERMFAIL(0.00)[];
 RCPT_COUNT_TWO(0.00)[2]; FREEMAIL_TO(0.00)[ukr.net];
 FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[];
 MIME_TRACE(0.00)[0:+];
 ASN(0.00)[asn:29072, ipnet:2a03:3100::/32, country:RU];
 MID_RHS_MATCH_FROM(0.00)[]; ARC_NA(0.00)[];
 NEURAL_HAM_MEDIUM(-0.44)[-0.437,0]; FROM_HAS_DN(0.00)[];
 NEURAL_SPAM_SHORT(0.43)[0.435,0];
 NEURAL_HAM_LONG(-0.78)[-0.777,0]; MIME_GOOD(-0.10)[text/plain];
 DMARC_NA(0.00)[grosbein.net]; TO_MATCH_ENVRCPT_SOME(0.00)[];
 IP_SCORE(0.05)[asn: 29072(0.23), country: RU(0.01)];
 RCVD_COUNT_TWO(0.00)[2]; RCVD_TLS_ALL(0.00)[]
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-net>,
 <mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net/>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-net>,
 <mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 03 Jul 2019 07:48:16 -0000

03.07.2019 14:28, wishmaster пишет:
> 
>   
> 
> --- Original message ---
> From: "Eugene Grosbein" <eugen@grosbein.net>
> Date: 3 July 2019, 10:16:31
> 
> 03.07.2019 14:08, wishmaster wrote:
> 
>>
>> Hi,
>>
>> the office's server has 6 jails and 2 bhyve virtual servers.
>> The problem is when I restart server, jails start for a long time (about 6 minutes). All this time the server does not acts as router, that is no packets between interfaces. From within the server packets are transmitted and received (ping works correctly), but from LAN - no.
>>
>> I do not remember either this issue has appeared after upgrading to 12.0 or switching from STABLE to RELEASE branch, but this issue has been appearing for about half of year or little more.
>>
>> Toggle sysctl net.inet.ip.forwarding while jails are starting don't help.
>>
>> root@e-server: uname -a
>> FreeBSD e-server 12.0-RELEASE-p3 FreeBSD 12.0-RELEASE-p3 GENERIC  amd64
>>
>> jail_enable="YES"
>> jail_parallel_start="NO"
>> jail_list="basejail jdb jphp jwww jmail jdns"
>> jail_reverse_stop="YES"
>> Any advices?
> 
> Does your LAN use NAT service of the router and/or its DNS resolver?
> You should uncomment /var/log/console.log in the /etc/syslog.conf,
> create this file and reboot then read the file carefully and check whether
> you NAT/DNS services start before jails.
> 
> Logging to the console log file is already enabled.
> I check Internet connection w/o DNS services.
> 
> Some logs...

[skip] 

> Jul  3 07:57:04 e-server kernel: Jul  3 07:57:04 e-server kernel: ng_ether_ifnet_arrival_event: can't re-name node epair8b
> Jul  3 07:57:27 e-server kernel:  jphp

If you use ethernet bridging for jails and real NIC, make sure you do NOT assign any IP addresses
to bridge members. Instead, assign all IP addresses to the bridge itself as aliases
and make sure you bring the bridge and real nic UP before start of jails.