Date: Tue, 22 Oct 2002 18:03:37 -0700 From: Sean Chittenden <sean@chittenden.org> To: Bill Coutinho <bill.coutinho@dextra.com.br> Cc: freebsd-arch@FreeBSD.ORG Subject: Re: Jail subsystem + 802.1Q VLANs Message-ID: <20021023010337.GC33299@perrin.int.nxad.com> In-Reply-To: <NEBBKGFCALOCPEPBDDBCGEEMDIAA.bill.coutinho@dextra.com.br> References: <NEBBKGFCALOCPEPBDDBCGEEMDIAA.bill.coutinho@dextra.com.br>
next in thread | previous in thread | raw e-mail | index | archive | help
> I've read about the Jail subsystem, and learned that each jailed
> process is bound to an specific IP address ("ip_number" field in
> "struct jail"). That's fine, but my question is:
>
> Is it possible to associate a jailed process to a VLAN number in a
> 802.1Q enabled net interface?
I believe with the patch posted by Marko Zec <zec@tel.fer.hr> at
http://www.tel.fer.hr/zec/BSD/vimage/
would make it possible. Are there other comments/thoughts about this
patch? It basically lets you create multiple network stacks as
virtual networks. A chump example would be a BSD system with four
nics, and two nics in each virtual network. It'd be possible to do
static routing on each of the virtual networks so that there would be
two default routes on a single system.
With my network admin hat on, this work is really interesting to me
because it means I can cram a BSD router into broken network
topologies where other products/os'es can't be wedged. Could the
various net code guru's please review this? -sc
--
Sean Chittenden
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-arch" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20021023010337.GC33299>