Date: Mon, 23 Oct 2017 13:58:49 +0200 From: Marko =?UTF-8?B?Q3VwYcSH?= <marko.cupac@mimar.rs> To: Andrew Hotlab <andrew.hotlab@hotmail.com> Cc: "freebsd-jail@freebsd.org" <freebsd-jail@freebsd.org> Subject: Re: setfib (ez)jails and wierd routing Message-ID: <20171023135849.63832543@efreet-freebsd.kappastar.com> In-Reply-To: <AM5PR0201MB24675737A4E2E53560E765A6F64C0@AM5PR0201MB2467.eurprd02.prod.outlook.com> References: <20170929103258.2f912308@efreet-freebsd.kappastar.com> <AM3PR02MB31250DCB6D22C712457C38EF67F0@AM3PR02MB312.eurprd02.prod.outlook.com> <20171016161844.7ddb1fe7@efreet-freebsd.kappastar.com> <AM5PR0201MB24675737A4E2E53560E765A6F64C0@AM5PR0201MB2467.eurprd02.prod.outlook.com>
index | next in thread | previous in thread | raw e-mail
On Tue, 17 Oct 2017 15:17:16 +0000
Andrew Hotlab <andrew.hotlab@hotmail.com> wrote:
> root@BSD11:~ # cat /etc/jail.conf
> exec.start = "/bin/sh /etc/rc";
> exec.stop = "/bin/sh /etc/rc.shutdown";
> exec.clean;
> mount.devfs;
> jtest01 {
> host.hostname = "jtest01.test.lab";
> path = /usr/jails/jtest01;
> ip4.addr = "em0|172.21.10.101/32";
> persist;
> allow.raw_sockets;
> exec.fib = "1";
> }
Andrew,
do you have the ability to remove allow.raw_sockets line from jtest01
jail and try to ping it while tcpdumping icmp on em1? You should see
reply packets leaving em1.
Thank you in advance.
--
Before enlightenment - chop wood, draw water.
After enlightenment - chop wood, draw water.
Marko Cupać
https://www.mimar.rs/
home |
help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20171023135849.63832543>
