From owner-freebsd-jail@freebsd.org Mon Oct 26 01:14:08 2020 Return-Path: Delivered-To: freebsd-jail@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 0C26645DCBC for ; Mon, 26 Oct 2020 01:14:08 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mailman.nyi.freebsd.org (mailman.nyi.freebsd.org [IPv6:2610:1c1:1:606c::50:13]) by mx1.freebsd.org (Postfix) with ESMTP id 4CKH0v6c1Sz4mN9 for ; Mon, 26 Oct 2020 01:14:07 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: by mailman.nyi.freebsd.org (Postfix) id E0DF745DAF2; Mon, 26 Oct 2020 01:14:07 +0000 (UTC) Delivered-To: jail@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id E0A3445DE09 for ; Mon, 26 Oct 2020 01:14:07 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4CKH0v5dVCz4mFb for ; Mon, 26 Oct 2020 01:14:07 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id A4E2E129C8 for ; Mon, 26 Oct 2020 01:14:07 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 09Q1E7h3030472 for ; Mon, 26 Oct 2020 01:14:07 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 09Q1E7Vm030471 for jail@FreeBSD.org; Mon, 26 Oct 2020 01:14:07 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: jail@FreeBSD.org Subject: [Bug 206012] jail(8): Cannot assign link-local IPv6 address to a jail Date: Mon, 26 Oct 2020 01:14:06 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: CURRENT X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: dvl@FreeBSD.org X-Bugzilla-Status: Open X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: jail@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: cc Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 26 Oct 2020 01:14:08 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D206012 Dan Langille changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |dvl@FreeBSD.org --- Comment #5 from Dan Langille --- 4 years later, I'm hoping to do something similar... --=20 You are receiving this mail because: You are the assignee for the bug.= From owner-freebsd-jail@freebsd.org Fri Oct 30 10:45:43 2020 Return-Path: Delivered-To: freebsd-jail@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 2473544EC13 for ; Fri, 30 Oct 2020 10:45:43 +0000 (UTC) (envelope-from SRS0=CmO5=EF=perdition.city=julien@bebif.be) Received: from orval.bbpf.belspo.be (orval.bbpf.belspo.be [193.191.208.90]) by mx1.freebsd.org (Postfix) with ESMTP id 4CMzVZ3CYsz3Ydx for ; Fri, 30 Oct 2020 10:45:41 +0000 (UTC) (envelope-from SRS0=CmO5=EF=perdition.city=julien@bebif.be) Received: from x1 (unknown [77.109.77.31]) by orval.bbpf.belspo.be (Postfix) with ESMTPSA id 0CBAF1D4FC10 for ; Fri, 30 Oct 2020 11:45:35 +0100 (CET) Date: Fri, 30 Oct 2020 11:45:31 +0100 From: Julien Cigar To: freebsd-jail@freebsd.org Subject: Re: VNET jails + VLAN over LAGG Message-ID: <20201030104531.au6h4xiadeyvbnvi@x1> Mail-Followup-To: freebsd-jail@freebsd.org References: <20201022111808.jokw2nfxvmvrw5d6@x1> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Disposition: inline In-Reply-To: <20201022111808.jokw2nfxvmvrw5d6@x1> X-Rspamd-Queue-Id: 4CMzVZ3CYsz3Ydx X-Spamd-Bar: - Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of SRS0=CmO5=EF=perdition.city=julien@bebif.be designates 193.191.208.90 as permitted sender) smtp.mailfrom=SRS0=CmO5=EF=perdition.city=julien@bebif.be X-Spamd-Result: default: False [-1.37 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-0.96)[-0.963]; FROM_HAS_DN(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; R_SPF_ALLOW(-0.20)[+mx]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-jail@freebsd.org]; TO_DN_NONE(0.00)[]; RCPT_COUNT_ONE(0.00)[1]; NEURAL_HAM_LONG(-0.97)[-0.969]; MID_RHS_NOT_FQDN(0.50)[]; NEURAL_HAM_SHORT(-0.03)[-0.034]; DMARC_NA(0.00)[perdition.city]; FORGED_SENDER(0.30)[julien@perdition.city,SRS0=CmO5=EF=perdition.city=julien@bebif.be]; RCVD_NO_TLS_LAST(0.10)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:2611, ipnet:193.191.192.0/19, country:BE]; FROM_NEQ_ENVFROM(0.00)[julien@perdition.city,SRS0=CmO5=EF=perdition.city=julien@bebif.be]; MAILMAN_DEST(0.00)[freebsd-jail]; RCVD_COUNT_TWO(0.00)[2] X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 30 Oct 2020 10:45:43 -0000 A little followup on this, in an attempt to virtualize my FreeBSD router/firewall, it almost works with https://gist.github.com/silenius/5f556a036330f1595e2e6fcdd5e5e18e The only thing the doesn't work is the vhid (CARP) on the epairxb interface: as long as the jail is running it works, if I'm stopping the jail the other side switch from BACKUP to MASTER, which is OK, but when I'm starting the jail again afterwards the epairxb never goes to MASTER mode, (it stays in BACKUP mode) although it should... any idea? is CARP supposed to work with epair interfaces? Thanks, Julien On Thu, Oct 22, 2020 at 01:18:08PM +0200, Julien Cigar wrote: > Hello, > > I've a lagg0 interface with three ports: igb0,igb1,igb2 (with LACP). On > top of that I've several VLAN interfaces: vlan10, vlan11, vlan12 with > vlandev lagg0. All those vlans have ip addresses and one of them shares > also a vhid (through CARP). > Translated in ifconfig/rc.conf it gives (1) > > Currently I've several jails, all non-VNET, and I'd like to add a bunch > of VNET jails through epair and bridge. I'm wondering how should it be > done regarding the VLAN/LAGG interface(s).. (given that non-VNET jails > should continue to work too)? > > Some things I wonder: > - If I'm adding a vlan interface to a bridge, I guess the IP addresses > should be moved to the bridge, right? How will behave the non-VNET > jails..? How will behave the vhid on the HOST? Should I add a tap > interface in the HOST on top of the bridge too? > > - From what I can read the best is to create one bridge per vlan, adding > the corresponding HOST vlan and the epairxa, is this correct? > > Thanks, > Julien > > (1) https://gist.githubusercontent.com/silenius/6066696fe78c95177548319f125d9c44/raw/0319e4d1cad33201ea66e2258a74f8349116fbc9/gistfile1.txt > > -- > Julien Cigar > Belgian Biodiversity Platform (http://www.biodiversity.be) > PGP fingerprint: EEF9 F697 4B68 D275 7B11 6A25 B2BB 3710 A204 23C0 > No trees were killed in the creation of this message. > However, many electrons were terribly inconvenienced. > _______________________________________________ > freebsd-jail@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-jail > To unsubscribe, send any mail to "freebsd-jail-unsubscribe@freebsd.org" -- Julien Cigar Belgian Biodiversity Platform (http://www.biodiversity.be) PGP fingerprint: EEF9 F697 4B68 D275 7B11 6A25 B2BB 3710 A204 23C0 No trees were killed in the creation of this message. However, many electrons were terribly inconvenienced.