From owner-freebsd-xen@freebsd.org Tue Aug 9 13:16:50 2016 Return-Path: Delivered-To: freebsd-xen@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id E451ABB342D; Tue, 9 Aug 2016 13:16:50 +0000 (UTC) (envelope-from prvs=022e014eb=roger.pau@citrix.com) Received: from SMTP02.CITRIX.COM (smtp02.citrix.com [66.165.176.63]) (using TLSv1.2 with cipher RC4-SHA (128/128 bits)) (Client CN "mail.citrix.com", Issuer "DigiCert SHA2 Secure Server CA" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 5A0301B7B; Tue, 9 Aug 2016 13:16:49 +0000 (UTC) (envelope-from prvs=022e014eb=roger.pau@citrix.com) X-IronPort-AV: E=Sophos;i="5.28,494,1464652800"; d="scan'208";a="378600540" Date: Tue, 9 Aug 2016 13:32:41 +0200 From: Roger Pau =?iso-8859-1?Q?Monn=E9?= To: Miguel C CC: freebsd-current , Subject: Re: FreeBSD 11 - BETA-1 Xen DOMU loses network when jail (VIMAGE) starts Message-ID: <20160809113210.p2rkqmjnypg2iw5l@mac> References: <20160809085523.kow2qbpirzppytv6@mac> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Disposition: inline Content-Transfer-Encoding: 8bit In-Reply-To: User-Agent: Mutt/1.6.2-neo (2016-06-11) X-DLP: MIA1 X-BeenThere: freebsd-xen@freebsd.org X-Mailman-Version: 2.1.22 Precedence: list List-Id: Discussion of the freebsd port to xen - implementation and usage List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 09 Aug 2016 13:16:51 -0000 On Tue, Aug 09, 2016 at 12:12:34PM +0100, Miguel C wrote: > Melhores Cumprimentos // Best Regards > ----------------------------------------------- > *Miguel Clara* > *IT - Sys Admin & Developer* > > On Tue, Aug 9, 2016 at 9:55 AM, Roger Pau Monné > wrote: > > > On Sat, Jul 23, 2016 at 08:46:49PM +0100, Miguel C wrote: > > > Just as a note using netgraph (with jng script as a workaround) works.... > > > > > > Also manually creating a bridge in the domu and adding xn0 as a member > > > makes this fail.... so the issue is indeed related to the bridge. > > > > > > I'll open a PR later in case someone want to look into it, but I'm happy > > it > > > works with netgraph. > > > > I seem to be able to use xn* interfaces with bridges without problems: > > > > xn0: flags=8943 metric 0 > > mtu 1500 > > options=3 > > ether 00:16:3e:74:3d:76 > > nd6 options=29 > > media: Ethernet manual > > status: active > > bridge0: flags=8843 metric 0 mtu > > 1500 > > ether 02:77:3d:4a:18:00 > > inet 172.16.1.140 netmask 0xffffff00 broadcast 172.16.1.255 > > nd6 options=9 > > groups: bridge > > id 00:00:00:00:00:00 priority 32768 hellotime 2 fwddelay 15 > > maxage 20 holdcnt 6 proto rstp maxaddr 2000 timeout 1200 > > root id 00:00:00:00:00:00 priority 32768 ifcost 0 port 0 > > member: xn0 flags=143 > > ifmaxaddr 0 port 2 priority 128 path cost 2000000 > > > > Is this a GENERIC kernel or are you using some custom > > configuration/patches? > > Can you provide some more information about how to reproduce this? > > > > GENERIC + VIMAGE, but that's just it, no other custom changes or patches. > > Note however that this is under a NetbBSD Dom0, and I see the "vifXX" > interface disappear in the Dom0 side when the bridge is create on FreeBSD > DomU. > > I'm actually happy with netgraph, although I've never played with it, and > seems more complex, the script provide in /share/examples is perfect to use > with "jail.conf" and pf seems happy in FreeBSD-11 (which is not CURRENT, > should we move this to a different mailing list!?) too, no panics so far. > > I suspect the main issue, since it works fine for you is the fact that this > is in a NetBSD Dom0. Oh, from your previous email I thought that it was the interface inside of the DomU that disappeared. Does then same happen on a NetBSD Dom0 with a NetBSD DomU? Roger.