Date: Mon, 08 Jun 2026 09:43:43 +0200 From: Kristof Provost <kp@FreeBSD.org> To: Doug Rabson <dfr@rabson.org> Cc: freebsd-jail@freebsd.org Subject: Re: Running pfctl inside a jail Message-ID: <96E80293-2013-452F-859C-B725EA7963CF@FreeBSD.org> In-Reply-To: <CACA0VUhJ78ES4AGMtLvZOVRJLoK=w=Vot%2BKSbx3Q=ikdC8UkFQ@mail.gmail.com>
index | next in thread | previous in thread | raw e-mail
On 7 Jun 2026, at 19:04, Doug Rabson wrote: > While upgrading machines in my home lab to 15.0, I discovered that I can no > longer run pfctl in a jail. Trying to run something simple like 'pfctl -s > nat' fails with the error: "pfctl: DIOCGETRULES: Operation not permitted". > That’s unexpected. I’m not aware of any reason why that would not work. That’s something the pf tests do consistently, and I’ve just tried on a stable/15 machine and it also just worked. Is the jail a different freebsd version from the host kernel? Best regards, Kristofhome | help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?96E80293-2013-452F-859C-B725EA7963CF>