Skip site navigation (1)Skip section navigation (2) 
Date:      Mon, 14 Oct 2024 14:47:04 +0000
From:      DaLynX <d@l.ynx.fr>
To:        questions@freebsd.org
Subject:   Shared IP jail and VNET jail cannot talk together through bridge
Message-ID:  <5BC5A5BE-849D-4B98-8A39-8BF923ABA523@l.ynx.fr>
next in thread | raw e-mail | index | archive | help 
------LMLOEPSTGUWYRVUHU69Z9A6V7J3HDT
Content-Type: text/plain;
 charset=utf-8
Content-Transfer-Encoding: quoted-printable

Hello,=20

I am running into a strange network issue with jails on one host and canno=
t figure out what I did wrong=2E

I have two jails:
- 104 is a shared IP jail (classic) with an alias on the host's em0
- 115 is a vnet jail with interface vnet0=2E192

There is a bridge0 bridge with em0 and vnet0=2E192 as members

I cannot have the two jails talk together=2E
More precisely, 115 -> 104 works, but not 104 -> 115=2E
I did tests with netcat and tcpdump on the host's bridge0=2E
I can see SYN packets from 104 getting sent repeatedly but no response=2E
If I initiate from 115, I cannot see the initiation packet (??) but I can =
see the SYN+ACK coming in repeatedly from 104 too=2E

Any idea what's wrong and how to fix it?

Kind regards,=20
DaLynX
------LMLOEPSTGUWYRVUHU69Z9A6V7J3HDT
Content-Type: text/html;
 charset=utf-8
Content-Transfer-Encoding: quoted-printable

<!DOCTYPE html><html><body><div dir=3D"auto">Hello, <br><br>I am running in=
to a strange network issue with jails on one host and cannot figure out wha=
t I did wrong=2E<br><br>I have two jails:<br>- 104 is a shared IP jail (cla=
ssic) with an alias on the host's em0<br>- 115 is a vnet jail with interfac=
e vnet0=2E192<br><br>There is a bridge0 bridge with em0 and vnet0=2E192 as =
members<br><br>I cannot have the two jails talk together=2E<br>More precise=
ly, 115 -&gt; 104 works, but not 104 -&gt; 115=2E<br>I did tests with netca=
t and tcpdump on the host's bridge0=2E<br>I can see SYN packets from 104 ge=
tting sent repeatedly but no response=2E<br>If I initiate from 115, I canno=
t see the initiation packet (??) but I can see the SYN+ACK coming in repeat=
edly from 104 too=2E<br><br>Any idea what's wrong and how to fix it?<br><br=
>Kind regards, <br>DaLynX</div></body></html>
------LMLOEPSTGUWYRVUHU69Z9A6V7J3HDT--

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?5BC5A5BE-849D-4B98-8A39-8BF923ABA523>