From owner-freebsd-virtualization@freebsd.org  Thu Oct 22 14:03:06 2020
Return-Path: <owner-freebsd-virtualization@freebsd.org>
Delivered-To: freebsd-virtualization@mailman.nyi.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
 by mailman.nyi.freebsd.org (Postfix) with ESMTP id 262954498C5
 for <freebsd-virtualization@mailman.nyi.freebsd.org>;
 Thu, 22 Oct 2020 14:03:06 +0000 (UTC) (envelope-from darcy@druid.net)
Received: from mail.vex.net (mail.vex.net [98.158.139.68])
 by mx1.freebsd.org (Postfix) with ESMTP id 4CH8G11D9xz3gG1
 for <freebsd-virtualization@freebsd.org>; Thu, 22 Oct 2020 14:03:04 +0000 (UTC)
 (envelope-from darcy@druid.net)
Received: from imp.druid.net (unknown [98.158.128.36])
 (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits)
 key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256)
 (No client certificate requested) (Authenticated sender: darcy)
 by mail.vex.net (Postfix) with ESMTPSA id 8C84E3DA9C;
 Thu, 22 Oct 2020 10:03:03 -0400 (EDT)
To: Jason Tubnor <jason@tubnor.net>
Cc: "Patrick M. Hausen" <hausen@punkt.de>,
 "freebsd-virtualization@freebsd.org" <freebsd-virtualization@freebsd.org>
References: <57c32e6d-5572-3d3b-1a57-f3064bee7dc2@druid.net>
 <20201020065630.GE8272@funkthat.com>
 <CF189122-7D85-4BF1-9172-75D3EE0E77FB@punkt.de>
 <3ed627e2-d99a-107e-4135-8aef1ad4ec71@druid.net>
 <30A67F82-312E-4651-A5E7-2E2AD926FF24@punkt.de>
 <973b1b56-817f-6976-e5d3-34cfbc373b13@druid.net>
 <A075C069-1F89-428C-BDB7-7A9F44A4E283@punkt.de>
 <723CA318-80E9-4A6B-91ED-E791A40CC2C0@punkt.de>
 <6267599d-bc0c-6d63-bb19-1fc695e53997@druid.net>
 <CACLnyCJmLcRe-19iy2eZY8gxF9PGbzvaudTGEFcAHaMidL8XAw@mail.gmail.com>
From: D'Arcy Cain <darcy@druid.net>
Autocrypt: addr=darcy@druid.net; keydata=
 xjMEXu32OxYJKwYBBAHaRw8BAQdAD839OEQVMqCs45KVwLKg4srvl51WsVhMpTGOd9z3Ym3N
 HUQnQXJjeSBDYWluIDxkYXJjeUBkcnVpZC5uZXQ+wpYEExYIAD4WIQSQJTNYM0vv3aTmBCs/
 5DDweYZnXQUCXu32OwIbAwUJCWYBgAULCQgHAgYVCgkICwIEFgIDAQIeAQIXgAAKCRA/5DDw
 eYZnXWAxAP9cDL1j4koUFRBNQyC4iMp/cx5KnozmtsFtiTrWdZBrIwD6A2rLFx60tJryd/qp
 SZpXk7UPDLH/PY1hstjx9WUbXQjOOARe7fY7EgorBgEEAZdVAQUBAQdAbK0SOaTRrkI2QAWz
 rCz29D2RDOgGTvEbDpyWiyA5RhQDAQgHwn4EGBYIACYWIQSQJTNYM0vv3aTmBCs/5DDweYZn
 XQUCXu32OwIbDAUJCWYBgAAKCRA/5DDweYZnXaNOAQDC77ymNjoMZQVgDCcmgZEk6IZxn45k
 nyW17OYCpRctvgD9Fg3aocAbHK7V9AhmSbDPxLNQygQUPjjU7Cyn97b1cQs=
Subject: Re: When is a switch not a switch?
Message-ID: <b39bb54e-dd49-e7b6-5493-41f40a9ee74a@druid.net>
Date: Thu, 22 Oct 2020 10:03:02 -0400
User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:78.0) Gecko/20100101
 Thunderbird/78.3.2
MIME-Version: 1.0
In-Reply-To: <CACLnyCJmLcRe-19iy2eZY8gxF9PGbzvaudTGEFcAHaMidL8XAw@mail.gmail.com>
Content-Type: multipart/signed; micalg=pgp-sha256;
 protocol="application/pgp-signature";
 boundary="FL3DnYvzZ43pBiL4XQdoqBeRISABlVMxZ"
X-Rspamd-Queue-Id: 4CH8G11D9xz3gG1
X-Spamd-Bar: -
Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none;
 spf=none (mx1.freebsd.org: domain of darcy@druid.net has no SPF policy when
 checking 98.158.139.68) smtp.mailfrom=darcy@druid.net
X-Spamd-Result: default: False [-1.37 / 15.00]; TO_DN_EQ_ADDR_SOME(0.00)[];
 RCVD_VIA_SMTP_AUTH(0.00)[]; MID_RHS_MATCH_FROM(0.00)[];
 FROM_HAS_DN(0.00)[]; RCPT_COUNT_THREE(0.00)[3];
 TO_DN_SOME(0.00)[]; NEURAL_HAM_LONG(-1.01)[-1.008];
 HAS_ATTACHMENT(0.00)[];
 MIME_GOOD(-0.20)[multipart/signed,multipart/mixed,text/plain,application/pgp-keys];
 ARC_NA(0.00)[]; AUTH_NA(1.00)[]; DMARC_NA(0.00)[druid.net];
 TO_MATCH_ENVRCPT_SOME(0.00)[]; NEURAL_SPAM_SHORT(0.30)[0.298];
 NEURAL_HAM_MEDIUM(-0.56)[-0.558]; SIGNED_PGP(-2.00)[];
 R_SPF_NA(0.00)[no SPF record]; RCVD_NO_TLS_LAST(0.10)[];
 FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[];
 MIME_TRACE(0.00)[0:+,1:+,2:+,3:+,4:+,5:~];
 ASN(0.00)[asn:19842, ipnet:98.158.139.0/24, country:CA];
 SUBJECT_ENDS_QUESTION(1.00)[];
 MAILMAN_DEST(0.00)[freebsd-virtualization];
 RCVD_COUNT_TWO(0.00)[2]
X-Content-Filtered-By: Mailman/MimeDel 2.1.33
X-BeenThere: freebsd-virtualization@freebsd.org
X-Mailman-Version: 2.1.33
Precedence: list
List-Id: "Discussion of various virtualization techniques FreeBSD supports."
 <freebsd-virtualization.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-virtualization>, 
 <mailto:freebsd-virtualization-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-virtualization/>
List-Post: <mailto:freebsd-virtualization@freebsd.org>
List-Help: <mailto:freebsd-virtualization-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-virtualization>, 
 <mailto:freebsd-virtualization-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 22 Oct 2020 14:03:06 -0000

This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
--FL3DnYvzZ43pBiL4XQdoqBeRISABlVMxZ
Content-Type: multipart/mixed; boundary="Iuj4QjErnR6RKdLFKD9UAonvqgIFjeGVy";
 protected-headers="v1"
From: D'Arcy Cain <darcy@druid.net>
To: Jason Tubnor <jason@tubnor.net>
Cc: "Patrick M. Hausen" <hausen@punkt.de>,
 "freebsd-virtualization@freebsd.org" <freebsd-virtualization@freebsd.org>
Message-ID: <b39bb54e-dd49-e7b6-5493-41f40a9ee74a@druid.net>
Subject: Re: When is a switch not a switch?
References: <57c32e6d-5572-3d3b-1a57-f3064bee7dc2@druid.net>
 <20201020065630.GE8272@funkthat.com>
 <CF189122-7D85-4BF1-9172-75D3EE0E77FB@punkt.de>
 <3ed627e2-d99a-107e-4135-8aef1ad4ec71@druid.net>
 <30A67F82-312E-4651-A5E7-2E2AD926FF24@punkt.de>
 <973b1b56-817f-6976-e5d3-34cfbc373b13@druid.net>
 <A075C069-1F89-428C-BDB7-7A9F44A4E283@punkt.de>
 <723CA318-80E9-4A6B-91ED-E791A40CC2C0@punkt.de>
 <6267599d-bc0c-6d63-bb19-1fc695e53997@druid.net>
 <CACLnyCJmLcRe-19iy2eZY8gxF9PGbzvaudTGEFcAHaMidL8XAw@mail.gmail.com>
In-Reply-To: <CACLnyCJmLcRe-19iy2eZY8gxF9PGbzvaudTGEFcAHaMidL8XAw@mail.gmail.com>

--Iuj4QjErnR6RKdLFKD9UAonvqgIFjeGVy
Content-Type: multipart/mixed;
 boundary="------------47019A699F3C4F200A021DDF"
Content-Language: en-US

This is a multi-part message in MIME format.
--------------47019A699F3C4F200A021DDF
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Transfer-Encoding: quoted-printable

On 10/21/20 11:16 PM, Jason Tubnor wrote:
>     public: flags=3D8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric=
 0 mtu 1500
>      =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0ether 02:9d:b2:b8:78:00
>      =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0inet 98.158.139.65 netmask 0xfff=
fffe0 broadcast 98.158.139.95
>      =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0id 00:00:00:00:00:00 priority 32=
768 hellotime 2 fwddelay 15
>      =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0maxage 20 holdcnt 6 proto rstp m=
axaddr 2000 timeout 1200
>      =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0root id 00:00:00:00:00:00 priori=
ty 32768 ifcost 0 port 0
>      =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0member: eth0 flags=3D143<LEARNIN=
G,DISCOVER,AUTOEDGE,AUTOPTP>
>      =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0ifma=
xaddr 0 port 1 priority 128 path cost 55
>      =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0groups: bridge
>      =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0nd6 options=3D9<PERFORMNUD,IFDIS=
ABLED>
>     tap0: flags=3D8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0=
 mtu 1500
>      =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0description: vmnet-BASE-0-public=

>      =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0options=3D80000<LINKSTATE>
>      =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0ether 00:bd:5f:56:f8:00
>      =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0groups: tap vm-port
>      =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0media: Ethernet autoselect
>      =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0status: active
>      =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0nd6 options=3D29<PERFORMNUD,IFDI=
SABLED,AUTO_LINKLOCAL>
>      =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0Opened by PID 3679
>=20
>=20
> tap0 is not a member of public so has no way to get to eth0 or public.

Odd.  I thought that vm-bhyve did that when the VM came up.

Hmm.  It looks like tap0 gets attached to vm-public if it is configured t=
o=20
attach to public.  Perhaps I just need to name the bridge that way.

> I'd avoid creating the 'public' bridge and let vm-bhyve create it. =20
> Something like:
>=20
> vm switch create public
> vm switch add public eth0

But then I can't create the IP on the host until too late in the boot.  I=
=20
assume that you mean to do that in rc.local.  Are you sure that the above=
 is=20
any different than what I did?

> Then for the guest:
>=20
> vm add -d network -s public <guestname>

Hard to automate when VM can migrate to another host.

--=20
D'Arcy J.M. Cain <darcy@druid.net>         |  Democracy is three wolves
http://www.druid.net/darcy/                |  and a sheep voting on
+1 416 788 2246     (DoD#0082)    (eNTP)   |  what's for dinner.
IM: darcy@VybeNetworks.com, VoIP: sip:darcy@druid.net

Disclaimer: By sending an email to ANY of my addresses you
are agreeing that:

1.  I am by definition, "the intended recipient".
2.  All information in the email is mine to do with as I see
     fit and make such financial profit, political mileage, or
     good joke as it lends itself to. In particular, I may quote
     it where I please.
3.  I may take the contents as representing the views of
     your company if I so wish.
4.  This overrides any disclaimer or statement of
     confidentiality that may be included or implied in
     your message.

--------------47019A699F3C4F200A021DDF--

--Iuj4QjErnR6RKdLFKD9UAonvqgIFjeGVy--

--FL3DnYvzZ43pBiL4XQdoqBeRISABlVMxZ
Content-Type: application/pgp-signature; name="OpenPGP_signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="OpenPGP_signature"

-----BEGIN PGP SIGNATURE-----

wnsEABYIACMWIQSQJTNYM0vv3aTmBCs/5DDweYZnXQUCX5GRFgUDAAAAAAAKCRA/5DDweYZnXabT
AP47hAaylY2roGill+T1YL2IeZ/JM4EmTYaPxadW3aUwJwEArz75nXo5cKfrP1FgH/kKn263O7M+
pVSUf7EuHn2mZwU=
=JFds
-----END PGP SIGNATURE-----

--FL3DnYvzZ43pBiL4XQdoqBeRISABlVMxZ--