From owner-freebsd-stable@freebsd.org Mon Aug 24 21:46:13 2015 Return-Path: Delivered-To: freebsd-stable@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 841DD9C2930 for ; Mon, 24 Aug 2015 21:46:13 +0000 (UTC) (envelope-from mloftis@wgops.com) Received: from mail-wi0-x232.google.com (mail-wi0-x232.google.com [IPv6:2a00:1450:400c:c05::232]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 27C1CFE9 for ; Mon, 24 Aug 2015 21:46:13 +0000 (UTC) (envelope-from mloftis@wgops.com) Received: by wicja10 with SMTP id ja10so83928991wic.1 for ; Mon, 24 Aug 2015 14:46:10 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=wgops.com; s=gm01; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=w4G/n+D/x7JKsHCRhR/pZQSQ24tapClc2Tu3Qqb9enk=; b=YRp+MzjaeAq2gPJgisgadqrWE0soS+JXTbUyhXFumTzPCXd/c8hISGkhEPlDcAoM+5 BF61C4mzEljMPdq6RZQvM85+kiBwygZW1XNdSjgQyWrPDuU3v2ytofjLykCuk7wFy/Mh /mdEEmH2NofmIc5S5eT2e13liMvRjuPABRRYA= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc:content-type; bh=w4G/n+D/x7JKsHCRhR/pZQSQ24tapClc2Tu3Qqb9enk=; b=OScDSndnVOsGrfxAAvm3SnkCc0W4ELzy3BgzNDDdWAsTwMjhs2En2Avf7arcnSU5ql bUWL5LzUIjVPrNzbzNmlfGZjiQnVsAsXFLHSSsl71CAfYFJiItkmyg1WGG8x2aeYkaGk Fy2i8FGy2YpewBliYhapSRBCaLIvkNzsj933WB9nbNXyBUMFY0zjw8cIgNCRSmG2rKvp xsoZWYrugPvo/IRH0ir1vbLD3VoiWOemzqpDgcFWJl6W4BeN1jqT6nx2HYsemvSR3PME KRXbzVhLmGmYMF+SEwi+nckpufEGo2OdBNKQihdIwQ18uC6ljvmajaIp1WcfJa99KOO0 G4cg== X-Gm-Message-State: ALoCoQnNRLpfZ3mM28CUAsIk1B4EgPAMnh/DMGfbFZRdqaNbBaBZCLh4zqLrxInX2dMC+h5zW+9S MIME-Version: 1.0 X-Received: by 10.194.112.104 with SMTP id ip8mr44391468wjb.131.1440452770740; Mon, 24 Aug 2015 14:46:10 -0700 (PDT) Received: by 10.28.96.69 with HTTP; Mon, 24 Aug 2015 14:46:10 -0700 (PDT) In-Reply-To: <55DB8B79.40700@searchy.net> References: <55DB8B79.40700@searchy.net> Date: Mon, 24 Aug 2015 14:46:10 -0700 Message-ID: Subject: Re: Multiple IP/subnet in jail, source address for connections From: Michael Loftis To: "Frank de Bot (lists)" Cc: freebsd-stable Content-Type: text/plain; charset=UTF-8 X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 24 Aug 2015 21:46:13 -0000 Normally when jails are added their IPs are created as "normal" aliases, so they'll get a /32 netmask when you don't specify. So Depending on how you're creating the jail you'll need to specify the netmask with the IP wherever you configure your jail. (You didn't mention if you're using ezjail or not for example....) On Mon, Aug 24, 2015 at 2:24 PM, Frank de Bot (lists) wrote: > Hello, > > I'm trying to have jail with a public and a private IP address. Both > are on the same interface. The public is called 79.x.x.213 and private > 10.4.3.6 > Out from ifconfig within the jail is: > > inet 79.x.x.213 netmask 0xffffffff broadcast 79.x.x.213 > inet 10.4.3.6 netmask 0xffffffff broadcast 10.4.3.6 > > When I try to reach a host on the 10.4.3.0/24 network, it will use the > source address 79.x.x.123 (seen with tcpdump) > When done outside of the jail on the server, it does have the right > source address. > How can I get my jail to have the right source address? Some tools > provide a way to define a source address, like telnet -s, but it's not > workable. > > > Frank de Bot > _______________________________________________ > freebsd-stable@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-stable > To unsubscribe, send any mail to "freebsd-stable-unsubscribe@freebsd.org" -- "Genius might be described as a supreme capacity for getting its possessors into trouble of all kinds." -- Samuel Butler