From owner-freebsd-net@FreeBSD.ORG  Mon Nov  4 00:54:12 2013
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTP id 357095F9
 for <freebsd-net@freebsd.org>; Mon,  4 Nov 2013 00:54:12 +0000 (UTC)
 (envelope-from julian@freebsd.org)
Received: from vps1.elischer.org (vps1.elischer.org [204.109.63.16])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (No client certificate requested)
 by mx1.freebsd.org (Postfix) with ESMTPS id 0962A2D38
 for <freebsd-net@freebsd.org>; Mon,  4 Nov 2013 00:54:11 +0000 (UTC)
Received: from julian-mbp3.pixel8networks.com
 (50-196-156-133-static.hfc.comcastbusiness.net [50.196.156.133])
 (authenticated bits=0)
 by vps1.elischer.org (8.14.7/8.14.7) with ESMTP id rA40rrqh042438
 (version=TLSv1/SSLv3 cipher=DHE-RSA-CAMELLIA256-SHA bits=256 verify=NO);
 Sun, 3 Nov 2013 16:54:01 -0800 (PST)
 (envelope-from julian@freebsd.org)
Message-ID: <5276F01C.9010404@freebsd.org>
Date: Sun, 03 Nov 2013 16:53:48 -0800
From: Julian Elischer <julian@freebsd.org>
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.9;
 rv:24.0) Gecko/20100101 Thunderbird/24.1.0
MIME-Version: 1.0
To: Boris Kochergin <spawk@acm.poly.edu>, freebsd-net@freebsd.org
Subject: Re: Jail FIB?
References: <52767B9A.6090002@acm.poly.edu> <52767C6D.9010206@acm.poly.edu>
In-Reply-To: <52767C6D.9010206@acm.poly.edu>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.14
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-net>,
 <mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
 <mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 04 Nov 2013 00:54:12 -0000

On 11/3/13, 8:40 AM, Boris Kochergin wrote:
> Figured out my own question. I was jexec'ing into it, and jexec inherits
> FIB 0 from the host. SSHing into the jail results in the desired behavior.
>
> Thanks.
>
> -Boris

yeah, because the two things are actually orthogonal, and the jail-fib 
config capability hides this fact..
you would have to do setfib 1 jexec {cmd} to do what you want..


OR

you could use a VIMAGE jail and give it its own stack (and routing 
table(s)) but then you;d have to put it on a bridge or give it its own 
interface..