From owner-freebsd-hackers@FreeBSD.ORG  Wed Dec 23 02:34:12 2009
Return-Path: <owner-freebsd-hackers@FreeBSD.ORG>
Delivered-To: freebsd-hackers@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 5181A106566B
	for <freebsd-hackers@freebsd.org>; Wed, 23 Dec 2009 02:34:12 +0000 (UTC)
	(envelope-from mel.flynn+fbsd.hackers@mailing.thruhere.net)
Received: from mailhub.rachie.is-a-geek.net (rachie.is-a-geek.net
	[66.230.99.27]) by mx1.freebsd.org (Postfix) with ESMTP id 25A438FC0C
	for <freebsd-hackers@freebsd.org>; Wed, 23 Dec 2009 02:34:11 +0000 (UTC)
Received: from smoochies.rachie.is-a-geek.net (mailhub.rachie.is-a-geek.net
	[192.168.2.11])
	by mailhub.rachie.is-a-geek.net (Postfix) with ESMTP id 2C1017E818
	for <freebsd-hackers@freebsd.org>;
	Tue, 22 Dec 2009 17:34:11 -0900 (AKST)
From: Mel Flynn <mel.flynn+fbsd.hackers@mailing.thruhere.net>
To: freebsd-hackers@freebsd.org
Date: Tue, 22 Dec 2009 17:34:05 -0900
User-Agent: KMail/1.12.1 (FreeBSD/8.0-STABLE; KDE/4.3.1; i386; ; )
MIME-Version: 1.0
Content-Type: text/plain;
  charset="us-ascii"
Content-Transfer-Encoding: 7bit
Message-Id: <200912221734.05795.mel.flynn+fbsd.hackers@mailing.thruhere.net>
Subject: Jail on 2 interfaces?
X-BeenThere: freebsd-hackers@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Technical Discussions relating to FreeBSD
	<freebsd-hackers.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>, 
	<mailto:freebsd-hackers-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-hackers>
List-Post: <mailto:freebsd-hackers@freebsd.org>
List-Help: <mailto:freebsd-hackers-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>,
	<mailto:freebsd-hackers-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 23 Dec 2009 02:34:12 -0000

Hi,

I don't see this documented in jail(8) nor rc(8) nor defaults/rc.conf, so is 
it possible to have 2 IP's on 2 ethernet interfaces? And if so, is it settable 
for rc(8)?

The usage case is to have the same jailed proxy server on two seperate 
internal networks. Ideally, the proxy will use one address for outgoing, so I 
guess I'll need a default route or dive into the squid config.

At present I have:
ifconfig_bge0="inet 192.168.177.60  netmask 255.255.255.0"
ifconfig_em0="inet 192.168.176.60 netmask 255.255.255.0"
ifconfig_em0_alias0="inet 192.168.176.62 netmask 255.255.255.255"
jail_squid_rootdir="/usr/squid"
jail_squid_ip="192.168.177.62"
jail_squid_ip_multi0="192.168.176.62"
jail_squid_interface="bge0"

But this created the IP on bge0 even though one exists on em0. Is it as simple 
as not specifying the interface and add the 177.62 alias on bge0?
Ideally I'd have a jail_$jail_ip_multi$aliasno_interface="foo0", but my main 
worry is that the jail infrastructure understands the routing involved.
-- 
Mel