Date: Fri, 22 Feb 2019 11:07:47 +0700 From: Eugene Grosbein <eugen@grosbein.net> To: BulkMailForRudy <crapsh@monkeybrains.net>, net@FreeBSD.org Subject: Re: Running PPPoE server in jail, possible with VNET? Message-ID: <17fe369d-a4a0-35c1-9146-58a5aabe52ff@grosbein.net> In-Reply-To: <39485ab4-483c-72db-bd99-51f7f797fcef@monkeybrains.net> References: <6cf02349-678b-9c18-83b0-dda95d70ed80@monkeybrains.net> <f8c88d6f-c642-a569-1de6-787a5a6998d1@grosbein.net> <39485ab4-483c-72db-bd99-51f7f797fcef@monkeybrains.net>
next in thread | previous in thread | raw e-mail | index | archive | help
22.02.2019 2:41, BulkMailForRudy wrote: > > On 2/20/19 1:13 PM, Eugene Grosbein wrote: >> 21.02.2019 3:37, BulkMailForRudy wrote: >> >>> Dear FreeBSD-net, >>> >>> PPPoE has some broadcast ethernet frames... >>> >>> I have epair0a on my bridge and epair0b in the jail, but the jail doesn't get any PADI (PPPoE packets destinged to ff:ff:ff:ff:ff:ff). >>> >>> Is there a way to have bridge pass broadcast ethernet frames? (tcpdump in the jail shows no PADI packets) >>> >>> Right now, I have netgraph cranking out ncX devices for the PPPoE clients, and I'd like to stuff that mess in a jail so I can run ifconfig on the host and not see a mess. >> You do not need jail to limit output of ifconfig. >> Each network interface in FreeBSD can belong to one or more interface groups. >> First add all your interfaces except of ng* to some new interface group with ifconfig(8), then use: >> >> alias ifconfig='/sbin/ifconfig -g groupname' >> >> Or create new short alias ifc='/sbin/ifconfig -g groupname' >> for short output. > > That's neat, "ifconfig -g epair" shows all my epairs. My primary question, if anyone knows: > > Is there a way to have bridge pass broadcast ethernet frames? > > My goal is to run the PPPoE service inside a jail. I have not tried running PPPoE service inside a jail and a would not recommend that, but I did run PPPoE client running inside VirtualBox Windows guest using tap(4) for bridged networking when tap(4) was bridged with host's vlan(4) interface using if_bridge(4) and PPPoE ran in both directions just fine to establish and run a session. You need to read bridge(4) manual page, section PACKET FILTERING and disable all kinds of filtering using sysctls documented there.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?17fe369d-a4a0-35c1-9146-58a5aabe52ff>