From owner-freebsd-stable@freebsd.org  Tue Aug 25 08:16:03 2015
Return-Path: <owner-freebsd-stable@freebsd.org>
Delivered-To: freebsd-stable@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id AE02099E2B9
 for <freebsd-stable@mailman.ysv.freebsd.org>;
 Tue, 25 Aug 2015 08:16:03 +0000 (UTC)
 (envelope-from lists@searchy.net)
Received: from j006.host001.searchy.nl (j006.host001.searchy.nl
 [79.143.214.199]) by mx1.freebsd.org (Postfix) with ESMTP id 74B2721C
 for <freebsd-stable@freebsd.org>; Tue, 25 Aug 2015 08:16:03 +0000 (UTC)
 (envelope-from lists@searchy.net)
Received: from [10.134.3.102] (sonic.concepts-ict.net [213.197.27.22])
 (Authenticated sender: ppi@j006.host001.searchy.nl)
 by j006.host001.searchy.nl (Postfix) with ESMTPSA id 8A3E91E8C09;
 Tue, 25 Aug 2015 08:16:00 +0000 (UTC)
Message-ID: <55DC2440.4060406@searchy.net>
Date: Tue, 25 Aug 2015 10:16:00 +0200
From: Frank de Bot <lists@searchy.net>
User-Agent: Mozilla/5.0 (X11; Linux i686;
 rv:36.0) Gecko/20100101 Firefox/36.0 SeaMonkey/2.33.1
MIME-Version: 1.0
To: Michael Loftis <mloftis@wgops.com>
CC: freebsd-stable <freebsd-stable@freebsd.org>
Subject: Re: Multiple IP/subnet in jail, source address for connections
References: <55DB8B79.40700@searchy.net>
 <CAHDg04sUda1T=LUHJAKAumbTWp3poP3KyArtQzn3eQM1YBa7ug@mail.gmail.com>
In-Reply-To: <CAHDg04sUda1T=LUHJAKAumbTWp3poP3KyArtQzn3eQM1YBa7ug@mail.gmail.com>
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
X-BeenThere: freebsd-stable@freebsd.org
X-Mailman-Version: 2.1.20
Precedence: list
List-Id: Production branch of FreeBSD source code <freebsd-stable.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-stable>, 
 <mailto:freebsd-stable-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-stable/>
List-Post: <mailto:freebsd-stable@freebsd.org>
List-Help: <mailto:freebsd-stable-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-stable>,
 <mailto:freebsd-stable-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 25 Aug 2015 08:16:03 -0000

Michael Loftis wrote:
> Normally when jails are added their IPs are created as "normal"
> aliases, so they'll get a /32 netmask when you don't specify.  So
> Depending on how you're creating the jail you'll need to specify the
> netmask with the IP wherever you configure your jail.  (You didn't
> mention if you're using ezjail or not for example....)
> 

I use no tools for creating/controlling jails. I have a /etc/jail.conf :

exec.start = "/bin/sh /etc/rc";
exec.stop = "/bin/sh /etc/rc.shutdown";
exec.clean;
mount.devfs;
exec.consolelog = "/var/log/jail.$name.log";

testjail {
        host.hostname = "testjail";
        ip4.addr = 79.x.x.213;
        ip4.addr += 10.4.3.6;
        ip6.addr = 2a00:x:x:x::3;

        path = "/opt/jails/testjail";
        exec.prestart = "/root/jail_prestart.sh $path";
        allow.raw_sockets = 1; # For debugging
}

I start a stop it with 'service jail start|stop testjail'

I tried to define the 10.4.3.6 alias with a 255.255.255.0 netmask, but
it makes no difference