From owner-freebsd-jail@FreeBSD.ORG  Sun Mar  8 23:20:09 2009
Return-Path: <owner-freebsd-jail@FreeBSD.ORG>
Delivered-To: freebsd-jail@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 5A86C106566B
	for <freebsd-jail@freebsd.org>; Sun,  8 Mar 2009 23:20:09 +0000 (UTC)
	(envelope-from kagekonjou@gmail.com)
Received: from mail-gx0-f176.google.com (mail-gx0-f176.google.com
	[209.85.217.176])
	by mx1.freebsd.org (Postfix) with ESMTP id F34208FC12
	for <freebsd-jail@freebsd.org>; Sun,  8 Mar 2009 23:20:08 +0000 (UTC)
	(envelope-from kagekonjou@gmail.com)
Received: by gxk24 with SMTP id 24so2792354gxk.19
	for <freebsd-jail@freebsd.org>; Sun, 08 Mar 2009 16:20:08 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma;
	h=domainkey-signature:mime-version:received:in-reply-to:references
	:date:message-id:subject:from:to:content-type
	:content-transfer-encoding;
	bh=L7OgKcblUh3jW1l5/CEMsQaGmCw2JisgxMZB8ACFCBw=;
	b=mJofNU96MvbNgOBkvHGguHdCPBSmqlK4j3HWNKCpr9qzwK2NVz9uM6Ge5Fkk86rvib
	x/O4zlS3yymJJEi//kUqmVcLGaH/hsVREa+L/jSyrDxGK7AcUDRWNAh/BLLqHnJEUmgi
	x5s9DJYpa7nOWXgBvUBgYX8gL++Qb1CDnPw8c=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
	h=mime-version:in-reply-to:references:date:message-id:subject:from:to
	:content-type:content-transfer-encoding;
	b=tpriMCdLTys0atNJriglwOjSux9v04ATwhKD4SotJYDIZLxK1Ub8W2rsm2GWz9rFtD
	W7B9tF2hROe6z6gqsiYfrHf8aBnYMnN8o+eY3PkH/t1d86hakv4wTht3BOPL/q+lW0IZ
	NLkwCJ3vd3HcbIi1RGW5S6e4fTH9kLigENjgA=
MIME-Version: 1.0
Received: by 10.231.20.2 with SMTP id d2mr1286773ibb.37.1236554406931; Sun, 08 
	Mar 2009 16:20:06 -0700 (PDT)
In-Reply-To: <20090308222441.Y96785@maildrop.int.zabbadoz.net>
References: <d1556b2b0903081122p1753b34ej3677083988124805@mail.gmail.com>
	<d1556b2b0903081405r62961134i1296c571b22eac95@mail.gmail.com>
	<20090308222441.Y96785@maildrop.int.zabbadoz.net>
Date: Sun, 8 Mar 2009 19:20:06 -0400
Message-ID: <d1556b2b0903081620t4250aee5x6b6d4f803696f325@mail.gmail.com>
From: Kage <kagekonjou@gmail.com>
To: "Bjoern A. Zeeb" <bzeeb-lists@lists.zabbadoz.net>, freebsd-jail@freebsd.org
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable
Cc: 
Subject: Re: Problem using bz's multi-IP/IPv6/No-IP Jail Patch (7-STABLE)
X-BeenThere: freebsd-jail@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "Discussion about FreeBSD jail\(8\)" <freebsd-jail.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-jail>,
	<mailto:freebsd-jail-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-jail>
List-Post: <mailto:freebsd-jail@freebsd.org>
List-Help: <mailto:freebsd-jail-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-jail>,
	<mailto:freebsd-jail-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 08 Mar 2009 23:20:09 -0000

On Sun, Mar 8, 2009 at 6:26 PM, Bjoern A. Zeeb
<bzeeb-lists@lists.zabbadoz.net> wrote:
> On Sun, 8 Mar 2009, Kage wrote:
>
>> Encountering more issues now. =A0Binding just an IPv6 address to a jail
>> shows up in jls -v, but when I run ifconfig -a in the jail, I get an
>> error I've never encountered, and doesn't show up on any Google
>> search:
>>
>> [root@nub:/etc] jls -v
>> =A0JID =A0Hostname =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0Path
>> =A0 =A0 =A0 Name =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0Stat=
e
>> =A0 =A0 =A0 CPUSetID
>> =A0 =A0 =A0 IP Address(es)
>> =A0 =A09 =A0jail.template.tld =A0 =A0 =A0 =A0 =A0 =A0 /usr/jails/TEMPLAT=
E
>> =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =
ALIVE
>> =A0 =A0 =A0 10
>> =A0 =A0 =A0 2610:150:c248:dead:beef:c0ff:eec0:deaa
>>
>> [root@jail:/] ifconfig -a
>> ifconfig: socket(family 2,SOCK_DGRAM): Protocol not supported
>
> Is your world inside the jails in sync with the kernel?

Explain, please?

>>
>> On Sun, Mar 8, 2009 at 2:22 PM, Kage <kagekonjou@gmail.com> wrote:
>>>
>>> Greetings,
>>>
>>> So I'm having an issue using 7-STABLE, specifically with bz's
>>> multi-IP/IPv6 patch. =A0First and foremost, all IPs attempted to be use=
d
>>> (both v4 and v6) are aliased properly in ifconfig. =A0Secondly,
>>> assigning multiple IPs to a jail is no problem, as jls -v reflects the
>>> multiples assigned correctly. =A0However, within the jail, ifconfig
>>> reflects only the first IP listed in rc.conf. =A0What am I missing, or
>>> what do I need to do to?
>>>
>>> Cheers!
>>>
>>>
>>> Example rc.conf entry:
>>>
>>> ifconfig_vr0_alias10=3D"inet 12.34.56.78 netmask 255.255.255.255"
>>> ifconfig_vr0_alias11=3D"inet 12.34.56.79 netmask 255.255.255.255"
>>> ifconfig_vr0_alias12=3D"inet 12.34.56.80 netmask 255.255.255.255"
>>>
>>> jail_kage_rootdir=3D"/usr/jails/kage"
>>> jail_kage_hostname=3D"kage.foo"
>>> jail_kage_ip=3D"12.34.56.78,12.34.56.79,12.34.56.80"
>>>
>>> Example jls:
>>>
>>> =A0 =A0 5 =A0kage.foo =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 /usr/jails/kage
>>> =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0=
 =A0ALIVE
>>> =A0 =A0 =A0 =A06
>>> =A0 =A0 =A0 =A012.34.56.78
>>> =A0 =A0 =A0 =A012.34.56.79
>>> =A0 =A0 =A0 =A012.34.56.80
>>>
>>>
>>> Example ifconfig within that jail:
>>>
>>> [root@kage:/usr/local/etc/apache22] ifconfig
>>> vr0: flags=3D8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu =
1500
>>> =A0 =A0 =A0 =A0options=3D2808<VLAN_MTU,WOL_UCAST,WOL_MAGIC>
>>> =A0 =A0 =A0 =A0ether 00:1d:92:0d:77:8a
>>> =A0 =A0 =A0 =A0inet 12.34.56.78 netmask 0xffffffff broadcast 12.34.56.1
>
>
> Now that broadcast address doesn't make any sense at all.
> Does it look the same outside the jail?

Looks the same inside and out for the IP that shows up in jails

> Can you send ifconfig -a from inside and outside jails, unmangled
> and unedited along with a jls -va?

I'll give two examples, hold please... (edited slightly for sake of
privacy of other users hosted on this box, and to keep this E-Mail
brief)

(Inside Host)
-----
[root@nub:/etc] ifconfig -a
(snip)
        inet 64.32.24.218 netmask 0xffffffff broadcast 64.32.24.218
(snip)
        inet 208.98.30.200 netmask 0xffffff00 broadcast 208.98.30.255
(snip)
        inet6 2610:150:c248::2 prefixlen 48
(etc.)

[root@nub:/etc] jls -va
   JID  Hostname                      Path
        Name                          State
        CPUSetID
        IP Address(es)
(snip)
     6  kage.vitund.com               /usr/jails/kage
                                      ALIVE
        7
        64.32.24.218
        208.98.30.200
(snip)
     4  irc.hackthissite.org          /usr/jails/irc
                                      ALIVE
        5
        64.32.24.217
        2610:150:c248:dead:c0ff:eec0:deba:be00
(snip)
[root@nub:/etc]

rc.conf chunk:

ipv6_enable=3D"YES"
ipv6_defaultrouter=3D"2610:150:c248::1"
ipv6_network_interfaces=3D"vr0"
ipv6_ifconfig_vr0=3D"2610:150:c248::2 prefixlen 48"

(Inside Jail: kage)
[root@kage:/] ifconfig -a
vr0: flags=3D8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
        options=3D2808<VLAN_MTU,WOL_UCAST,WOL_MAGIC>
        ether 00:1d:92:0d:77:8a
        inet 64.32.24.218 netmask 0xffffffff broadcast 64.32.24.218
        media: Ethernet autoselect (100baseTX <full-duplex>)
        status: active
lo0: flags=3D8049<UP,LOOPBACK,RUNNING,MULTICAST> metric 0 mtu 16384
[root@kage:/]

(Inside Jail: irc)
[root@irc:/] ifconfig -a
vr0: flags=3D8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
        options=3D2808<VLAN_MTU,WOL_UCAST,WOL_MAGIC>
        ether 00:1d:92:0d:77:8a
        inet 64.32.24.217 netmask 0xffffffff broadcast 64.32.24.217
        media: Ethernet autoselect (100baseTX <full-duplex>)
        status: active
lo0: flags=3D8049<UP,LOOPBACK,RUNNING,MULTICAST> metric 0 mtu 16384
[root@irc:/]

> Are you running 7-STABLE now or 7.x + patch?

7-STABLE.

>>> =A0 =A0 =A0 =A0media: Ethernet autoselect (100baseTX <full-duplex>)
>>> =A0 =A0 =A0 =A0status: active
>>> lo0: flags=3D8049<UP,LOOPBACK,RUNNING,MULTICAST> metric 0 mtu 16384
>>> [root@kage:/usr/local/etc/apache22]
>>>
>>>
>>> --
>>> ~ Kage
>>>
>>
>>
>>
>>
>
> --
> Bjoern A. Zeeb =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0The greatest ri=
sk is not taking one.



--=20
~ Kage