From owner-freebsd-ipfw@freebsd.org  Mon Oct 29 17:46:51 2018
Return-Path: <owner-freebsd-ipfw@freebsd.org>
Delivered-To: freebsd-ipfw@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 1DA4210E1557;
 Mon, 29 Oct 2018 17:46:51 +0000 (UTC)
 (envelope-from driesm.michiels@gmail.com)
Received: from mail-ed1-x52c.google.com (mail-ed1-x52c.google.com
 [IPv6:2a00:1450:4864:20::52c])
 (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
 (Client CN "smtp.gmail.com",
 Issuer "Google Internet Authority G3" (verified OK))
 by mx1.freebsd.org (Postfix) with ESMTPS id 8968A7AECE;
 Mon, 29 Oct 2018 17:46:50 +0000 (UTC)
 (envelope-from driesm.michiels@gmail.com)
Received: by mail-ed1-x52c.google.com with SMTP id u12-v6so5215227eds.4;
 Mon, 29 Oct 2018 10:46:50 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025;
 h=from:to:references:in-reply-to:subject:date:message-id:mime-version
 :content-transfer-encoding:thread-index:content-language;
 bh=LGkloHEpfvrTse0FECSyp4yrWSK168WVNinsf1qvS2E=;
 b=TDsgoVxlWcHmaQnpbV6/C7CiQpFND5B47LqZeq98AsLkaCpTy9FL1X8h84zwDdI2wA
 y49bm0iYAeAKq8cjP3mUpJscy9lY/rwhfL54jrb5/cRGcNhDFT2HPsULy8aY0BggHnsN
 evPYtzzrztPX/ijw19HaMRn8vf1DwcWSEQat8TkQ4tDzg+M2dNo2kyvXOMXZfiKX0VpE
 wV8buqjHHXkzzLdQ8A52e8847GGGEHBZvnPV+/H3KBMQ8xw191m5vhZVLRHhVzeFmNY2
 UnpJ2iBrJE5OrFHNuStzW1nMMVPfYt1fSrhAG0/pBu4337qoli9qU96Gy3lOMI3ITkpF
 BDgQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20161025;
 h=x-gm-message-state:from:to:references:in-reply-to:subject:date
 :message-id:mime-version:content-transfer-encoding:thread-index
 :content-language;
 bh=LGkloHEpfvrTse0FECSyp4yrWSK168WVNinsf1qvS2E=;
 b=NDtDJATKBqlftoq1I4N4KQKk63YqVsIDvvCkXTqBeVDARE8VRMyY3S9Z6HIC865YIX
 rCU3z5OqQeuzhjZ5NNEQ8J6lc7ov34va//yUwxahK6XgeaEF33LaMfknPsXeKQQR1OYG
 oo22xBBN8OKoWkWESDN6SMM01u4QMcPZaSxEdT4QEXTwIlEbvoQw38bMmOf1R3oK7z3R
 JzJC2Y+RyBBmKJXg6bJFlYanvnFO2/VD/rDnqzSq9b7FIrC5v5xkoGX2hHdC4UDgt0tU
 Rxsd285cr2ENZgi7kVb2POXxdKiq6gL0YOVCfu3GEBUc76Ml+wBWB++z/MnREJsZK3kb
 kEcw==
X-Gm-Message-State: AGRZ1gK8fiIbFN2GOFZ8+mF6nn2frffuzEpjDelTbGDLKbheQvye+Ck5
 0leR7tnl797kxFnvor2qqDfqH961
X-Google-Smtp-Source: AJdET5dGUzXyW35GiXo46ZKykA/GQctCCA3y2m0upBrfUH8159ChZFWnbR90DBumkrrc+yA8N08nqw==
X-Received: by 2002:a17:906:59d6:: with SMTP id
 m22-v6mr310571ejs.20.1540835209333; 
 Mon, 29 Oct 2018 10:46:49 -0700 (PDT)
Received: from DriesPC (ptr-8skldq3xswuq8a34v25.18120a2.ip6.access.telenet.be.
 [2a02:1811:2512:a100:35fd:d497:da03:c13d])
 by smtp.gmail.com with ESMTPSA id z6-v6sm383752edk.25.2018.10.29.10.46.48
 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
 Mon, 29 Oct 2018 10:46:48 -0700 (PDT)
From: "Dries Michiels" <driesm.michiels@gmail.com>
To: "'Andrey V. Elsukov'" <bu7cher@yandex.ru>, <freebsd-ipfw@freebsd.org>,
 <freebsd-net@freebsd.org>
References: <005c01d46f97$8389d4a0$8a9d7de0$@gmail.com>
 <edadee75-045e-dd57-f3f4-7ed820dc275f@yandex.ru>
In-Reply-To: <edadee75-045e-dd57-f3f4-7ed820dc275f@yandex.ru>
Subject: RE: Configuring IPv6 on jails
Date: Mon, 29 Oct 2018 18:46:49 +0100
Message-ID: <008801d46faf$5ee08780$1ca19680$@gmail.com>
MIME-Version: 1.0
Content-Type: text/plain;
	charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
X-Mailer: Microsoft Outlook 16.0
Thread-Index: AQKIN//ko3STKr82P9ozCTjiUaSwwgHC9cCIo8DU3mA=
Content-Language: nl-be
X-BeenThere: freebsd-ipfw@freebsd.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IPFW Technical Discussions <freebsd-ipfw.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-ipfw>,
 <mailto:freebsd-ipfw-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ipfw/>
List-Post: <mailto:freebsd-ipfw@freebsd.org>
List-Help: <mailto:freebsd-ipfw-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
 <mailto:freebsd-ipfw-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 29 Oct 2018 17:46:51 -0000



> -----Original Message-----
> From: Andrey V. Elsukov <bu7cher@yandex.ru>
> Sent: maandag 29 oktober 2018 18:35
> To: Dries Michiels <driesm.michiels@gmail.com>; =
freebsd-ipfw@freebsd.org;
> freebsd-net@freebsd.org
> Subject: Re: Configuring IPv6 on jails
>=20
> On 29.10.2018 17:56, Dries Michiels wrote:
> > *	Use IPFW IPv6 prefix translation for the jail /64 prefix; =
translate
> > between global routable /64 prefix and fd00::1/64 (as example). The
> > latter can be statically configured in jail.conf.
> >
> > My problem here is that the IPFW rule needs the external prefix as =
an
> > argument. My prefix is dynamic so this might be tricky and indicates
> > scripting to me.
> >
> > Isn't there a way to let IPFW determine what interface to use (and
> > thus IPv6
> > prefix) for external translation? (for IPv4 NAT there is no need to
> > specify the external IPv4 address)
>=20
> Hi,
>=20
> I think I can add this feature to ipfw_nptv6 module, but I need some =
spare
> time to implement it. If you are interested, I'll send the patch to =
you later.
> What version do you use? I suspect the patch will use some features, =
that are
> present only in head/ yet.

Would be nice! I=E2=80=99m on 12-STABLE.

> --
> WBR, Andrey V. Elsukov