From owner-freebsd-questions@FreeBSD.ORG  Wed Aug 14 15:49:55 2013
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTP id CB027566
 for <freebsd-questions@freebsd.org>; Wed, 14 Aug 2013 15:49:55 +0000 (UTC)
 (envelope-from kpielorz_lst@tdx.co.uk)
Received: from mail.tdx.com (mail.tdx.com [62.13.128.18])
 by mx1.freebsd.org (Postfix) with ESMTP id 8B5732383
 for <freebsd-questions@freebsd.org>; Wed, 14 Aug 2013 15:49:55 +0000 (UTC)
Received: from Mail-PC.tdx.co.uk (storm.tdx.co.uk [62.13.130.251])
 (authenticated bits=0)
 by mail.tdx.com (8.14.3/8.14.3/) with ESMTP id r7EFnqYA007997
 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO);
 Wed, 14 Aug 2013 16:49:52 +0100 (BST)
Date: Wed, 14 Aug 2013 16:49:54 +0100
From: Karl Pielorz <kpielorz_lst@tdx.co.uk>
To: Fbsd8 <fbsd8@a1poweruser.com>
Subject: Re: jail.conf ignoring exec.fib?
Message-ID: <1960A5B02323B4982B4C0320@Mail-PC.tdx.co.uk>
In-Reply-To: <520B7F0F.7020006@a1poweruser.com>
References: <98486B2D79D00F0898B7C9E6@Mail-PC.tdx.co.uk>
 <520B7F0F.7020006@a1poweruser.com>
X-Mailer: Mulberry/4.0.8 (Win32)
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
Cc: freebsd-questions@freebsd.org
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.14
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 14 Aug 2013 15:49:55 -0000



--On 14 August 2013 08:58 -0400 Fbsd8 <fbsd8@a1poweruser.com> wrote:

> The jail(8) man page lacks details about how to use exec.fib.
>
> It requires either a new kernel (with "options ROUTETABLES=2" or however
> many you want), or a boot-time setting with "net.fibs=2" in
> /boot/loader.conf (requiring a reboot).

Yup, done that :)

> setfib 1 route add default 198.192.64.21
> creates routing table number 1 with that IP address.
>
> In this example exec.fib="1" would be coded.
>
> See setfib(8) and setfib(2) for details.

Yeah, I do that as well - but 'netstat -r -n' from within the jail shows 
the systems default routing table.

As opposed to 'setfib 1 netstat -r -n' (outside the jail) which shows fib 
either has no default gateway, or the one I set (which is right).

Just within the jail, it only every shows it's using the systems default 
routing table :(

Fib's work fine outside the jail (i.e. I can show them, set differing 
default gateways) - but no matter what I do, the 'exec.fib=' line in 
jail.conf seems to be ignored, when the jail is run up - it only ever sees 
the default routing table :(

-Karl