From owner-freebsd-stable@FreeBSD.ORG  Fri Oct 21 04:16:58 2011
Return-Path: <owner-freebsd-stable@FreeBSD.ORG>
Delivered-To: freebsd-stable@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 1D16B1065670
	for <freebsd-stable@freebsd.org>; Fri, 21 Oct 2011 04:16:58 +0000 (UTC)
	(envelope-from amvandemore@gmail.com)
Received: from mail-ey0-f182.google.com (mail-ey0-f182.google.com
	[209.85.215.182])
	by mx1.freebsd.org (Postfix) with ESMTP id A22288FC0A
	for <freebsd-stable@freebsd.org>; Fri, 21 Oct 2011 04:16:57 +0000 (UTC)
Received: by eyd10 with SMTP id 10so4717748eyd.13
	for <freebsd-stable@freebsd.org>; Thu, 20 Oct 2011 21:16:56 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma;
	h=mime-version:in-reply-to:references:date:message-id:subject:from:to
	:cc:content-type;
	bh=Et0+8gDQO3dHCmYp6BORzPePuxPc+CPzuEJSyWoc24k=;
	b=S5in/g+jOnD2l/Q6J8pE/4e7/vPPTRdPa7mjSpnYWBQY8QSm16Ha1YA1kR6xwzRouk
	tLcmCFvn+Tjw6+j1Ak4FUzJYtyMle0MMAfXADGR9QAm1WIDPHB+NNVlkGoyQgROJP/6O
	TZ4gsrInH/GL5s/7HoZtNsOGHrqCPQbhueUMw=
MIME-Version: 1.0
Received: by 10.223.14.134 with SMTP id g6mr22178746faa.11.1319169101341; Thu,
	20 Oct 2011 20:51:41 -0700 (PDT)
Received: by 10.223.88.72 with HTTP; Thu, 20 Oct 2011 20:51:41 -0700 (PDT)
In-Reply-To: <CAKnh_YvwLXZarqUKjW_dT_S1h9frA=KspxMqy+OR36yuSv8rXg@mail.gmail.com>
References: <CAKnh_YvwLXZarqUKjW_dT_S1h9frA=KspxMqy+OR36yuSv8rXg@mail.gmail.com>
Date: Thu, 20 Oct 2011 22:51:41 -0500
Message-ID: <CA+tpaK12GxZCSmO9kvxxQBYHF_qi4fH-LuLrgOmrdiH12ZpLFg@mail.gmail.com>
From: Adam Vande More <amvandemore@gmail.com>
To: Morgan Reed <morgan.s.reed@gmail.com>
Content-Type: text/plain; charset=ISO-8859-1
X-Content-Filtered-By: Mailman/MimeDel 2.1.5
Cc: freebsd-stable@freebsd.org
Subject: Re: Accessing tun devices from inside a Jail
X-BeenThere: freebsd-stable@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Production branch of FreeBSD source code <freebsd-stable.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-stable>, 
	<mailto:freebsd-stable-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-stable>
List-Post: <mailto:freebsd-stable@freebsd.org>
List-Help: <mailto:freebsd-stable-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-stable>,
	<mailto:freebsd-stable-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 21 Oct 2011 04:16:58 -0000

On Thu, Oct 20, 2011 at 9:02 PM, Morgan Reed <morgan.s.reed@gmail.com>wrote:

>
> I think that worst case I can probably use pf on the host to route
> traffic from a given jail via a particular interface or possibly
> cobble something up around VIMAGE, but I think I'd rather not have to
> go down those paths.
>
> I'm not sure if what I'm looking for is actually possible, any
> suggestions would be much appreciated.
>

To me, this seems like one of reasons VIMAGE was created.

Here's more of an outline if you're looking to evaluate it further.

http://druidbsd.sourceforge.net/vimage.html

-- 
Adam Vande More