From owner-freebsd-current@freebsd.org Tue Aug 9 11:13:17 2016 Return-Path: Delivered-To: freebsd-current@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 1F347BB37C3 for ; Tue, 9 Aug 2016 11:13:17 +0000 (UTC) (envelope-from miguelmclara@gmail.com) Received: from mail-wm0-x234.google.com (mail-wm0-x234.google.com [IPv6:2a00:1450:400c:c09::234]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id A0D331FA5 for ; Tue, 9 Aug 2016 11:13:16 +0000 (UTC) (envelope-from miguelmclara@gmail.com) Received: by mail-wm0-x234.google.com with SMTP id o80so27247135wme.1 for ; Tue, 09 Aug 2016 04:13:16 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=PF6oiBAgJI99e2LMuTp89xWhbS8S0lmDfsaAqbjUSFA=; b=AcfVCJeOrlA0RVK1Lrd9EhyE8PwkphevpdMbOUlRLaDmxUgHFlwsakw2IOYw1aw8Pe G1f5tg0H1AQYI7i9IsCXi0faNbdhbORs8D18jgpdg5Pdop2wfs66Wun4UNQneSL9QL4l E9TqbeyA7Tg+wivbZRcQzwcGXqj38HCbxKfCYD+wY+q85JPCmoL4ei9jjEM83yA0hlCQ kI4jvyFJb/n66qUMXLQ44bdXsbx+M9m6LeYcD0sYanmGeKTIS+Dedq3OejEyvFHaqUqB g18nBOpLmEVQV9l2Bgnh99OA4KYHR5tVRyHzEjRXwhqvSuBdwUnvzKzTW39jEkF/CoqK Vf5w== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=PF6oiBAgJI99e2LMuTp89xWhbS8S0lmDfsaAqbjUSFA=; b=h5e39w4dbWBgnEEOsnZu6BR11Hzi9moX/nbmqk8T8/4SgoPxO/hE3HI+vXNC8DDoHV CtePIDqmm9H0pkxMz+EfWVemZgUv65ktzROJdFwd3fn7Q36fp0Hjha0XpOkDJQ3DKsjG 6CuM6ZKp8nbnb3SSfLUKTxcd611DeYmEW0vuRV16WRdxVVf3UPDKec9MywsFj6R332te NtL/OucUGzAwkMGbTh3yVDyf3RIYHCFP6NDWR2M9qPjeSRVqmBOt3xnXP49ciJKQX9Sd GyeRtgZXdtBez1M8aOHlq/manyI1PoYi6Ls3nVhfJSUMu+GjiRqekMnOl1f+0ilIw8QA H/Hw== X-Gm-Message-State: AEkoouuzs7B9mjc5L/2qLBTj6eswgzir344xo0BKP1QR5yJx4EUresyjmnXLDcdwwgfs780ixH0uJ0w0YjnjXw== X-Received: by 10.28.25.135 with SMTP id 129mr19724921wmz.59.1470741195088; Tue, 09 Aug 2016 04:13:15 -0700 (PDT) MIME-Version: 1.0 Received: by 10.28.198.201 with HTTP; Tue, 9 Aug 2016 04:12:34 -0700 (PDT) In-Reply-To: <20160809085523.kow2qbpirzppytv6@mac> References: <20160809085523.kow2qbpirzppytv6@mac> From: Miguel C Date: Tue, 9 Aug 2016 12:12:34 +0100 Message-ID: Subject: Re: FreeBSD 11 - BETA-1 Xen DOMU loses network when jail (VIMAGE) starts To: =?UTF-8?Q?Roger_Pau_Monn=C3=A9?= Cc: freebsd-current Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.22 X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.22 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 09 Aug 2016 11:13:17 -0000 Melhores Cumprimentos // Best Regards ----------------------------------------------- *Miguel Clara* *IT - Sys Admin & Developer* On Tue, Aug 9, 2016 at 9:55 AM, Roger Pau Monn=C3=A9 wrote: > On Sat, Jul 23, 2016 at 08:46:49PM +0100, Miguel C wrote: > > Just as a note using netgraph (with jng script as a workaround) works..= .. > > > > Also manually creating a bridge in the domu and adding xn0 as a member > > makes this fail.... so the issue is indeed related to the bridge. > > > > I'll open a PR later in case someone want to look into it, but I'm happ= y > it > > works with netgraph. > > I seem to be able to use xn* interfaces with bridges without problems: > > xn0: flags=3D8943 metric = 0 > mtu 1500 > options=3D3 > ether 00:16:3e:74:3d:76 > nd6 options=3D29 > media: Ethernet manual > status: active > bridge0: flags=3D8843 metric 0 mt= u > 1500 > ether 02:77:3d:4a:18:00 > inet 172.16.1.140 netmask 0xffffff00 broadcast 172.16.1.255 > nd6 options=3D9 > groups: bridge > id 00:00:00:00:00:00 priority 32768 hellotime 2 fwddelay 15 > maxage 20 holdcnt 6 proto rstp maxaddr 2000 timeout 1200 > root id 00:00:00:00:00:00 priority 32768 ifcost 0 port 0 > member: xn0 flags=3D143 > ifmaxaddr 0 port 2 priority 128 path cost 2000000 > > Is this a GENERIC kernel or are you using some custom > configuration/patches? > Can you provide some more information about how to reproduce this? > > GENERIC + VIMAGE, but that's just it, no other custom changes or patches. Note however that this is under a NetbBSD Dom0, and I see the "vifXX" interface disappear in the Dom0 side when the bridge is create on FreeBSD DomU. I'm actually happy with netgraph, although I've never played with it, and seems more complex, the script provide in /share/examples is perfect to use with "jail.conf" and pf seems happy in FreeBSD-11 (which is not CURRENT, should we move this to a different mailing list!?) too, no panics so far. I suspect the main issue, since it works fine for you is the fact that this is in a NetBSD Dom0. > Roger. >