From owner-freebsd-current@FreeBSD.ORG Mon Nov 29 05:46:36 2010 Return-Path: Delivered-To: freebsd-current@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 258C61065675 for ; Mon, 29 Nov 2010 05:46:36 +0000 (UTC) (envelope-from julian@freebsd.org) Received: from out-0.mx.aerioconnect.net (out-0-1.mx.aerioconnect.net [216.240.47.61]) by mx1.freebsd.org (Postfix) with ESMTP id C34308FC0A for ; Mon, 29 Nov 2010 05:46:35 +0000 (UTC) Received: from idiom.com (postfix@mx0.idiom.com [216.240.32.160]) by out-0.mx.aerioconnect.net (8.13.8/8.13.8) with ESMTP id oAT5kYbh008421; Sun, 28 Nov 2010 21:46:34 -0800 X-Client-Authorized: MaGic Cook1e X-Client-Authorized: MaGic Cook1e Received: from julian-mac.elischer.org (h-67-100-89-137.snfccasy.static.covad.net [67.100.89.137]) by idiom.com (Postfix) with ESMTP id D20042D6011; Sun, 28 Nov 2010 21:46:33 -0800 (PST) Message-ID: <4CF33E4E.3090007@freebsd.org> Date: Sun, 28 Nov 2010 21:46:54 -0800 From: Julian Elischer User-Agent: Mozilla/5.0 (Macintosh; U; PPC Mac OS X 10.4; en-US; rv:1.9.2.12) Gecko/20101027 Thunderbird/3.1.6 MIME-Version: 1.0 To: Kevin Mai References: <1079143654.9312.1291003084854.JavaMail.root@mrelmx10.mrec.ar> In-Reply-To: <1079143654.9312.1291003084854.JavaMail.root@mrelmx10.mrec.ar> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit X-Scanned-By: MIMEDefang 2.67 on 216.240.47.51 Cc: freebsd-current@freebsd.org Subject: Re: Issues with Jails/Routes/FIBs X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 29 Nov 2010 05:46:36 -0000 On 11/28/10 7:58 PM, Kevin Mai wrote: > Hi Julian, > > Thanks for your email, alternate fib was running, it was just me logging in using jexec only -.-" > > > Besides that, I'm running 8.1 RELEASE, but haven't seen to much information about jails in 8.x and VIMAGE.. if you are using 8 you really should be addressing either net@ or stable@ rather than current. if you compile the kernel with options VIMAGE you get the option to create each jail with a completely separate network stack. That includes with a completely differnet routing table and completely separate interfaces. The ifconfig command has a new vnet option that allows you to assign an exisiting interface into a jail for its exclusive use and the set fib command gives completely different sets of fibs for each jail. It's not very well supported yet in the rc scripts as far as I know and is pretty experimental, but it's getting more stable with time and may do exactly what you want. some examples may be found at: http://www.freebsd.org/cgi/cvsweb.cgi/src/share/examples/netgraph/virtual.chain http://www.freebsd.org/cgi/cvsweb.cgi/src/share/examples/netgraph/virtual.lan as well, as looking at the jail and ifconfig man pages and looking up "vimage" on the net. > Really appreciate your help :) > > Kind Regards, > > Kevin