From owner-freebsd-bugs@freebsd.org  Sun Dec  9 15:25:00 2018
Return-Path: <owner-freebsd-bugs@freebsd.org>
Delivered-To: freebsd-bugs@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 7242C1324A75
 for <freebsd-bugs@mailman.ysv.freebsd.org>;
 Sun,  9 Dec 2018 15:25:00 +0000 (UTC)
 (envelope-from bugzilla-noreply@freebsd.org)
Received: from mailman.ysv.freebsd.org (mailman.ysv.freebsd.org
 [IPv6:2001:1900:2254:206a::50:5])
 by mx1.freebsd.org (Postfix) with ESMTP id 0A4DE6F575
 for <freebsd-bugs@freebsd.org>; Sun,  9 Dec 2018 15:25:00 +0000 (UTC)
 (envelope-from bugzilla-noreply@freebsd.org)
Received: by mailman.ysv.freebsd.org (Postfix)
 id C1EC41324A74; Sun,  9 Dec 2018 15:24:59 +0000 (UTC)
Delivered-To: bugs@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id AF0081324A73
 for <bugs@mailman.ysv.freebsd.org>; Sun,  9 Dec 2018 15:24:59 +0000 (UTC)
 (envelope-from bugzilla-noreply@freebsd.org)
Received: from mxrelay.ysv.freebsd.org (mxrelay.ysv.freebsd.org
 [IPv6:2001:1900:2254:206a::19:3])
 (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits))
 (Client CN "mxrelay.ysv.freebsd.org",
 Issuer "Let's Encrypt Authority X3" (verified OK))
 by mx1.freebsd.org (Postfix) with ESMTPS id 7AF696F574
 for <bugs@FreeBSD.org>; Sun,  9 Dec 2018 15:24:58 +0000 (UTC)
 (envelope-from bugzilla-noreply@freebsd.org)
Received: from kenobi.freebsd.org (kenobi.freebsd.org
 [IPv6:2001:1900:2254:206a::16:76])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client did not present a certificate)
 by mxrelay.ysv.freebsd.org (Postfix) with ESMTPS id A6F64550
 for <bugs@FreeBSD.org>; Sun,  9 Dec 2018 15:24:57 +0000 (UTC)
 (envelope-from bugzilla-noreply@freebsd.org)
Received: from kenobi.freebsd.org ([127.0.1.118])
 by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id wB9FOvX4003284
 for <bugs@FreeBSD.org>; Sun, 9 Dec 2018 15:24:57 GMT
 (envelope-from bugzilla-noreply@freebsd.org)
Received: (from www@localhost)
 by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id wB9FOvU9003269
 for bugs@FreeBSD.org; Sun, 9 Dec 2018 15:24:57 GMT
 (envelope-from bugzilla-noreply@freebsd.org)
X-Authentication-Warning: kenobi.freebsd.org: www set sender to
 bugzilla-noreply@freebsd.org using -f
From: bugzilla-noreply@freebsd.org
To: bugs@FreeBSD.org
Subject: [Bug 178482] [ipfw] logging problem from vnet jail
Date: Sun, 09 Dec 2018 15:24:57 +0000
X-Bugzilla-Reason: AssignedTo
X-Bugzilla-Type: changed
X-Bugzilla-Watch-Reason: None
X-Bugzilla-Product: Base System
X-Bugzilla-Component: kern
X-Bugzilla-Version: 9.1-RELEASE
X-Bugzilla-Keywords: 
X-Bugzilla-Severity: Affects Only Me
X-Bugzilla-Who: joeb1@a1poweruser.com
X-Bugzilla-Status: Open
X-Bugzilla-Resolution: 
X-Bugzilla-Priority: Normal
X-Bugzilla-Assigned-To: bugs@FreeBSD.org
X-Bugzilla-Flags: 
X-Bugzilla-Changed-Fields: cc
Message-ID: <bug-178482-227-YCNAkqvzRB@https.bugs.freebsd.org/bugzilla/>
In-Reply-To: <bug-178482-227@https.bugs.freebsd.org/bugzilla/>
References: <bug-178482-227@https.bugs.freebsd.org/bugzilla/>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/
Auto-Submitted: auto-generated
MIME-Version: 1.0
X-Rspamd-Queue-Id: 0A4DE6F575
X-Spamd-Result: default: False [-2.98 / 15.00];
 local_wl_from(0.00)[freebsd.org];
 NEURAL_HAM_MEDIUM(-1.00)[-0.999,0];
 NEURAL_HAM_SHORT(-0.99)[-0.991,0];
 ASN(0.00)[asn:10310, ipnet:2001:1900:2254::/48, country:US];
 NEURAL_HAM_LONG(-0.99)[-0.994,0]
X-Rspamd-Server: mx1.freebsd.org
X-BeenThere: freebsd-bugs@freebsd.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Bug reports <freebsd-bugs.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-bugs>,
 <mailto:freebsd-bugs-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-bugs/>
List-Post: <mailto:freebsd-bugs@freebsd.org>
List-Help: <mailto:freebsd-bugs-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-bugs>,
 <mailto:freebsd-bugs-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 09 Dec 2018 15:25:00 -0000

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D178482

joeb1@a1poweruser.com changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |joeb1@a1poweruser.com

--- Comment #6 from joeb1@a1poweruser.com ---
Now testing 12.0-RC3. vnet jail running on the gateway host. IPF firewall
running on the gateway host and ipfw running in the vnet jail.

Found out about the undocumented ipfw0 log. This works in each vnet jail
logging the vnet jails log records to the /var/log/security.log file in the
vnet jail.

To enable place the normal ipfw statements in the vnet jails rc.conf with t=
hese
changes.

firewall_logging=3D"NO"
firewall_logif=3D"YES"
nohup tcpdump -lnti ipfw0 | logger -t jailname -p security.info &

This method should be documented someplace.

--=20
You are receiving this mail because:
You are the assignee for the bug.=