From owner-freebsd-virtualization@FreeBSD.ORG  Fri Dec 11 20:51:26 2009
Return-Path: <owner-freebsd-virtualization@FreeBSD.ORG>
Delivered-To: freebsd-virtualization@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 515211065672
	for <freebsd-virtualization@freebsd.org>;
	Fri, 11 Dec 2009 20:51:26 +0000 (UTC)
	(envelope-from julian@elischer.org)
Received: from outB.internet-mail-service.net (outb.internet-mail-service.net
	[216.240.47.225])
	by mx1.freebsd.org (Postfix) with ESMTP id 351508FC0A
	for <freebsd-virtualization@freebsd.org>;
	Fri, 11 Dec 2009 20:51:26 +0000 (UTC)
Received: from idiom.com (mx0.idiom.com [216.240.32.160])
	by out.internet-mail-service.net (Postfix) with ESMTP id EFD1FC3FB;
	Fri, 11 Dec 2009 12:51:25 -0800 (PST)
X-Client-Authorized: MaGic Cook1e
X-Client-Authorized: MaGic Cook1e
X-Client-Authorized: MaGic Cook1e
Received: from julian-mac.elischer.org
	(h-67-100-89-137.snfccasy.static.covad.net [67.100.89.137])
	by idiom.com (Postfix) with ESMTP id 7BF462D6013;
	Fri, 11 Dec 2009 12:51:25 -0800 (PST)
Message-ID: <4B22B0DA.3000905@elischer.org>
Date: Fri, 11 Dec 2009 12:51:38 -0800
From: Julian Elischer <julian@elischer.org>
User-Agent: Thunderbird 2.0.0.23 (Macintosh/20090812)
MIME-Version: 1.0
To: Reinhard Haller <reinhard.haller@interactive-net.de>
References: <4B1FE20D.9000009@interactive-net.de>
	<4B220346.1090204@interactive-net.de>
In-Reply-To: <4B220346.1090204@interactive-net.de>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Cc: "Bjoern A. Zeeb" <bzeeb-lists@lists.zabbadoz.net>,
	FreeBSD virtualization mailing list <freebsd-virtualization@freebsd.org>
Subject: Re: create a vnet jail in rc.conf
X-BeenThere: freebsd-virtualization@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "Discussion of various virtualization techniques FreeBSD supports."
	<freebsd-virtualization.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-virtualization>,
	<mailto:freebsd-virtualization-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-virtualization>
List-Post: <mailto:freebsd-virtualization@freebsd.org>
List-Help: <mailto:freebsd-virtualization-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-virtualization>,
	<mailto:freebsd-virtualization-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 11 Dec 2009 20:51:26 -0000

Reinhard Haller wrote:
> Julian Elischer schrieb:
>> Julian Elischer wrote:
>>> Reinhard Haller wrote:
>>>> I tried it with the following, but suffered intermittent routing
>>>> problems (route6d died and cannot be restarted):
>>>>
>>>>    jail -c vnet name=d1 host.hostname=dns1.intern.de path=/jails/dns1
>>>> persist
>>>>    jail -c vnet name=d2 host.hostname=dns2.intern.de path=/jails/dns2
>>>> persist
>>>>    ifconfig bridge0 create
>>>>    ifconfig epair create
>>>>    ifconfig epair create
>>>>    ifconfig bridge0 addm epair0a addm epair1a up
>>>>    ifconfig epair0a inet6 fd08:e8a3:4825:10::1
>>>>    ifconfig epair0b vnet 1
>>>>    ifconfig epair1b vnet 2
>>>>    jexec 1 csh
>>>>    ifconfig epair0b inet6 fd08:e8a3:4825:10::10
>>>>    route -n add -inet6 default fd08:e8a3:4825:10::1
>>>>    exit
>>>>    jexec 2 csh
>>>>    ifconfig epair1b inet6 fd08:e8a3:4825:10::11
>>>>    route -n add -inet6 default fd08:e8a3:4825:10::1
>>>>    exit
>>>>
>>>> Is this the way to get a stable vnet system?
>>> using epair and bridge is probably suboptimal.
>>>
>>> try using:
>>> 1: three epair sets to make a mesh (usable with smal nunbers fo jails)
> 
> Do you mean 2 ip-addresses per jail and another 2 for the host?
> 
>>> 2: using netgraph to make a bridge..
> 
> bridge + epair are cloneable interfaces, they are created before pf
> starts. The netgraph stuff is problematic when using interfaces in pf.conf.

though in 8.1 and 9 each jail has its own pf.

> 
> 
> _______________________________________________
> freebsd-virtualization@freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-virtualization
> To unsubscribe, send any mail to "freebsd-virtualization-unsubscribe@freebsd.org"