From owner-freebsd-stable@FreeBSD.ORG Wed Dec 19 11:19:37 2012 Return-Path: Delivered-To: freebsd-stable@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 30FCC6F for ; Wed, 19 Dec 2012 11:19:37 +0000 (UTC) (envelope-from h.schmalzbauer@omnilan.de) Received: from host.omnilan.net (s1.omnilan.net [62.245.232.135]) by mx1.freebsd.org (Postfix) with ESMTP id AF3A28FC12 for ; Wed, 19 Dec 2012 11:19:35 +0000 (UTC) Received: from titan.inop.wdn.omnilan.net (titan.inop.wdn.omnilan.net [172.21.3.1]) (authenticated bits=0) by host.omnilan.net (8.13.8/8.13.8) with ESMTP id qBJBNXtW059977 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Wed, 19 Dec 2012 12:23:33 +0100 (CET) (envelope-from h.schmalzbauer@omnilan.de) Message-ID: <50D1A2B2.6040204@omnilan.de> Date: Wed, 19 Dec 2012 12:19:14 +0100 From: Harald Schmalzbauer Organization: OmniLAN User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; de-DE; rv:1.9.2.8) Gecko/20100906 Lightning/1.0b2 Thunderbird/3.1.2 MIME-Version: 1.0 To: freebsd-stable@freebsd.org Subject: can't reach jails own ipv4 from inside anymore X-Enigmail-Version: 1.1.2 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="------------enig2EC358CC44130EBFB2F16927" X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 19 Dec 2012 11:19:37 -0000 This is an OpenPGP/MIME signed message (RFC 2440 and 3156) --------------enig2EC358CC44130EBFB2F16927 Content-Type: text/plain; charset=ISO-8859-15 Content-Transfer-Encoding: quoted-printable Hello, with 8.2 I could "ssh IPofTheJail" inside the jail and got connected to the sshd in the corresponding jail. Same with "ssh localhost". With 9.1, it's not possible anymore. I have assigned a different FIB to my jail in both cases. The picture is different for IPv6. "ping6 IPofTheJail" does work! I have more oddities I wanted to check with jails and lagg-interfaces together with VLANs, but I have no idea why I can't connect from one jail to it's own IP(v4) anymore! Was there any special security-extension added after 8.2? Thanks, -Harry --------------enig2EC358CC44130EBFB2F16927 Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.18 (FreeBSD) iEYEARECAAYFAlDRorIACgkQLDqVQ9VXb8jnrgCgttDnwteLyCZ0GTud4ahNo+ZN 7V8An1RfCZjSxC4fMEJrfllSglJL5vb/ =bUjK -----END PGP SIGNATURE----- --------------enig2EC358CC44130EBFB2F16927--