From owner-freebsd-net@FreeBSD.ORG  Sun Nov  3 16:40:18 2013
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTP id 838337D5
 for <freebsd-net@freebsd.org>; Sun,  3 Nov 2013 16:40:18 +0000 (UTC)
 (envelope-from spawk@acm.poly.edu)
Received: from acm.poly.edu (acm.poly.edu [64.147.113.26])
 by mx1.freebsd.org (Postfix) with ESMTP id 5DEC526CD
 for <freebsd-net@freebsd.org>; Sun,  3 Nov 2013 16:40:18 +0000 (UTC)
Received: from acm.poly.edu (localhost [127.0.0.1])
 by acm.poly.edu (Postfix) with ESMTP id B07101F13C2
 for <freebsd-net@freebsd.org>; Sun,  3 Nov 2013 11:40:17 -0500 (EST)
Received: (qmail 83446 invoked from network); 3 Nov 2013 16:40:17 -0000
Received: from unknown (HELO ?192.168.67.2?) (spawk@64.147.100.14)
 by acm.poly.edu with CAMELLIA256-SHA encrypted SMTP; 3 Nov 2013 16:40:17 -0000
Message-ID: <52767C6D.9010206@acm.poly.edu>
Date: Sun, 03 Nov 2013 11:40:13 -0500
From: Boris Kochergin <spawk@acm.poly.edu>
User-Agent: Mozilla/5.0 (X11; FreeBSD i386;
 rv:17.0) Gecko/20130417 Thunderbird/17.0.5
MIME-Version: 1.0
To: freebsd-net@freebsd.org
Subject: Re: Jail FIB?
References: <52767B9A.6090002@acm.poly.edu>
In-Reply-To: <52767B9A.6090002@acm.poly.edu>
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.14
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-net>,
 <mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
 <mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 03 Nov 2013 16:40:18 -0000

Figured out my own question. I was jexec'ing into it, and jexec inherits
FIB 0 from the host. SSHing into the jail results in the desired behavior.

Thanks.

-Boris

On 11/03/2013 11:36, Boris Kochergin wrote:
> Hi.
>
> I am running 9.2-RELEASE/amd64 and would like to have a jail use FIB 1.
> The host portion of this seems to work fine:
>
> # sysctl net.fibs net.fibs: 2
>
> # setfib 0 route -n get default
> ...
> gateway: 64.147.127.17
>
> # setfib 1 route -n get default
> ...
> gateway: 216.168.38.241
>
> In my /etc/rc.conf, I have:
>
> jail_wa_console_fib="1"
>
> And, with rc_debug="YES", rc.d tells me that it picked that up:
>
> /etc/rc.d/jail: DEBUG: wa_console fib: 1
>
> But, inside the jail:
>
> # sysctl net.my_fibnum
> net.my_fibnum: 0
>
> And, indeed, it takes the FIB 0 route out to the world. Why? How do I
> make it use FIB 1?
>
> -Boris