Date: Wed, 11 Apr 2012 07:11:51 +0200 From: Anders Hagman <anders.hagman@netplex.se> To: "freebsd-jail@freebsd.org" <freebsd-jail@freebsd.org> Subject: Re: Jail source address selection broken, patch for ping Message-ID: <DA12BFA7-65F6-439A-BED3-0858A42718E2@netplex.se> In-Reply-To: <op.wcklefqm34t2sn@cr48.lan> References: <493438014.49159.1333999007132.JavaMail.root@mrelmx09.mrec.ar> <op.wcik10bo34t2sn@tech304> <903CBCF8-5096-4C5B-A5A9-F8495AA8751C@netplex.se> <op.wcklefqm34t2sn@cr48.lan>
next in thread | previous in thread | raw e-mail | index | archive | help
11 apr 2012 kl. 00:14 skrev Mark Felder <feld@feld.me>: > On Tue, 10 Apr 2012 04:03:22 -0500, Anders Hagman <anders.hagman@netplex.s= e> wrote: >=20 >> I have used vnet jail to get your own IP stack. >> One strange thing is that tcpdump on the host can not see the packets. >=20 >=20 > Yes, vnet avoids this issue. You shouldn't be able to tcpdump on the host t= o see the packets; those interfaces are now entirely owned by the jail. I did tcpdump on the main vr0 interface and still no packets. > Unfortunately we cannot use vnet because it is very experimental still and= I have been able to cause it to panic many times. Just by running it or during start/stop?=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?DA12BFA7-65F6-439A-BED3-0858A42718E2>