From owner-freebsd-hackers@FreeBSD.ORG Sat Mar 8 03:00:48 2014 Return-Path: Delivered-To: freebsd-hackers@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id B5F21698; Sat, 8 Mar 2014 03:00:48 +0000 (UTC) Received: from mail-ob0-x22a.google.com (mail-ob0-x22a.google.com [IPv6:2607:f8b0:4003:c01::22a]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by mx1.freebsd.org (Postfix) with ESMTPS id 6FB0FDCF; Sat, 8 Mar 2014 03:00:48 +0000 (UTC) Received: by mail-ob0-f170.google.com with SMTP id uz6so4974346obc.1 for ; Fri, 07 Mar 2014 19:00:47 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=nQu2wBDuQGSDH0LtkUct4MkK8sCEqn7L1nljnMBRhko=; b=wgrzOtqvt0Vq62sg6dyq7dI2wGvZUJjrFlhL2BMw2YMC6QnN8Qqx2zOwjIyUs0q0Xu ey1DF/VGEa+NPhNCAHGvksQ29I1HGXYiLdeBLEdxV49uN5NfC2k3jqejWVqgokxZxftT 8tRdfl7KELW8M5qnaDfmrsplSEEWwI04YQze6P1TNW3zXLuPXSTN8TrE6LR+aOMW2bZF uzIaMAWgE1WYx7iZ5UEBNaBoI3fGIPef+8YY796av/rIhsboz9jmLxVlGz8BqnmitI1f sncfqkFddqrxrHHgRmU3ndnwbVWVUxW0nc4HZ+2hxSvxRelg33F8COA6dfFtGmlMZWsS H/xg== MIME-Version: 1.0 X-Received: by 10.60.15.38 with SMTP id u6mr10109469oec.26.1394247647801; Fri, 07 Mar 2014 19:00:47 -0800 (PST) Received: by 10.182.76.201 with HTTP; Fri, 7 Mar 2014 19:00:47 -0800 (PST) In-Reply-To: <1a1801cf39d4$1155a830$3400f890$@FreeBSD.org> References: <53181410.1030107@freebsd.org> <5318B836.7040301@grosbein.net> <19cd01cf3974$dffa5bf0$9fef13d0$@FreeBSD.org> <1a1801cf39d4$1155a830$3400f890$@FreeBSD.org> Date: Fri, 7 Mar 2014 22:00:47 -0500 Message-ID: Subject: Re: How do I create a cloned interface when there is no static connection? From: Joe Nosay To: Devin Teske Content-Type: text/plain; charset=ISO-8859-1 X-Content-Filtered-By: Mailman/MimeDel 2.1.17 Cc: FreeBSD Hackers , Eugene Grosbein X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 08 Mar 2014 03:00:48 -0000 On Fri, Mar 7, 2014 at 2:08 AM, wrote: > > > > -----Original Message----- > > From: Joe Nosay [mailto:superbisquit@gmail.com] > > Sent: Thursday, March 6, 2014 6:52 PM > > To: Devin Teske > > Cc: FreeBSD Hackers; Eugene Grosbein > > Subject: Re: How do I create a cloned interface when there is no static > > connection? > > > > On Thu, Mar 6, 2014 at 2:47 PM, wrote: > > > > > > > > > > > > -----Original Message----- > > > > From: Eugene Grosbein [mailto:eugen@grosbein.net] > > > > Sent: Thursday, March 6, 2014 10:03 AM > > > > To: Joe Nosay > > > > Cc: FreeBSD Hackers > > > > Subject: Re: How do I create a cloned interface when there is no > > > > static connection? > > > > > > > > On 07.03.2014 00:39, Joe Nosay wrote: > > > > > > > > > I'll need a dummy interface inside of the that can be bridged to > > > > > wlan0 outside of the jail. Normal jail with aliases. > > > > > > > > Try epair(4) and give one part of pair to jail and bridge another > > > > part > > > with > > > > wlan0. > > > > > > > > > > Never tried bridging a wlan with netgraph, but I wonder if the method > > > I use for bridging Ethernet with netgraph would work... > > > > > > Using the ngctl command to create an ng_bridge and then multiple > > > ng_eiface devices that you can be shoved into the jail. > > > > > > kldload ng_ether > > > kldload ng_bridge > > > kldload ng_eiface > > > ngctl > > > + mkpeer {IFACE}: bridge lower link0 > > > + connect {IFACE}: {IFACE}:lower upper link1 > > > + name {IFACE}:lower {IFACE}bridge > > > + quit > > > ifconifg {IFACE} up > > > ngctl > > > + msg {IFACE}: setpromisc 1 > > > + msg {IFACE}: setautosrc 0 > > > + mkpeer {IFACE}:lower eiface link{N} ether > > > + name {IFACE}bridge:link{N} > > > + show -n {IFACE}bridge: > > > Name: ngeth0 Type: eiface ID: XXXXXXXX Num > > > hooks: N > > > + name {IFACE}bridge:link{N} {NEWIFACE} > > > ifconfig ngeth0 name {NEWNAME} > > > ifconfig {NEWNAME} vnet {JID} > > > > > > Taking care to replace the following from above: > > > {IFACE} - the name of the interface you want to bridge (eg, em0) {N} - > > > link number (starts at 2; increments by-one for each new eiface) > > > {NEWIFACE} - the name of the new eiface (ngethN) device to create > > > {JID} - the jail ID of the jail you want to shove the interface into > > > > > > Of course, never tried this with WiFi. > > > > I did not properly create the jail.conf script. I believe the file of > /etc/rc.d/jail > > should be followed; yet, there is no tutorial on setting it up. > > My /etc/rc.conf file is also improperly setup. How? I don't know; but, I > can tell > > because the system will not boot completely and ctrl+C must be hit to > allow > > logging in. > > What release are you using? "uname -spr" is often succinct enough. > -- > Devin > > _____________ > The information contained in this message is proprietary and/or > confidential. If you are not the intended recipient, please: (i) delete the > message and all copies; (ii) do not disclose, distribute or use the message > in any manner; and (iii) notify the sender immediately. In addition, please > be aware that any message addressed to our domain is subject to archiving > and review by persons other than the intended recipient. Thank you. > FreeBSD 10.0-RELEASE amd64 The /etc/rc.d/jail script is interpreting the name at -G in FreeBSD-Google_projects to be a command line option. I am going to see what happens if I just change the name.