Date: Sun, 1 Nov 2015 07:16:34 +0800 From: Julian Elischer <julian@freebsd.org> To: freebsd-current@freebsd.org Subject: Re: pf NAT and VNET Jails Message-ID: <56354BD2.5060608@freebsd.org> In-Reply-To: <CAExMvs=jVsASLyiqU9nTpir0Hy_s_DfChgf4XKeGWv-8yojNBw@mail.gmail.com> References: <CAExMvs=jVsASLyiqU9nTpir0Hy_s_DfChgf4XKeGWv-8yojNBw@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On 11/1/15 2:50 AM, Shawn Webb wrote: > I'm at r290228 on amd64. I'm not sure which revision I was on last when it > last worked, but it seems VNET jails aren't working anymore. > > I've got a bridge, bridge1, with an IP of 192.168.7.1. The VNET jails set > their default route to 192.168.7.1. The host simply NATs outbound from > 192.168.7.0/24 to the rest of the world. The various epairs get added to > bridge1 and assigned to each jail. Pretty simple setup. That worked until > today. When I do tcpdump on my public-facing NIC, I see that NAT isn't > applied. When I run `ping 8.8.8.8` from the jail, the jail's 192.168.7.0/24 > address gets sent on the wire. > > Let me know what I can do to help debug this further. send the list your setup script/settings? > > Thanks, > > Shawn Webb > _______________________________________________ > freebsd-current@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-current > To unsubscribe, send any mail to "freebsd-current-unsubscribe@freebsd.org" >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?56354BD2.5060608>