Date: Thu, 10 Jul 2014 09:28:02 +1200 From: Peter Toth <peter.toth198@gmail.com> To: Peter.Ross@alumni.tu-berlin.de Cc: freebsd-jail@freebsd.org Subject: RE: vnet jail and ipfw/nat on host - keep-state problem? Message-ID: <CAEUAJxtpJz3gPboUYc4p3JvkHSca=%2B%2Bfz0gj85sjwJG1eBgPjA@mail.gmail.com>
next in thread | raw e-mail | index | archive | help
Hi Peter, Try to make these changes: net.inet.ip.forwarding=1 # Enable IP forwarding between interfaces net.link.bridge.pfil_onlyip=0 # Only pass IP packets when pfil is enabled net.link.bridge.pfil_bridge=0 # Packet filter on the bridge interface net.link.bridge.pfil_member=0 # Packet filter on the member interface You can find some info here http://iocage.readthedocs.org/en/latest/help-no-internet.html I've had these issues before with PF and IPFW, by default these will be filtering on your bridge and member interfaces. Cheers, Peter
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAEUAJxtpJz3gPboUYc4p3JvkHSca=%2B%2Bfz0gj85sjwJG1eBgPjA>