Re: no traffic from guest to host. guest can't get a dhcp response. ping says no route to host.

In reply to: Steven Friedrich : "Re: no traffic from guest to host. guest can't get a dhcp response. ping says no route to host."
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: Tomek CEDRO <tomek_at_cedro.info>
Date: Sun, 07 May 2023 20:50:18 UTC

On Sun, May 7, 2023 at 5:44 AM Steven Friedrich wrote:
> In my /etc/rc.conf, i have:
> cloned_interfaces="bridge0"
> ifconfig_bridge0="addm re0"
> where re0 is my network adapter on my host.
> Are your lines the same?

My rc.conf only has this part of vm-bhyve:

vm_enable="YES"
vm_dir="zfs:zroot/ztuff/vm/bhyve"

Do not use rc.conf for vm-bhyve network configuration. The vm-bhyve
configuration is stored under $vm_dir/.config/system.conf and mine is:

switch_list="public"
type_public="standard"
ports_public="em3"
private_public="no"

This gives me network interface under vm. However, I use ipfw firewall
in workstation mode that has quite strict filtering, this also affects
vm network traffic, in rc.conf it is represented by:

firewall_enable="YES"
firewall_type="workstation"

This is why I also need to disable packet filtering for bridge
interfaces with these lines in /etc/sysctl.conf:

sysctl net.link.bridge.ipfw=0
sysctl net.link.bridge.pfil_bridge=0
sysctl net.link.bridge.pfil_member=0

And this gives me packet moving also from/into the vm network.

If you want to know meaning of the specific sysctl use -d switch:

% sysctl -d sysctl net.link.bridge.ipfw
sysctl: Sysctl internal magic
sysctl.name:
sysctl.next:
sysctl.name2oid:
sysctl.oidfmt:
sysctl.oiddescr:
sysctl.oidlabel:
sysctl.nextnoskip:
net.link.bridge.ipfw: Layer2 filter with IPFW

% sysctl -d sysctl net.link.bridge.pfil_bridge
sysctl: Sysctl internal magic
sysctl.name:
sysctl.next:
sysctl.name2oid:
sysctl.oidfmt:
sysctl.oiddescr:
sysctl.oidlabel:
sysctl.nextnoskip:
net.link.bridge.pfil_bridge: Packet filter on the bridge interface

% sysctl -d sysctl net.link.bridge.pfil_member
sysctl: Sysctl internal magic
sysctl.name:
sysctl.next:
sysctl.name2oid:
sysctl.oidfmt:
sysctl.oiddescr:
sysctl.oidlabel:
sysctl.nextnoskip:
net.link.bridge.pfil_member: Packet filter on the member interface

I had to clean all configuration and restart from start several times
at first until I got this working. Focus on the `man vm` and perform
steps described from start (description, basic setup, zfs, quickstart)
until things are working :-)

Hope that helps :-)

-- 
CeDeROM, SQ7MHZ, http://www.tomek.cedro.info