[Bug 208001] After turning off the jail does not remove network routes

bugzilla-noreply at freebsd.org bugzilla-noreply at freebsd.org
Mon Mar 14 22:43:30 UTC 2016 

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=208001

            Bug ID: 208001
           Summary: After turning off the jail does not remove network
                    routes
           Product: Base System
           Version: 10.3-BETA2
          Hardware: amd64
                OS: Any
            Status: New
          Severity: Affects Many People
          Priority: ---
         Component: bin
          Assignee: freebsd-bugs at FreeBSD.org
          Reporter: admin at support.od.ua
                CC: freebsd-amd64 at FreeBSD.org
                CC: freebsd-amd64 at FreeBSD.org

After turning off the jail does not remove network routes.
Helps only change the IP address or reboot the server


# service jail start
Starting jails: web.
# service jail status
 JID             IP Address      Hostname                      Path
 web             10.0.0.22       web.otrada.local              /jails/web
# service jail stop
Stopping jails: web.
# service jail status
 JID             IP Address      Hostname                      Path
# service jail start
Starting jails: cannot start jail  "web":
ifconfig: ioctl (SIOCAIFADDR): No such process
jail: web: /sbin/ifconfig re0 inet 10.0.0.22/24 alias: failed
.
# netstat -rn4 | grep 10.0
10.0.0.0/24        link#1             U           re0
10.0.0.0/24        link#1             U           re0
10.0.0.0/24        link#1             U           re0
10.0.0.0/24        link#1             U           re0
10.0.0.0/8         10.0.0.125         UGS         re0
10.0.0.1           link#1             UHS         lo0
10.0.0.19          link#1             UHS         lo0
10.0.1.1           link#10            UHS         lo0
10.0.2.48          link#10            UH          ng1
10.0.3.5           link#11            UH          ng2
# route get 10.0.0.0/24
   route to: 10.0.0.0
destination: 10.0.0.0
       mask: 255.255.255.0
        fib: 0
  interface: re0
      flags: <UP,DONE,PINNED>
 recvpipe  sendpipe  ssthresh  rtt,msec    mtu        weight    expire
       0         0         0         0      1500         1         0


Example config /etc/jail.conf:

allow.raw_sockets = 1;
exec.clean;
exec.system_user = "root";
exec.jail_user = "root";
exec.start = "/bin/sh /etc/rc";
exec.stop = "/bin/sh /etc/rc.shutdown";
exec.consolelog = "/var/log/jail_${name}_console.log";
mount.devfs;
mount.fstab = "/etc/fstab.$name";
allow.mount;
allow.set_hostname = 0;
allow.sysvipc = 0;
path = "/jails/${name}";

web {
    host.hostname = "web.otrada.local";
    ip4.addr = "re0|10.0.0.22/24";
    ip4.addr += "lo0|127.0.1.1/8";
    ip6.addr += "re0|2001:470:28:140::121/64";
    allow.sysvipc = 1;
    mount.procfs;
    devfs_ruleset = 7;
#    path = "/jails/billing-test";
}

-- 
You are receiving this mail because:
You are on the CC list for the bug.

More information about the freebsd-amd64 mailing list