only lo0 interface inside jail, no default gw
Warren Block
wblock at wonkity.com
Mon Dec 22 20:20:38 UTC 2014
On Mon, 22 Dec 2014, Mark Felder wrote:
>
>
> On Thu, Dec 18, 2014, at 00:18, Alexander Lunev wrote:
>> As i said in message to Jamie Gritton, i found why jails couldn't ping
>> internet - i forget to add jail's address to table which permitted to
>> NAT.
>>
>> Why subnet mask should be /32? What harm could be done if subnet mask of
>> an
>> alias is the same as for the other address of that interface?
>>
>
> That's just the way the network stack has always worked; weird things
> happen if you use the wrong subnet mask on the aliases. IPv4 aliases are
> /32 and IPv6 aliases are /128. As documented in the man page for
> ifconfig:
>
> Usually 0xffffffff is most appropriate.
At one time, only /32 would work. Didn't that change a few releases
ago, so non-/32 netmasks could be used on aliases?
More information about the freebsd-jail
mailing list