setfib (ez)jails and wierd routing
Marko Cupać
marko.cupac at mimar.rs
Mon Oct 23 11:59:06 UTC 2017
On Tue, 17 Oct 2017 15:17:16 +0000
Andrew Hotlab <andrew.hotlab at hotmail.com> wrote:
> root at BSD11:~ # cat /etc/jail.conf
> exec.start = "/bin/sh /etc/rc";
> exec.stop = "/bin/sh /etc/rc.shutdown";
> exec.clean;
> mount.devfs;
> jtest01 {
> host.hostname = "jtest01.test.lab";
> path = /usr/jails/jtest01;
> ip4.addr = "em0|172.21.10.101/32";
> persist;
> allow.raw_sockets;
> exec.fib = "1";
> }
Andrew,
do you have the ability to remove allow.raw_sockets line from jtest01
jail and try to ping it while tcpdumping icmp on em1? You should see
reply packets leaving em1.
Thank you in advance.
--
Before enlightenment - chop wood, draw water.
After enlightenment - chop wood, draw water.
Marko Cupać
https://www.mimar.rs/
More information about the freebsd-jail
mailing list