Skip site navigation (1)Skip section navigation (2) 
Date:      Fri, 26 Apr 2013 16:44:05 +0200
From:      Anders Hagman <anders.hagman@netplex.se>
To:        Joe <fbsd8@a1poweruser.com>, "freebsd-jail@freebsd.org" <freebsd-jail@freebsd.org>
Subject:   Re: jail(8) vimage epair bridge
Message-ID:  <2ED09B04-6888-46CE-B34C-CAC70EB51F96@netplex.se>
In-Reply-To: <51783B89.9080701@a1poweruser.com>
References:  <5176892F.8050802@a1poweruser.com> <77E31AD0-ABE2-44FA-AB19-CF557038DEBE@netplex.se> <51783B89.9080701@a1poweruser.com>
next in thread | previous in thread | raw e-mail | index | archive | help 
Hi

24 apr 2013 kl. 22:07 skrev Joe <fbsd8@a1poweruser.com>:

> Anders Hagman wrote:
>> Hi
>> 23 apr 2013 kl. 15:14 skrev Joe <fbsd8@a1poweruser.com>:
>>> Hello list
>>>=20
>>> I am using jail(8) trying to get a functional vimage environment on my
>>> 9.1-RELEASE system. My PC only has a single real NIC facing the public
>>> internet.
>>>=20
>>> My goal is to be able to have multiple vimage jails, each with
>>> their own epairXa epairXb and bridgeX where the "X" is the jails JID
>>> number all having their traffic passing through the single rl0 real
>>> interface. The vnet.start script shown below handles this nicely.
>>>=20
>>> The problem is after the first vimage jail is started the rl0 interface
>>> gets marked as busy when the second vimage jail is started.
>> You don't need more the one bridge.
>> Connect all epairXa and the rl0 interface to the bridge. Put the epairXb i=
n the right jail.
>> If you want separation. Create vlan interfaces.
> > Connect them to rl0 and put them inside the jail.
>=20
> Hello Anders;
>=20
> Now that I have an bridge, epair solution,
> I would like to learn the vlan method you spoke about.
> Would you please provide some details about how it could be done.
> I have never used vlan before.

You need a vlan switch and a trunk connection between your server and the sw=
itch. You need a router/firewall that handles vlans. m0n0wall.

In your server create vlan interfaces:

Ifconfig vlan101 create vlan 101 vlandev rl0

Move the interface to a started jail

Ifconfig vlan101 vnet jailX

Connect to jail, config and test

Br
Anders=

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?2ED09B04-6888-46CE-B34C-CAC70EB51F96>