From owner-freebsd-virtualization@FreeBSD.ORG Sun Feb 28 10:08:06 2010 Return-Path: Delivered-To: freebsd-virtualization@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 9AB89106566C for ; Sun, 28 Feb 2010 10:08:06 +0000 (UTC) (envelope-from askjuise@gmail.com) Received: from mail-qy0-f194.google.com (mail-qy0-f194.google.com [209.85.221.194]) by mx1.freebsd.org (Postfix) with ESMTP id 56ECB8FC14 for ; Sun, 28 Feb 2010 10:08:05 +0000 (UTC) Received: by qyk32 with SMTP id 32so908578qyk.28 for ; Sun, 28 Feb 2010 02:07:59 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:date:message-id:subject :from:to:content-type; bh=fjEZ/l4qYMSkvghSFw7gdtutj905+xjFCJgrzanVIVU=; b=hGx9Yn017PxF2uTHDxCSauYjY7Ts7uPPEcAi+oVBrUpb0wKpB1aSMKWop2YBBLxT45 TwgL5w2nF1VzKw0YBWfFF0XHebwejEF2HAO8XuNgY7nsWI4INXBtb/BOT4EdywlMpEy4 D95wlLCJ/ZcKQnOMTT+QftGqrf69IJRQvfyA0= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:date:message-id:subject:from:to:content-type; b=cIzapjUGh7yL/9BHcRwR4ww9mxVxXr2qPQDLBd65KMF8hKfDRUoyaHhlnG2VpxO2CV jF/Wikrn3kPhDkqg5eqW0c5lG/lV+qK+G4ZYrERkrLULmX86CM9RPKKBPADJFcMAv8dL sPFRnY4UEoUmaqWR/tElt2hkCuV7wwPlSKNK4= MIME-Version: 1.0 Received: by 10.229.11.219 with SMTP id u27mr1319622qcu.10.1267349819663; Sun, 28 Feb 2010 01:36:59 -0800 (PST) Date: Sun, 28 Feb 2010 17:36:59 +0800 Message-ID: <2ec071a81002280136l2484fa5bq55410765d7a2eded@mail.gmail.com> From: Alexander Petrovsky To: freebsd-virtualization@freebsd.org Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: Jail unknown parameter vnet X-BeenThere: freebsd-virtualization@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion of various virtualization techniques FreeBSD supports." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 28 Feb 2010 10:08:06 -0000 Hello. I have problem on 8.0-RELEASE-p2 # cat /usr/src/sys/i386/conf/RABBIT | grep VIMAGE options VIMAGE # jail -c vnet name=3Dgermes host.hostname=3Dgermes path=3D/usr/jails/germe= s persist jail: unknown parameter: vnet # vimage -c n1 Error: unknown parameter: vnet Where an error, what I do not so? --=20 =D0=9F=D0=B5=D1=82=D1=80=D0=BE=D0=B2=D1=81=D0=BA=D0=B8=D0=B9 =D0=90=D0=BB= =D0=B5=D0=BA=D1=81=D0=B0=D0=BD=D0=B4=D1=80 / Alexander Petrovsky, ICQ: 350342118 Jabber: juise@jabber.ru Phone: +7 914 8 820 815 From owner-freebsd-virtualization@FreeBSD.ORG Sun Feb 28 10:20:07 2010 Return-Path: Delivered-To: freebsd-virtualization@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 7AD0A106566C for ; Sun, 28 Feb 2010 10:20:07 +0000 (UTC) (envelope-from bzeeb-lists@lists.zabbadoz.net) Received: from mail.cksoft.de (mail.cksoft.de [IPv6:2001:4068:10::3]) by mx1.freebsd.org (Postfix) with ESMTP id 10BFB8FC14 for ; Sun, 28 Feb 2010 10:20:07 +0000 (UTC) Received: from localhost (amavis.fra.cksoft.de [192.168.74.71]) by mail.cksoft.de (Postfix) with ESMTP id 200E741C751; Sun, 28 Feb 2010 11:20:06 +0100 (CET) X-Virus-Scanned: amavisd-new at cksoft.de Received: from mail.cksoft.de ([192.168.74.103]) by localhost (amavis.fra.cksoft.de [192.168.74.71]) (amavisd-new, port 10024) with ESMTP id z77B2EV2bhTK; Sun, 28 Feb 2010 11:20:05 +0100 (CET) Received: by mail.cksoft.de (Postfix, from userid 66) id 8D5DA41C750; Sun, 28 Feb 2010 11:20:05 +0100 (CET) Received: from maildrop.int.zabbadoz.net (maildrop.int.zabbadoz.net [10.111.66.10]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mail.int.zabbadoz.net (Postfix) with ESMTP id 365444448EC; Sun, 28 Feb 2010 10:16:21 +0000 (UTC) Date: Sun, 28 Feb 2010 10:16:20 +0000 (UTC) From: "Bjoern A. Zeeb" X-X-Sender: bz@maildrop.int.zabbadoz.net To: Alexander Petrovsky In-Reply-To: <2ec071a81002280136l2484fa5bq55410765d7a2eded@mail.gmail.com> Message-ID: <20100228101522.O27327@maildrop.int.zabbadoz.net> References: <2ec071a81002280136l2484fa5bq55410765d7a2eded@mail.gmail.com> X-OpenPGP-Key: 0x14003F198FEFA3E77207EE8D2B58B8F83CCF1842 MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed Cc: FreeBSD virtualization mailing list Subject: Re: Jail unknown parameter vnet X-BeenThere: freebsd-virtualization@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion of various virtualization techniques FreeBSD supports." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 28 Feb 2010 10:20:07 -0000 On Sun, 28 Feb 2010, Alexander Petrovsky wrote: Hi, > I have problem on 8.0-RELEASE-p2 > > # cat /usr/src/sys/i386/conf/RABBIT | grep VIMAGE > options VIMAGE > > # jail -c vnet name=germes host.hostname=germes path=/usr/jails/germes > persist > jail: unknown parameter: vnet > > # vimage -c n1 > Error: unknown parameter: vnet > > Where an error, what I do not so? can you confirm with uname -i or uname -a that you actually installed and booted the right kernel? /bz -- Bjoern A. Zeeb It will not break if you know what you are doing. From owner-freebsd-virtualization@FreeBSD.ORG Thu Mar 4 23:38:41 2010 Return-Path: Delivered-To: freebsd-virtualization@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 96291106564A; Thu, 4 Mar 2010 23:38:41 +0000 (UTC) (envelope-from wolfgang@riegler.homeip.net) Received: from mail-out.m-online.net (mail-out.m-online.net [212.18.0.10]) by mx1.freebsd.org (Postfix) with ESMTP id 44B988FC13; Thu, 4 Mar 2010 23:38:40 +0000 (UTC) Received: from mail01.m-online.net (mail.m-online.net [192.168.3.149]) by mail-out.m-online.net (Postfix) with ESMTP id 67D7C1C001D4; Fri, 5 Mar 2010 00:19:22 +0100 (CET) Received: from localhost (dynscan2.mnet-online.de [192.168.6.166]) by mail.m-online.net (Postfix) with ESMTP id 5E73590189; Fri, 5 Mar 2010 00:19:22 +0100 (CET) X-Virus-Scanned: amavisd-new at mnet-online.de Received: from smtp-auth.mnet-online.de ([192.168.3.149]) by localhost (dynscan2.mnet-online.de [192.168.6.166]) (amavisd-new, port 10024) with ESMTP id s02rwpDWvoBN; Fri, 5 Mar 2010 00:19:21 +0100 (CET) Received: from phenom2.riegler.homeip.net (ppp-93-104-62-120.dynamic.mnet-online.de [93.104.62.120]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by smtp-auth.mnet-online.de (Postfix) with ESMTP; Fri, 5 Mar 2010 00:19:21 +0100 (CET) Received: from localhost (localhost [127.0.0.1]) by phenom2.riegler.homeip.net (Postfix) with ESMTP id 7714CAED; Fri, 5 Mar 2010 00:19:12 +0100 (CET) Received: from phenom2.riegler.homeip.net ([127.0.0.1]) by localhost (phenom2.riegler.homeip.net [127.0.0.1]) (amavisd-maia, port 10024) with ESMTP id 52986-01; Fri, 5 Mar 2010 00:19:07 +0100 (CET) Received: from phenom2.riegler.homeip.net (phenom2.riegler.homeip.net [192.168.0.1]) (Authenticated sender: wolfgang@riegler.homeip.net) by phenom2.riegler.homeip.net (Postfix) with ESMTPA id F27C5AEC; Fri, 5 Mar 2010 00:19:06 +0100 (CET) From: Wolfgang Riegler To: freebsd-virtualization@freebsd.org Date: Fri, 5 Mar 2010 00:19:06 +0100 User-Agent: KMail/1.12.4 (FreeBSD/8.0-RELEASE-p2; KDE/4.3.5; amd64; ; ) MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 7bit Message-Id: <201003050019.06366.wolfgang@riegler.homeip.net> X-Virus-Scanned: Maia Mailguard 1.0.2a Cc: freebsd-emulation@freebsd.org, freebsd-jail@freebsd.org Subject: VirtualBox Headless inside a jail X-BeenThere: freebsd-virtualization@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion of various virtualization techniques FreeBSD supports." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 04 Mar 2010 23:38:41 -0000 Hi, I would like to setup VirtualBox headless with the VNC-patch and vboxweb inside a jail. Is this possible? I use FreeBSD 8.0-p2 amd64. regards Wolfgang From owner-freebsd-virtualization@FreeBSD.ORG Fri Mar 5 03:01:45 2010 Return-Path: Delivered-To: freebsd-virtualization@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 53CA21065673; Fri, 5 Mar 2010 03:01:45 +0000 (UTC) (envelope-from julian@elischer.org) Received: from out-0.mx.aerioconnect.net (out-0-4.mx.aerioconnect.net [216.240.47.64]) by mx1.freebsd.org (Postfix) with ESMTP id 0852B8FC27; Fri, 5 Mar 2010 03:01:44 +0000 (UTC) Received: from idiom.com (postfix@mx0.idiom.com [216.240.32.160]) by out-0.mx.aerioconnect.net (8.13.8/8.13.8) with ESMTP id o252c4ni022434; Thu, 4 Mar 2010 18:38:04 -0800 X-Client-Authorized: MaGic Cook1e X-Client-Authorized: MaGic Cook1e X-Client-Authorized: MaGic Cook1e X-Client-Authorized: MaGic Cook1e Received: from julian-mac.elischer.org (h-67-100-89-137.snfccasy.static.covad.net [67.100.89.137]) by idiom.com (Postfix) with ESMTP id 9D9A22D6013; Thu, 4 Mar 2010 18:38:03 -0800 (PST) Message-ID: <4B906E8A.9010908@elischer.org> Date: Thu, 04 Mar 2010 18:38:02 -0800 From: Julian Elischer User-Agent: Thunderbird 2.0.0.23 (Macintosh/20090812) MIME-Version: 1.0 To: Wolfgang Riegler References: <201003050019.06366.wolfgang@riegler.homeip.net> In-Reply-To: <201003050019.06366.wolfgang@riegler.homeip.net> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit X-Scanned-By: MIMEDefang 2.67 on 216.240.47.51 Cc: freebsd-emulation@freebsd.org, freebsd-jail@freebsd.org, freebsd-virtualization@freebsd.org Subject: Re: VirtualBox Headless inside a jail X-BeenThere: freebsd-virtualization@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion of various virtualization techniques FreeBSD supports." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 05 Mar 2010 03:01:45 -0000 Wolfgang Riegler wrote: > Hi, > > I would like to setup VirtualBox headless with the VNC-patch and vboxweb > inside a jail. Is this possible? I use FreeBSD 8.0-p2 amd64. > > regards > > Wolfgang > _______________________________________________ > freebsd-virtualization@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-virtualization > To unsubscribe, send any mail to "freebsd-virtualization-unsubscribe@freebsd.org" I doubt it has been tried, but I can not see why not in theory.. if you made it a vnet jail with it's own firewall etc, it should limit the virtual machine as to what it can do.. (I don't know if you can run multiple virtualBox at once but you could limit each differently using this scheme.) From owner-freebsd-virtualization@FreeBSD.ORG Fri Mar 5 19:16:05 2010 Return-Path: Delivered-To: freebsd-virtualization@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id AC337106566B; Fri, 5 Mar 2010 19:16:05 +0000 (UTC) (envelope-from jim@sifferle.net) Received: from mout.perfora.net (mout.perfora.net [74.208.4.195]) by mx1.freebsd.org (Postfix) with ESMTP id 7D81F8FC2A; Fri, 5 Mar 2010 19:16:05 +0000 (UTC) Received: from oxusltgw09.schlund.de (oxusltgw09.lxa.perfora.net [172.19.206.11]) by mrelay.perfora.net (node=mrus3) with ESMTP (Nemesis) id 0M0yKl-1NZfix1wat-00v9yi; Fri, 05 Mar 2010 14:16:02 -0500 Date: Fri, 5 Mar 2010 14:16:00 -0500 (EST) From: "jim@sifferle.net" To: Julian Elischer , =?UTF-8?Q?=22Ermal_Lu=C3=A7i=22?= Message-ID: <900375163.294375.1267816560546.JavaMail.open-xchange@oxusltgw09.schlund.de> In-Reply-To: <9a542da31002230211k2fb5d99do7ed574a8cd94f4d9@mail.gmail.com> References: <1266739527.25137.519.camel@localhost> <4B80F076.5020109@elischer.org> <20100221084118.W27327@maildrop.int.zabbadoz.net> <4B8169EB.4030100@elischer.org> <9a542da31002230211k2fb5d99do7ed574a8cd94f4d9@mail.gmail.com> MIME-Version: 1.0 X-Priority: 3 X-Mailer: Open-Xchange Mailer v6.14.0-Rev14 X-Provags-ID: V01U2FsdGVkX1+3G1sMP5aNtQncp0v0ROWolHgvGQiD9CztqNH FQzGlCUUZPDx0DM0nfPHiVH69JEhC/xubnvA6JjtQSwi3oxl7C 2ONPVFFsTXC6uRWyem/bA== Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: "Bjoern A. Zeeb" , FreeBSD virtualization mailing list , pf@freebsd.org Subject: Re: Network simulation using jails & vimage X-BeenThere: freebsd-virtualization@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion of various virtualization techniques FreeBSD supports." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 05 Mar 2010 19:16:05 -0000 On February 23, 2010 at 10:11 AM "Ermal Lu=C3=A7i" wrote: > On Sun, Feb 21, 2010 at 6:14 PM, Julian Elischer wro= te: > > > Bjoern A. Zeeb wrote: > > > >> On Sun, 21 Feb 2010, Julian Elischer wrote: > >> > >> Hi, > >> > >>=C2=A0 Jim Sifferle wrote: > >>> > >>>> Hi, > >>>> > >>>> Does any FreeBSD branch / vimage release combination support separat= e pf > >>>> AND ipfw configurations per jail?=C2=A0 I need ipfw+pf/altq for HFSC= queuing > >>> > >>> -current (9) should be close, with patches for pf supplied by ceri. > >> > >> s,ceri,eri,=C2=A0 (Ermal Lu=C3=A7i) > > > > it'd be nice if itcould get committed > > > > Ermal, is it ready? > > > It is usable look at http://svn.freebsd.org/base/user/eri/pf45/head/. > For vnet pfsync/pflow/pflog needs some fixes still. > I just now had some time to put together a CURRENT box for testing.=C2=A0 I= 'm getting a 'Fatal trap 12: page fault while in kernel mode' whenever I boot with pf_enable set to YES in rc.conf.=C2=A0 Here's my current setup: =C2=A0 - FreeBSD CURRENT cvs snapshot as of 2/25/10, running AMD64 kernel - GENERIC kernel compiled with ALTQ and VIMAGE options,=C2=A0invariants and= witness options disabled, plus Imunes patch for FreeBSD=C2=A08 RC3=C2=A0available h= ere: http://imunes.net/imunes-8.0-RC3.diff - pf loaded as module with very simple pass all pf.conf - ipfw not loaded =C2=A0 The Fatal trap seems to occur when pfctl is run. =C2=A0 I am recompiling my kernel with all debugging options turned on.=C2=A0 Hope= fully I can get a good kernel dump.=C2=A0 I will also try with fresh kernel sources= skipping the Imunes patch.=C2=A0 Anything else I should try? =C2=A0 Thanks for your help, =C2=A0 Jim From owner-freebsd-virtualization@FreeBSD.ORG Fri Mar 5 19:34:17 2010 Return-Path: Delivered-To: freebsd-virtualization@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 53E95106566B for ; Fri, 5 Mar 2010 19:34:17 +0000 (UTC) (envelope-from julian@elischer.org) Received: from out-0.mx.aerioconnect.net (out-0-20.mx.aerioconnect.net [216.240.47.80]) by mx1.freebsd.org (Postfix) with ESMTP id 2DF6B8FC29 for ; Fri, 5 Mar 2010 19:34:16 +0000 (UTC) Received: from idiom.com (postfix@mx0.idiom.com [216.240.32.160]) by out-0.mx.aerioconnect.net (8.13.8/8.13.8) with ESMTP id o25JYFt5011050; Fri, 5 Mar 2010 11:34:15 -0800 X-Client-Authorized: MaGic Cook1e X-Client-Authorized: MaGic Cook1e X-Client-Authorized: MaGic Cook1e X-Client-Authorized: MaGic Cook1e X-Client-Authorized: MaGic Cook1e Received: from julian-mac.elischer.org (h-67-100-89-137.snfccasy.static.covad.net [67.100.89.137]) by idiom.com (Postfix) with ESMTP id BDE2F2D6018; Fri, 5 Mar 2010 11:34:14 -0800 (PST) Message-ID: <4B915CB5.4070702@elischer.org> Date: Fri, 05 Mar 2010 11:34:13 -0800 From: Julian Elischer User-Agent: Thunderbird 2.0.0.23 (Macintosh/20090812) MIME-Version: 1.0 To: "jim@sifferle.net" References: <1266739527.25137.519.camel@localhost> <4B80F076.5020109@elischer.org> <20100221084118.W27327@maildrop.int.zabbadoz.net> <4B8169EB.4030100@elischer.org> <9a542da31002230211k2fb5d99do7ed574a8cd94f4d9@mail.gmail.com> <900375163.294375.1267816560546.JavaMail.open-xchange@oxusltgw09.schlund.de> In-Reply-To: <900375163.294375.1267816560546.JavaMail.open-xchange@oxusltgw09.schlund.de> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 8bit X-Scanned-By: MIMEDefang 2.67 on 216.240.47.51 Cc: =?UTF-8?B?RXJtYWwgTHXDp2k=?= , "Bjoern A. Zeeb" , FreeBSD virtualization mailing list , pf@freebsd.org Subject: Re: Network simulation using jails & vimage X-BeenThere: freebsd-virtualization@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion of various virtualization techniques FreeBSD supports." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 05 Mar 2010 19:34:17 -0000 jim@sifferle.net wrote: > > On February 23, 2010 at 10:11 AM "Ermal Luçi" wrote: > > > On Sun, Feb 21, 2010 at 6:14 PM, Julian Elischer > wrote: > > > > > Bjoern A. Zeeb wrote: > > > > > >> On Sun, 21 Feb 2010, Julian Elischer wrote: > > >> > > >> Hi, > > >> > > >> Jim Sifferle wrote: > > >>> > > >>>> Hi, > > >>>> > > >>>> Does any FreeBSD branch / vimage release combination support > separate pf > > >>>> AND ipfw configurations per jail? I need ipfw+pf/altq for HFSC > queuing > > >>> > > >>> -current (9) should be close, with patches for pf supplied by ceri. > > >> > > >> s,ceri,eri, (Ermal Luçi) > > > > > > it'd be nice if itcould get committed > > > > > > Ermal, is it ready? > > > > > It is usable look at http://svn.freebsd.org/base/user/eri/pf45/head/. > > For vnet pfsync/pflow/pflog needs some fixes still. > > > > I just now had some time to put together a CURRENT box for testing. I'm > getting a 'Fatal trap 12: page fault while in kernel mode' whenever I > boot with pf_enable set to YES in rc.conf. Here's my current setup: > > > > - FreeBSD CURRENT cvs snapshot as of 2/25/10, running AMD64 kernel > > - GENERIC kernel compiled with ALTQ and VIMAGE options, invariants and > witness options disabled, plus Imunes patch for FreeBSD 8 RC3 available > here: http://imunes.net/imunes-8.0-RC3.diff > > - pf loaded as module with very simple pass all pf.conf > > - ipfw not loaded > > > > The Fatal trap seems to occur when pfctl is run. This is unfortunately one for Ermal, as I wouldn't know a pfctl command if it came up and kicked me in the shins. :-) We really should try get the new pf stuff into -current so that it gets more testing. > > I am recompiling my kernel with all debugging options turned on. > Hopefully I can get a good kernel dump. I will also try with fresh > kernel sources skipping the Imunes patch. Anything else I should try? > > > > Thanks for your help, > > > > Jim > From owner-freebsd-virtualization@FreeBSD.ORG Fri Mar 5 20:15:40 2010 Return-Path: Delivered-To: freebsd-virtualization@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 35F85106564A; Fri, 5 Mar 2010 20:15:40 +0000 (UTC) (envelope-from jim@sifferle.net) Received: from mout.perfora.net (mout.perfora.net [74.208.4.194]) by mx1.freebsd.org (Postfix) with ESMTP id 071B08FC08; Fri, 5 Mar 2010 20:15:39 +0000 (UTC) Received: from oxusltgw09.schlund.de (oxusltgw09.lxa.perfora.net [172.19.206.11]) by mrelay.perfora.net (node=mrus2) with ESMTP (Nemesis) id 0MXILt-1OANRd0luf-00WRCr; Fri, 05 Mar 2010 15:15:37 -0500 Date: Fri, 5 Mar 2010 15:15:36 -0500 (EST) From: "jim@sifferle.net" To: Julian Elischer Message-ID: <477684154.296223.1267820136159.JavaMail.open-xchange@oxusltgw09.schlund.de> In-Reply-To: <4B915CB5.4070702@elischer.org> References: <1266739527.25137.519.camel@localhost> <4B80F076.5020109@elischer.org> <20100221084118.W27327@maildrop.int.zabbadoz.net> <4B8169EB.4030100@elischer.org> <9a542da31002230211k2fb5d99do7ed574a8cd94f4d9@mail.gmail.com> <900375163.294375.1267816560546.JavaMail.open-xchange@oxusltgw09.schlund.de> <4B915CB5.4070702@elischer.org> MIME-Version: 1.0 X-Priority: 3 X-Mailer: Open-Xchange Mailer v6.14.0-Rev14 X-Provags-ID: V01U2FsdGVkX1/S/RCGitRvrghz0ugQetSejbH9P+R6lOdn4oJ R75PQjbySrxeDOM4fkZl9zUmKQaHLJ4iC/6e9QW2aRxVHHrilH 1bYJQBgSBFwW6a5u8snRQ== Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: =?UTF-8?Q?=22Ermal_Lu=C3=A7i=22?= , "Bjoern A. Zeeb" , FreeBSD virtualization mailing list , pf@freebsd.org Subject: Re: Network simulation using jails & vimage X-BeenThere: freebsd-virtualization@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion of various virtualization techniques FreeBSD supports." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 05 Mar 2010 20:15:40 -0000 On March 5, 2010 at 7:34 PM Julian Elischer wrote: > jim@sifferle.net wrote: > > > > I just now had some time to put together a CURRENT box for testing.=C2= =A0 I'm > > getting a 'Fatal trap 12: page fault while in kernel mode' whenever I > > boot with pf_enable set to YES in rc.conf.=C2=A0 Here's my current setu= p: > > > > This is unfortunately one for Ermal, as I wouldn't know a pfctl > command if it came up and kicked me in the shins.=C2=A0 :-) > > We really should try get the new pf stuff into -current so that > it gets more testing. > Thanks for your quick reply... =C2=A0 I think my first problem is I didn't pull the sources from the folder Ermal mentioned: http://svn.freebsd.org/base/user/eri/pf45/head/.=C2=A0 =C2=A0 I misunderstood and thought it had been put in CURRENT.=C2=A0 I will downlo= ad the=C2=A0correct sources and try again. =C2=A0 Regards, =C2=A0 Jim =C2=A0 =C2=A0 From owner-freebsd-virtualization@FreeBSD.ORG Sat Mar 6 08:04:45 2010 Return-Path: Delivered-To: freebsd-virtualization@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 7498F106568E; Sat, 6 Mar 2010 08:04:45 +0000 (UTC) (envelope-from jim@sifferle.net) Received: from mout.perfora.net (mout.perfora.net [74.208.4.194]) by mx1.freebsd.org (Postfix) with ESMTP id BD2968FC24; Sat, 6 Mar 2010 08:04:44 +0000 (UTC) Received: from [192.65.23.38] (c-71-59-131-234.hsd1.wa.comcast.net [71.59.131.234]) by mrelay.perfora.net (node=mrus2) with ESMTP (Nemesis) id 0LjZyK-1NGx5f37pg-00bexL; Sat, 06 Mar 2010 03:04:41 -0500 From: Jim Sifferle To: Ermal =?ISO-8859-1?Q?Lu=E7i?= , Julian Elischer In-Reply-To: <477684154.296223.1267820136159.JavaMail.open-xchange@oxusltgw09.schlund.de> References: <1266739527.25137.519.camel@localhost> <4B80F076.5020109@elischer.org> <20100221084118.W27327@maildrop.int.zabbadoz.net> <4B8169EB.4030100@elischer.org> <9a542da31002230211k2fb5d99do7ed574a8cd94f4d9@mail.gmail.com> <900375163.294375.1267816560546.JavaMail.open-xchange@oxusltgw09.schlund.de> <4B915CB5.4070702@elischer.org> <477684154.296223.1267820136159.JavaMail.open-xchange@oxusltgw09.schlund.de> Content-Type: text/plain; charset="UTF-8" Date: Sat, 06 Mar 2010 00:04:34 -0800 Message-ID: <1267862674.29050.25.camel@localhost> Mime-Version: 1.0 X-Mailer: Evolution 2.28.2 (2.28.2-1.fc12) Content-Transfer-Encoding: 7bit X-Provags-ID: V01U2FsdGVkX19qibcLk1GLAd5pd4uP/ApsGK3QNf0PgjRQkih 2O6h2LJQ1wr3WKKZ5hbOAvXKDjFkJmEln3mHN2CmAsIMjY7O6u z3BqKvvymgZBHtIjVWqTA== Cc: "Bjoern A. Zeeb" , FreeBSD virtualization mailing list , pf@freebsd.org Subject: Re: Network simulation using jails & vimage X-BeenThere: freebsd-virtualization@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion of various virtualization techniques FreeBSD supports." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 06 Mar 2010 08:04:45 -0000 On Fri, 2010-03-05 at 15:15 -0500, jim@sifferle.net wrote: > On March 5, 2010 at 7:34 PM Julian Elischer wrote: > > > jim@sifferle.net wrote: > > > > > > I just now had some time to put together a CURRENT box for testing. I'm > > > getting a 'Fatal trap 12: page fault while in kernel mode' whenever I > > > boot with pf_enable set to YES in rc.conf. Here's my current setup: > > > > > > > This is unfortunately one for Ermal, as I wouldn't know a pfctl > > command if it came up and kicked me in the shins. :-) > > > > We really should try get the new pf stuff into -current so that > > it gets more testing. > > > Thanks for your quick reply... > > I think my first problem is I didn't pull the sources from the folder Ermal > mentioned: http://svn.freebsd.org/base/user/eri/pf45/head/. > > I misunderstood and thought it had been put in CURRENT. I will download > the correct > sources and try again. > Hi Ermal, Forgive my ignorance, but how would you recommend I build my system to test the new pf code? Here's what I tried earlier today: 1) Start with a CURRENT system with sources from 2/25 2) Download the new sources from svn using the link you provided na-lab-wan-3# svn info Path: . URL: http://svn.freebsd.org/base/user/eri/pf45/head Repository Root: http://svn.freebsd.org/base Repository UUID: ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f Revision: 204768 Node Kind: directory Schedule: normal Last Changed Author: eri Last Changed Rev: 204245 Last Changed Date: 2010-02-23 01:58:12 -0800 (Tue, 23 Feb 2010) 3) Build and install a new kernel with the updated sources. But, I could not compile with ALTQ support enabled. Is ALTQ available yet with the new pf, or is it still a work in progress like pflog and pfsync? cc -O2 -pipe -fno-strict-aliasing -Werror -D_KERNEL -DKLD_MODULE /usr/src_new/head/sys/modules/pf/../../contrib/pf/net/pf_ioctl.c: In function 'pf_begin_altq': /usr/src_new/head/sys/modules/pf/../../contrib/pf/net/pf_ioctl.c:894: error: 'altqs_inactive_open' undeclared (first use in this function) /usr/src_new/head/sys/modules/pf/../../contrib/pf/net/pf_ioctl.c:894: error: (Each undeclared identifier is reported only once /usr/src_new/head/sys/modules/pf/../../contrib/pf/net/pf_ioctl.c:894: error: for each function it appears in.) /usr/src_new/head/sys/modules/pf/../../contrib/pf/net/pf_ioctl.c: In function 'pf_rollback_altq': /usr/src_new/head/sys/modules/pf/../../contrib/pf/net/pf_ioctl.c:934: error: 'altqs_inactive_open' undeclared (first use in this function) /usr/src_new/head/sys/modules/pf/../../contrib/pf/net/pf_ioctl.c: In function 'pf_commit_altq': /usr/src_new/head/sys/modules/pf/../../contrib/pf/net/pf_ioctl.c:1024: error: 'altqs_inactive_open' undeclared (first use in this function) *** Error code 1 4) Reboot, load pf module, attempt to run pfctl -f /etc/pf.conf with this error: No ALTQ support in kernel ALTQ related functions disabled pfctl: DIOCADDRULE: Operation not supported by device 5) Attempt to rebuild pfctl from /usr/src_new/sbin/pfctl to deal with the 'Operation not supported by device' error. I get this error: cc -O2 -pipe -Wall -Wmissing-prototypes -Wno-uninitialized -Wstrict-prototypes -I/usr/src_new/head/sbin/pfctl/../../contrib/pf/pfctl -DENABLE_ALTQ -std=gnu99 -fstack-protector -Wsystem-headers -Werror -Wall -Wno-format-y2k -Wno-uninitialized -Wno-pointer-sign -c /usr/src_new/head/sbin/pfctl/../../contrib/pf/pfctl/pfctl.c cc1: warnings being treated as errors In file included from /usr/src_new/head/sbin/pfctl/../../contrib/pf/pfctl/pfctl.c:64: /usr/src_new/head/sbin/pfctl/../../contrib/pf/pfctl/pfctl.h:119: warning: 'struct pfsync_state_peer' declared inside parameter list /usr/src_new/head/sbin/pfctl/../../contrib/pf/pfctl/pfctl.h:119: warning: its scope is only this definition or declaration, which is probably not what you want /usr/src_new/head/sbin/pfctl/../../contrib/pf/pfctl/pfctl.h:120: warning: 'struct pfsync_state' declared inside parameter list /usr/src_new/head/sbin/pfctl/../../contrib/pf/pfctl/pfctl.c: In function 'pfctl_clear_states': /usr/src_new/head/sbin/pfctl/../../contrib/pf/pfctl/pfctl.c:393: error: 'struct pfioc_state_kill' has no member named 'psk_killed' /usr/src_new/head/sbin/pfctl/../../contrib/pf/pfctl/pfctl.c: In function 'pfctl_kill_src_nodes': /usr/src_new/head/sbin/pfctl/../../contrib/pf/pfctl/pfctl.c:532: error: 'struct pfioc_src_node_kill' has no member named 'psnk_killed' /usr/src_new/head/sbin/pfctl/../../contrib/pf/pfctl/pfctl.c:538: error: 'struct pfioc_src_node_kill' has no member named 'psnk_killed' /usr/src_new/head/sbin/pfctl/../../contrib/pf/pfctl/pfctl.c: In function 'pfctl_net_kill_states': /usr/src_new/head/sbin/pfctl/../../contrib/pf/pfctl/pfctl.c:638: error: 'struct pfioc_state_kill' has no member named 'psk_killed' /usr/src_new/head/sbin/pfctl/../../contrib/pf/pfctl/pfctl.c:644: error: 'struct pfioc_state_kill' has no member named 'psk_killed' /usr/src_new/head/sbin/pfctl/../../contrib/pf/pfctl/pfctl.c: In function 'pfctl_label_kill_states': /usr/src_new/head/sbin/pfctl/../../contrib/pf/pfctl/pfctl.c:670: error: 'struct pfioc_state_kill' has no member named 'psk_label' /usr/src_new/head/sbin/pfctl/../../contrib/pf/pfctl/pfctl.c:670: error: 'struct pfioc_state_kill' has no member named 'psk_label' /usr/src_new/head/sbin/pfctl/../../contrib/pf/pfctl/pfctl.c:671: error: 'struct pfioc_state_kill' has no member named 'psk_label' /usr/src_new/head/sbin/pfctl/../../contrib/pf/pfctl/pfctl.c:678: error: 'struct pfioc_state_kill' has no member named 'psk_killed' /usr/src_new/head/sbin/pfctl/../../contrib/pf/pfctl/pfctl.c: In function 'pfctl_id_kill_states': /usr/src_new/head/sbin/pfctl/../../contrib/pf/pfctl/pfctl.c:695: error: 'struct pfioc_state_kill' has no member named 'psk_pfcmp' /usr/src_new/head/sbin/pfctl/../../contrib/pf/pfctl/pfctl.c:695: error: 'struct pfioc_state_kill' has no member named 'psk_pfcmp' /usr/src_new/head/sbin/pfctl/../../contrib/pf/pfctl/pfctl.c:696: error: 'struct pfioc_state_kill' has no member named 'psk_pfcmp' /usr/src_new/head/sbin/pfctl/../../contrib/pf/pfctl/pfctl.c:696: error: 'struct pfioc_state_kill' has no member named 'psk_pfcmp' /usr/src_new/head/sbin/pfctl/../../contrib/pf/pfctl/pfctl.c:697: error: 'struct pfioc_state_kill' has no member named 'psk_pfcmp' /usr/src_new/head/sbin/pfctl/../../contrib/pf/pfctl/pfctl.c:698: error: 'struct pfioc_state_kill' has no member named 'psk_pfcmp' /usr/src_new/head/sbin/pfctl/../../contrib/pf/pfctl/pfctl.c:703: error: 'struct pfioc_state_kill' has no member named 'psk_pfcmp' /usr/src_new/head/sbin/pfctl/../../contrib/pf/pfctl/pfctl.c:708: error: 'struct pfioc_state_kill' has no member named 'psk_pfcmp' /usr/src_new/head/sbin/pfctl/../../contrib/pf/pfctl/pfctl.c:708: error: 'struct pfioc_state_kill' has no member named 'psk_pfcmp' /usr/src_new/head/sbin/pfctl/../../contrib/pf/pfctl/pfctl.c:713: error: 'struct pfioc_state_kill' has no member named 'psk_killed' /usr/src_new/head/sbin/pfctl/../../contrib/pf/pfctl/pfctl.c: In function 'pfctl_print_rule_counters': /usr/src_new/head/sbin/pfctl/../../contrib/pf/pfctl/pfctl.c:805: error: 'struct pf_rule' has no member named 'states_cur' /usr/src_new/head/sbin/pfctl/../../contrib/pf/pfctl/pfctl.c:810: error: 'struct pf_rule' has no member named 'states_tot' /usr/src_new/head/sbin/pfctl/../../contrib/pf/pfctl/pfctl.c: In function 'pfctl_show_rules': /usr/src_new/head/sbin/pfctl/../../contrib/pf/pfctl/pfctl.c:922: error: 'struct pf_rule' has no member named 'states_tot' /usr/src_new/head/sbin/pfctl/../../contrib/pf/pfctl/pfctl.c: In function 'pfctl_show_states': /usr/src_new/head/sbin/pfctl/../../contrib/pf/pfctl/pfctl.c:1087: warning: assignment from incompatible pointer type /usr/src_new/head/sbin/pfctl/../../contrib/pf/pfctl/pfctl.c:1088: error: dereferencing pointer to incomplete type /usr/src_new/head/sbin/pfctl/../../contrib/pf/pfctl/pfctl.c:1088: error: increment of pointer to unknown structure /usr/src_new/head/sbin/pfctl/../../contrib/pf/pfctl/pfctl.c:1088: error: arithmetic on pointer to an incomplete type /usr/src_new/head/sbin/pfctl/../../contrib/pf/pfctl/pfctl.c:1088: warning: left-hand operand of comma expression has no effect /usr/src_new/head/sbin/pfctl/../../contrib/pf/pfctl/pfctl.c:1089: error: dereferencing pointer to incomplete type /usr/src_new/head/sbin/pfctl/../../contrib/pf/pfctl/pfctl.c:1095: warning: passing argument 1 of 'print_state' from incompatible pointer type *** Error code 1 Thanks for any help you can provide... Jim