From owner-freebsd-net@freebsd.org Fri Sep 27 17:52:02 2019 Return-Path: Delivered-To: freebsd-net@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 7525F128C4D for ; Fri, 27 Sep 2019 17:52:02 +0000 (UTC) (envelope-from lan@zato.ru) Received: from mail.zato.ru (mail.zato.ru [178.255.248.12]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "mail.zato.ru", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 46fzrc4x64z45wM for ; Fri, 27 Sep 2019 17:52:00 +0000 (UTC) (envelope-from lan@zato.ru) Received: from [82.209.121.13] (helo=[192.168.101.200]) by mail.zato.ru with esmtpsa (TLSv1.2:AES128-SHA:128) (Exim 4.84 (FreeBSD)) (envelope-from ) id 1iDuPM-0005a9-D0 for freebsd-net@freebsd.org; Fri, 27 Sep 2019 20:51:57 +0300 To: freebsd-net@freebsd.org References: <213f9284-5ddd-4dbc-6631-f8592efa2995@zato.ru> From: alexander lunev Message-ID: <5be958c9-4b6b-f8ea-b6b2-4a797f1200bf@zato.ru> Date: Fri, 27 Sep 2019 20:52:01 +0300 User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:60.0) Gecko/20100101 Thunderbird/60.8.0 MIME-Version: 1.0 In-Reply-To: <213f9284-5ddd-4dbc-6631-f8592efa2995@zato.ru> Content-Type: text/plain; charset=utf-8; format=flowed Content-Language: ru Content-Transfer-Encoding: 8bit X-SA-Exim-Connect-IP: 82.209.121.13 X-SA-Exim-Mail-From: lan@zato.ru X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on mail.zato.local X-Spam-Level: X-Spam-Status: No, score=-1.0 required=5.0 tests=ALL_TRUSTED autolearn=unavailable autolearn_force=no version=3.4.2 Subject: Re: no network between jails and host with VNET on same interface X-SA-Exim-Version: 4.2 X-SA-Exim-Scanned: Yes (on mail.zato.ru) X-Rspamd-Queue-Id: 46fzrc4x64z45wM X-Spamd-Bar: -- X-Spamd-Result: default: False [-2.99 / 15.00]; ARC_NA(0.00)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; R_DKIM_ALLOW(-0.20)[zato.ru:s=mailserverdkimkey]; NEURAL_HAM_MEDIUM(-1.00)[-0.996,0]; FROM_HAS_DN(0.00)[]; R_SPF_ALLOW(-0.20)[+ip4:178.255.248.12:c]; TO_MATCH_ENVRCPT_ALL(0.00)[]; MIME_GOOD(-0.10)[text/plain]; TO_DN_NONE(0.00)[]; NEURAL_HAM_LONG(-1.00)[-1.000,0]; RCPT_COUNT_ONE(0.00)[1]; DKIM_TRACE(0.00)[zato.ru:+]; DMARC_POLICY_ALLOW(-0.50)[zato.ru,reject]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; IP_SCORE(0.00)[country: RU(0.01)]; ASN(0.00)[asn:56868, ipnet:178.255.248.0/24, country:RU]; MID_RHS_MATCH_FROM(0.00)[]; RCVD_TLS_ALL(0.00)[]; RCVD_COUNT_TWO(0.00)[2] X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 27 Sep 2019 17:52:02 -0000 I have to add: if i configure same network (10.14.14.0/24) on jail0 interfaces in jails and igb1 on host, then host and jails can ping addresses in this network. But vlan interfaces in jail and on host (10.1.1.0/24) can't ping each other. > =======  host ============================= >     [igb1 (10.14.14.1)]---------\ >        |                     +---------+ >  [vlan4 (10.1.1.247)]        |         | >                              | bridge0 | >  /--[epair1a]----------------|         | > /                            +---------+ > | /-[epair0a]--------------------/ > | | > =====  jail1_filter2 ====================== > | \-[jail0(ex-epair0b) (10.14.14.2)] > |     | > |     [vlan4 (10.1.1.26)] > =====  jail2_noc ========================== > \-[jail0(ex-epair1b) (10.14.14.3)] >     | >     [vlan4 (10.1.1.201)] > =========================================== -- Best regards, Alexander Lunev