Hi,
I am trying to set up a bunch of VNET jails and I want to filter the traffic between jails and between the jails and the host, from the host side. The jails and the host are on the same subnet and I do not want to use NAT. Currently I am bridging the ethernet interface with the epairs. It does work from a routing perspective, but it does not seem to be possible to filter the traffic to the jails using this technique, the traffic from either the host or other computers on the same subnet go unfiltered to the jails even if I try blocking all traffic. Any suggestion about how this could be done? I would like to filter the traffic on the host side. Thanks!
I am trying to set up a bunch of VNET jails and I want to filter the traffic between jails and between the jails and the host, from the host side. The jails and the host are on the same subnet and I do not want to use NAT. Currently I am bridging the ethernet interface with the epairs. It does work from a routing perspective, but it does not seem to be possible to filter the traffic to the jails using this technique, the traffic from either the host or other computers on the same subnet go unfiltered to the jails even if I try blocking all traffic. Any suggestion about how this could be done? I would like to filter the traffic on the host side. Thanks!