Okay so this is really weird because it used to work. It's probably something as dumb as turning forwarding on/off but I just can't figure it out. I have the same settings on two machines, I basically copied the files from one machine to the other, and changed what's necessary. It worked for some time, but while I was playing with the firewall, I must have done something but I can't seem to reverse it because I don't know what I turned off/on ><
I have disabled the firewall (no lines to cause the firewall to start on boot in rc.conf)
I have a host machine with three physical interfaces, namely 1.1.1.1, 2.2.2.2 and 3.3.3.2. This machine has two jails, jail1 and jail2. Each jail has two virtual interfaces, so for jail1 I have 192.168.1.2 and 10.0.0.1. For jail2 I have 192.168.1.4 and 172.16.0.1.
Now the problem is that I can ping from jail1 to all three physical interfaces just fine. I just can't do so from jail2.
Here is my ifconfig of the host machine (I am aware of the no-carrier portion of the interfaces, I'm not connecting them to anything at the moment except msk0, I'm just trying to reach them from within the jails):
And here is my ifconfig of jail1
and my ifconfig of jail2
and finally my netstat
I have the same settings on a different machine and everything works fine. It just doesn't work on this one.
I have disabled the firewall (no lines to cause the firewall to start on boot in rc.conf)
I have a host machine with three physical interfaces, namely 1.1.1.1, 2.2.2.2 and 3.3.3.2. This machine has two jails, jail1 and jail2. Each jail has two virtual interfaces, so for jail1 I have 192.168.1.2 and 10.0.0.1. For jail2 I have 192.168.1.4 and 172.16.0.1.
Now the problem is that I can ping from jail1 to all three physical interfaces just fine. I just can't do so from jail2.
# jexec 2 ping 1.1.1.1
Code:
ping: send to: No route to host
Here is my ifconfig of the host machine (I am aware of the no-carrier portion of the interfaces, I'm not connecting them to anything at the moment except msk0, I'm just trying to reach them from within the jails):
Code:
em0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
options=19b<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING,VLAN_HWCSUM,TSO4>
ether 00:15:17:96:0d:08
inet 2.2.2.2 netmask 0xff000000 broadcast 2.255.255.255
media: Ethernet autoselect
status: no carrier
em1: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
options=19b<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING,VLAN_HWCSUM,TSO4>
ether 00:15:17:96:0d:09
inet 3.3.3.2 netmask 0xff000000 broadcast 3.255.255.255
media: Ethernet autoselect
status: no carrier
msk0: flags=8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> metric 0 mtu 1500
options=18<VLAN_MTU,VLAN_HWTAGGING>
ether 00:1e:90:9d:ee:4e
inet 1.1.1.1 netmask 0xff000000 broadcast 1.255.255.255
media: Ethernet autoselect (1000baseT <full-duplex,flag0,flag1,flag2>)
status: active
plip0: flags=8810<POINTOPOINT,SIMPLEX,MULTICAST> metric 0 mtu 1500
lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> metric 0 mtu 16384
options=3<RXCSUM,TXCSUM>
inet6 fe80::1%lo0 prefixlen 64 scopeid 0x7
inet6 ::1 prefixlen 128
inet 127.0.0.1 netmask 0xff000000
bridge0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
ether c2:88:df:e6:cd:8d
inet 192.168.1.1 netmask 0xffffff00 broadcast 192.168.1.255
id 00:00:00:00:00:00 priority 32768 hellotime 2 fwddelay 15
maxage 20 holdcnt 6 proto rstp maxaddr 100 timeout 1200
root id 00:00:00:00:00:00 priority 32768 ifcost 0 port 0
member: epair1a flags=143<LEARNING,DISCOVER,AUTOEDGE,AUTOPTP>
ifmaxaddr 0 port 11 priority 128 path cost 14183
member: msk0 flags=143<LEARNING,DISCOVER,AUTOEDGE,AUTOPTP>
ifmaxaddr 0 port 5 priority 128 path cost 55
member: epair0a flags=143<LEARNING,DISCOVER,AUTOEDGE,AUTOPTP>
ifmaxaddr 0 port 10 priority 128 path cost 14183
gif0: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> metric 0 mtu 1500
tunnel inet 1.1.1.1 --> 1.1.1.2
inet 101.0.0.1 --> 101.0.0.2 netmask 0xffffff00
options=1<ACCEPT_REV_ETHIP_VER>
epair0a: flags=8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> metric 0 mtu 1500
ether 02:c0:24:00:0a:0a
inet 192.168.1.4 netmask 0xffffff00 broadcast 192.168.1.255
epair2a: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
ether 02:c0:24:00:0c:0a
inet 10.0.0.2 netmask 0xff000000 broadcast 10.255.255.255
epair1a: flags=8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> metric 0 mtu 1500
ether 02:c0:24:00:0b:0a
inet 192.168.1.5 netmask 0xffffff00 broadcast 192.168.1.255
epair3a: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
ether 02:c0:24:00:0e:0a
inet 172.16.0.2 netmask 0xffff0000 broadcast 172.16.255.255
And here is my ifconfig of jail1
Code:
lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> metric 0 mtu 16384
options=3<RXCSUM,TXCSUM>
inet 127.0.0.1 netmask 0xff000000
inet6 ::1 prefixlen 128
inet6 fe80::1%lo0 prefixlen 64 scopeid 0x1
epair0b: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
ether 02:c0:24:00:0b:0b
inet6 fe80::c0:24ff:fe00:b0b%epair0b prefixlen 64 scopeid 0x2
inet 192.168.1.2 netmask 0xffffff00 broadcast 192.168.1.255
epair2b: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
ether 02:c0:24:00:0d:0b
inet6 fe80::c0:24ff:fe00:d0b%epair2b prefixlen 64 scopeid 0x3
inet 10.0.0.1 netmask 0xffffff00 broadcast 10.0.0.255
and my ifconfig of jail2
Code:
lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> metric 0 mtu 16384
options=3<RXCSUM,TXCSUM>
inet 127.0.0.1 netmask 0xff000000
inet6 ::1 prefixlen 128
inet6 fe80::1%lo0 prefixlen 64 scopeid 0x1
epair1b: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
ether 02:c0:24:00:0d:0b
inet6 fe80::c0:24ff:fe00:d0b%epair1b prefixlen 64 scopeid 0x2
inet 192.168.1.3 netmask 0xffffff00 broadcast 192.168.1.255
epair3b: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
ether 02:c0:24:00:0f:0b
inet6 fe80::c0:24ff:fe00:f0b%epair3b prefixlen 64 scopeid 0x3
inet 172.16.0.1 netmask 0xffffff00 broadcast 172.16.0.255
and finally my netstat
Code:
Routing tables
Internet:
Destination Gateway Flags Refs Use Netif Expire
1.0.0.0/8 link#5 U 0 0 msk0
1.1.1.1 link#5 UHS 0 0 lo0
2.0.0.0/8 link#1 U 0 0 em0
2.2.2.2 link#1 UHS 0 0 lo0
3.0.0.0/8 link#2 U 0 0 em1
3.3.3.2 link#2 UHS 0 0 lo0
10.0.0.0/8 link#12 U 0 0 epair2
10.0.0.2 link#12 UHS 0 0 lo0
101.0.0.1 link#9 UHS 0 0 lo0
101.0.0.2 link#9 UH 0 0 gif0
127.0.0.1 link#7 UH 0 0 lo0
172.16.0.0/16 link#14 U 0 3 epair3
172.16.0.2 link#14 UHS 0 0 lo0
192.168.1.0/24 link#8 U 0 33 bridge
192.168.1.1 link#8 UHS 0 0 lo0
192.168.1.4 link#10 UHS 0 0 lo0
192.168.1.5 link#11 UHS 0 0 lo0
Internet6:
Destination Gateway Flags Netif Expire
::1 ::1 UH lo0
fe80::%lo0/64 link#7 U lo0
fe80::1%lo0 link#7 UHS lo0
ff01:7::/32 fe80::1%lo0 U lo0
ff02::%lo0/32 fe80::1%lo0 U lo0
I have the same settings on a different machine and everything works fine. It just doesn't work on this one.