On Sun, Jun 29, 2025 at 11:09 PM Mason Loring Bliss <ma...@blisses.org> wrote:
>
> On Sun, Jun 29, 2025 at 10:55:49PM -0400, Paul Procacci wrote:
>
> > Ok, I misunderstood what you initially wrote because the language you're
> > using isn't exactly what I'd expect in the world of networking.
>
> I'm only peripherally a networking person, so I'm not surprised.
>
>
> > To clear up any confusion ... you have two ip addresses, each one
> > being in different subnets.
>
> Yes.
>
>
> > The ip assigned to the host and the gateway that the host talks to are
> > in one subnet while the other ip address assigned to the jail/vnet is
> > in an entirely different subnet.
>
> And yes.
>
>
> > Using VNET, you can try the following within the jail but I've never tried:
> > route add -net w.x.y.z/mask a.b.c.1
> > route add default a.b.c.1
>
> I'll try that. That's what I remember trying initially, but unsuccessfully,
> although I don't know that I included a subnet mask for w.x.y.z. It was a
> month and a half ago and I was thrashing around through a number of
> options, so I'll try it again this week and document things more closely.
>
> Thank you!
>
It's my pleasure. I ultimately believe you're going to have to add
the second ip address as an alias to the main interface and then
launch your jail w/out VNET taking that secondary ip address for its
own use.
This means you can forgo epairs and the like, and just let FBSD do its
thing from there on out with a standard jail.
~Paul
--
__________________
:(){ :|:& };:
