Jailed Samba not getting broadcasts

Nejc Škoberne nejc at skoberne.net
Thu Apr 24 09:27:15 UTC 2008 

Hi,

> so what kind of setup do you have?

Sorry, forgot to provide it. I am running latest Samba 3 on FreeBSD 7.0 server.
You can get my smb.conf here:

http://stuff.skoberne.net/smb.conf (without "remote" entries suggested by Dewayne)

My rc.conf (relevant lines):

ifconfig_rl0="192.168.15.198 netmask 255.255.255.0"
jail_enable="YES"
jail_sysvipc_allow="YES"
jail_socket_unixiproute_only="NO"

#=---------------------------- Jails ---------------------------=#
jail_list="samba"
#=--------------------------------------------------------------=#
jail_samba_rootdir="/usr/jail/samba"
jail_samba_hostname="samba.domain.local"
jail_samba_ip="192.168.15.201"
jail_samba_interface="rl0"
jail_samba_devfs_enable="YES"
jail_samba_procfs_enable="YES"
jail_samba_devfs_ruleset="devfsrules_samba_jail"
#=--------------------------------------------------------------=#

My /etc/devfs.rules:

[devfsrules_samba_jail=6]
add include $devfsrules_hide_all
add include $devfsrules_unhide_basic
add include $devfsrules_unhide_login
add path bpf0 unhide

> is the jail IP on a real interface or on loopback?

Real interface. "rl0" in my case.

> is the jail IP an alias or a primary IP?

Alias - how to make it primary IP?

> what netmask does ifconfig show for this IP?

Host:

rl0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
         options=8<VLAN_MTU>
         ether 00:40:f4:27:7e:a8
         inet 192.168.15.198 netmask 0xffffff00 broadcast 192.168.15.255
         inet 192.168.15.201 netmask 0xffffffff broadcast 192.168.15.201
         media: Ethernet autoselect (100baseTX <full-duplex>)
         status: active

Jail:

rl0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
         options=8<VLAN_MTU>
         ether 00:40:f4:27:7e:a8
         inet 192.168.15.201 netmask 0xffffffff broadcast 192.168.15.201
         media: Ethernet autoselect (100baseTX <full-duplex>)
         status: active

Hmm, I guess this is the reason why Samba doesn't see the broadcasts - the mask
in the jail is /32, not /24. I read somewhere this cannot be changed?

> Are you running single-IP jail as shipped with FreeBSD, or are you
> running with patches?

Single ip jail. No patches.

Thanks a lot,
Nejc

More information about the freebsd-net mailing list