From nobody Wed Jul 07 10:15:25 2021 X-Original-To: jail@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id DEEE01225CC7 for ; Wed, 7 Jul 2021 10:15:26 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4GKb0G5vK3z4XV9 for ; Wed, 7 Jul 2021 10:15:26 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id B05D0349C for ; Wed, 7 Jul 2021 10:15:26 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 167AFQHi090902 for ; Wed, 7 Jul 2021 10:15:26 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 167AFQbR090901 for jail@FreeBSD.org; Wed, 7 Jul 2021 10:15:26 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: jail@FreeBSD.org Subject: [Bug 257038] [Panic] on http traffic to or from jail through vxlan Date: Wed, 07 Jul 2021 10:15:25 +0000 X-Bugzilla-Reason: CC X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 13.0-RELEASE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: capra-freebsd@phcn.de X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: net@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Discussion about FreeBSD jail(8) List-Archive: https://lists.freebsd.org/archives/freebsd-jail List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-jail@freebsd.org MIME-Version: 1.0 X-ThisMailContainsUnwantedMimeParts: N https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D257038 --- Comment #2 from capra-freebsd@phcn.de --- I'll try to describe my Setup as good as I possible:=20 I have one physical IF connected, it's called em0.=20 I have 2 vxlan interfaces, endpoint is my router ifconfig_em0=3D"inet 192.168.1.5 netmask 255.255.255.0 mtu 4000" create_args_vxlan43=3D"vxlanid 43 vxlanlocal 192.168.1.5 vxlanremote 192.16= 8.1.1" ifconfig_vxlan43=3D"inet 10.43.0.5 netmask 255.255.255.0 up" create_args_vxlan44=3D"vxlanid 44 vxlanlocal 192.168.1.5 vxlanremote 192.16= 8.1.1" ifconfig_vxlan44=3D"inet 10.44.0.5 netmask 255.255.255.0 up" therefore I have to use fibs to have several routing tables, they are pretty simple=20 setfib 1 route add -net 10.44.0.0/24 -iface vxlan44 setfib 2 route add -net 10.43.0.0/24 -iface vxlan43 # Default route setfib 1 route add default 10.44.0.1 setfib 2 route add default 10.43.0.1 furthermore I use bhyve based virtual machines in my setup, they are connec= ted to the vxlan interfaces and work just fine.=20 NAME TYPE IFACE ADDRESS PRIVATE MTU VLAN PORTS phcn standard vm-phcn - no - - vxlan43 DMZ standard vm-DMZ - no - - vxlan44 the problem starts with the jail that are connected to vxlans, for example = this one: cat /zroot/iocage/jails/phcn-zabbix/config.json=20 { "boot": 0, "depends": "psql", "exec_fib": "2", "host_hostname": "phcn-zabbix", "host_hostuuid": "phcn-zabbix", "ip4_addr": "lo1|127.0.1.10/8,vxlan43|10.43.0.10/24", "jail_zfs_dataset": "iocage/jails/phcn-zabbix/data", "last_started": "2021-07-07 10:06:19", "release": "12.2-RELEASE-p6" }#=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20 when I try to connect to the zabbix webui, or if I use the jail console to= =20 curl www.google.de the host crashes. --=20 You are receiving this mail because: You are on the CC list for the bug.=