From nobody Wed Oct 04 21:58:25 2023
X-Original-To: freebsd-net@mlmmj.nyi.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
	by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4S17qm74CYz4wPF5
	for <freebsd-net@mlmmj.nyi.freebsd.org>; Wed,  4 Oct 2023 21:58:44 +0000 (UTC)
	(envelope-from benoitc@enki-multimedia.eu)
Received: from mail-4317.proton.ch (mail-4317.proton.ch [185.70.43.17])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256
	 client-signature RSA-PSS (4096 bits) client-digest SHA256)
	(Client CN "protonmail.com", Issuer "R3" (verified OK))
	by mx1.freebsd.org (Postfix) with ESMTPS id 4S17ql1HjNz4VWN
	for <freebsd-net@freebsd.org>; Wed,  4 Oct 2023 21:58:42 +0000 (UTC)
	(envelope-from benoitc@enki-multimedia.eu)
Authentication-Results: mx1.freebsd.org;
	dkim=pass header.d=enki-multimedia.eu header.s=protonmail header.b=QX4uvsoH;
	spf=pass (mx1.freebsd.org: domain of benoitc@enki-multimedia.eu designates 185.70.43.17 as permitted sender) smtp.mailfrom=benoitc@enki-multimedia.eu;
	dmarc=pass (policy=none) header.from=enki-multimedia.eu
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=enki-multimedia.eu;
	s=protonmail; t=1696456719; x=1696715919;
	bh=8Zhh5dfUoIo1gf3Ppk7D8spATynsYm8LdOrfveIjwEQ=;
	h=Date:To:From:Cc:Subject:Message-ID:In-Reply-To:References:
	 Feedback-ID:From:To:Cc:Date:Subject:Reply-To:Feedback-ID:
	 Message-ID:BIMI-Selector;
	b=QX4uvsoH2w4HHNuXKn25ewFUg7W+JftZZtG5t5ibMJNeRE9GqgdXGFND8R9Dqc87A
	 sPrOwIl9cP35iljLdhR5Q0+bphWlQw/LqTFui74pLGRmz9NoZvMiv4A76ph9xqOSPN
	 1biLyswm57vyT1IUehXeH5t3vVWax2IQiqCsep/m7ccPkmNqvnTBmkNEODxFdTRucQ
	 PmdoVHZycgJ90suxRTafQi8EFpgXJp1lKIvZA5LJL/fxOhffB4R1PJyo0Zu97gHO//
	 k16gmadj9Oqf1ZF9mL4oDJor6XjKl82xZWnL7c5FYBGhvRpiqgUFuDKv6rtfYOD6NJ
	 7aQ1v1fzfHqDg==
Date: Wed, 04 Oct 2023 21:58:25 +0000
To: felix.reichenberger@tuta.io
From: Benoit Chesneau <benoitc@enki-multimedia.eu>
Cc: "freebsd-net@FreeBSD.org" <freebsd-net@freebsd.org>
Subject: Re: ipv6 only host and no IPV4 in jail?
Message-ID: <eIsS0xgUPUirMSlj6pfQkA5Wr8IbKplVM_4Na1iD4poUXqHd6ugD2xT0ZbjYi2ITGFydqCwinQNUto9hRKb8JS-IXAogwKWr2Z7PfwwqOAo=@enki-multimedia.eu>
In-Reply-To: <Nfjw-wM--3-9@tuta.io>
References: <t1d4CimLo2K345CiV8mGDaQrW5KW1Kz335yZOtRdu-XGYjY7m2zHVkxBOSxxLXavsgCVxWSVVO1JXNQ9F294ywF7MWuGh0L6HrYbKKvB2rA=@enki-multimedia.eu> <t1d4CimLo2K345CiV8mGDaQrW5KW1Kz335yZOtRdu-XGYjY7m2zHVkxBOSxxLXavsgCVxWSVVO1JXNQ9F294ywF7MWuGh0L6HrYbKKvB2rA=@enki-multimedia.eu-Nfjo6s_----9> <Nfjw-wM--3-9@tuta.io>
Feedback-ID: 9066678:user:proton
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Archive: https://lists.freebsd.org/archives/freebsd-net
List-Help: <mailto:freebsd-net+help@freebsd.org>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Subscribe: <mailto:freebsd-net+subscribe@freebsd.org>
List-Unsubscribe: <mailto:freebsd-net+unsubscribe@freebsd.org>
Sender: owner-freebsd-net@freebsd.org
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: quoted-printable
X-Spamd-Bar: ---
X-Spamd-Result: default: False [-3.38 / 15.00];
	SUBJECT_ENDS_QUESTION(1.00)[];
	NEURAL_HAM_LONG(-1.00)[-1.000];
	NEURAL_HAM_MEDIUM(-1.00)[-1.000];
	NEURAL_HAM_SHORT(-0.98)[-0.978];
	DMARC_POLICY_ALLOW(-0.50)[enki-multimedia.eu,none];
	RWL_MAILSPIKE_EXCELLENT(-0.40)[185.70.43.17:from];
	R_SPF_ALLOW(-0.20)[+ip4:185.70.43.0/24];
	R_DKIM_ALLOW(-0.20)[enki-multimedia.eu:s=protonmail];
	MIME_GOOD(-0.10)[text/plain];
	MLMMJ_DEST(0.00)[freebsd-net@freebsd.org];
	RCVD_COUNT_ZERO(0.00)[0];
	MIME_TRACE(0.00)[0:+];
	FROM_EQ_ENVFROM(0.00)[];
	TO_DN_EQ_ADDR_SOME(0.00)[];
	DKIM_TRACE(0.00)[enki-multimedia.eu:+];
	ASN(0.00)[asn:62371, ipnet:185.70.43.0/24, country:CH];
	ARC_NA(0.00)[];
	RCPT_COUNT_TWO(0.00)[2];
	FROM_HAS_DN(0.00)[];
	TO_MATCH_ENVRCPT_SOME(0.00)[];
	MID_RHS_MATCH_FROM(0.00)[]
X-Rspamd-Queue-Id: 4S17ql1HjNz4VWN

It works, over IPv6. I don't get any error. WHen I launch dh-client manuall=
y I get an IP. But when setting the if the rc.conf doesn't add an IPv4.

This is odd.



Beno=C3=AEt
------- Original Message -------
On Monday, October 2nd, 2023 at 12:30, felix.reichenberger@tuta.io <felix.r=
eichenberger@tuta.io> wrote:


> Hi,
>
> since your VNET jail has its own network stack, it shouldn't matter that =
your host is IPv6-only.
> I myself run dual-stack Bastille jails on IPv6-only hosts without any pro=
blems.
>
> What kind of errors do you get when trying to access the internet via IPv=
4 from your jail, and does it work with IPv6?
>
> Regards
>
>
> 2. Okt. 2023, 11:55 von benoitc@enki-multimedia.eu:
>
> > Hi all,
> >
> > I have a weird issue there,
> >
> > I have an ipv6 only host aon which I am starting a jail.Jalil have a vn=
et interface through a bridge created on the host:
> >
> > For some reason the jail can't get access and is not accessible to inte=
rnet when I setup an IPV4 on it (and right gateway). Is this something expe=
cted? SHould the Host be also IPV4 aware?
> >
> > Host config:
> >
> > Host:
> > ```
> > vlan200bridge: flags=3D8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> met=
ric 0 mtu 9000
> > ether 58:9c:fc:10:fc:41
> > id 00:00:00:00:00:00 priority 32768 hellotime 2 fwddelay 15
> > maxage 20 holdcnt 6 proto rstp maxaddr 2000 timeout 1200
> > root id 00:00:00:00:00:00 priority 32768 ifcost 0 port 0
> > member: e0a_bastille4 flags=3D143<LEARNING,DISCOVER,AUTOEDGE,AUTOPTP>
> > ifmaxaddr 0 port 8 priority 128 path cost 2000
> > member: tap0 flags=3D143<LEARNING,DISCOVER,AUTOEDGE,AUTOPTP>
> > ifmaxaddr 0 port 9 priority 128 path cost 2000000
> > member: tap1 flags=3D143<LEARNING,DISCOVER,AUTOEDGE,AUTOPTP>
> > ifmaxaddr 0 port 10 priority 128 path cost 2000000
> > member: vlan200 flags=3D143<LEARNING,DISCOVER,AUTOEDGE,AUTOPTP>
> > ifmaxaddr 0 port 6 priority 128 path cost 800
> > groups: bridge
> >
> > e0a_bastille4: flags=3D8963<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTIC=
AST> metric 0 mtu 9000
> > description: vnet host interface for Bastille jail fpcouchdb
> > options=3D8<VLAN_MTU>
> > ether 02:20:9c:4c:84:f0
> > hwaddr 02:c4:b5:3a:91:0a
> > groups: epair
> > media: Ethernet 10Gbase-T (10Gbase-T <full-duplex>)
> > status: active
> > nd6 options=3D29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
> > ```
> >
> > Guest
> >
> > ```
> > # ifconfig vnet0
> > vnet0: flags=3D8863<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mt=
u 1500
> > options=3D8<VLAN_MTU>
> > ether 0e:20:9c:4c:84:f0
> > hwaddr 02:c4:b5:3a:91:0b
> > inet6 XXXX:XXXX:XXXX:200::30 prefixlen 64
> > inet6 fe80::c20:9cff:fe4c:84f0%vnet0 prefixlen 64 scopeid 0x2
> > inet 10.200.1.8 netmask 0xffffff00 broadcast 10.200.1.255
> > groups: epair
> > media: Ethernet 10Gbase-T (10Gbase-T <full-duplex>)
> > status: active
> > nd6 options=3D21<PERFORMNUD,AUTO_LINKLOCAL>
> > # netstat -rn4
> > Routing tables
> >
> > Internet:
> > Destination Gateway Flags Netif Expire
> > default 10.200.1.1 UGS vnet0
> > 10.200.1.0/24 link#2 U vnet0
> > 10.200.1.8 link#2 UHS lo0
> > 127.0.0.1 link#1 UH lo0
> > ```
> >
> > Beno=C3=AEt Chesneau, Enki Multimedia
> > =E2=80=94
> > t. +33608655490
> >
> > Sent with > Proton Mail https://proton.me/> secure email.