Re: rp_filter equivalent?

On Sun, Jun 29, 2025 at 10:55:49PM -0400, Paul Procacci wrote:

> Ok, I misunderstood what you initially wrote because the language you're
> using isn't exactly what I'd expect in the world of networking.

I'm only peripherally a networking person, so I'm not surprised.


> To clear up any confusion ... you have two ip addresses, each one
> being in different subnets.

Yes.


> The ip assigned to the host and the gateway that the host talks to are
> in one subnet while the other ip address assigned to the jail/vnet is
> in an entirely different subnet.

And yes.


> Using VNET, you can try the following within the jail but I've never tried:
> route add -net w.x.y.z/mask a.b.c.1
> route add default a.b.c.1

I'll try that. That's what I remember trying initially, but unsuccessfully,
although I don't know that I included a subnet mask for w.x.y.z. It was a
month and a half ago and I was thrashing around through a number of
options, so I'll try it again this week and document things more closely.

Thank you!

-- 
(defun main () (format t "Mason Loring Bliss  -  mason@blisses.org - ")
 (format t "By the mysgydynge of the sterysman, he was set vpon the pylys")
 (format t " of the brydge, and the barge whelmyd. - Chronicle of Fabyan~%"))