Jail source address selection broken, patch for ping

Mark Felder feld at feld.me
Mon Apr 9 17:07:23 UTC 2012

On Mon, 09 Apr 2012 11:50:35 -0500, Juan F. Díaz y Díaz  
<jfd at mrecic.gov.ar> wrote:

> Mark, did you tried using the setfib utility?

No, and even if that could have helped I would probably have to modify our  
monitoring software (Xymon/Hobbit/BigBrother) in undesirable ways to have  
it launch every child process with setfib. This would certainly be a nasty  
hack and honestly networking should "just work" from within a jail;  
utilities shouldn't have to be tricked into working with a jail's network  

Here's the results of trying setfib, though:

root at xymon:/# setfib 0 fping 192.168.xxx.1    (censored for our privacy)
setfib: setfib: Function not implemented

Do you have to set some sysctl to get setfib to work in a jail, or does it  
just not work in jails period?

More information about the freebsd-jail mailing list