vnet NAT'd jails extremely slow, connection dies

Farhan Khan khanzf at gmail.com
Mon Feb 4 19:30:15 UTC 2019


Hi all,

I have a jail NAT'd to a base system, but the connection is extremely
slow and frequently disconnects drops, whereas the base is fine has
perfectly fine connectivity.

My configuration is as follows:
vtnet0: Has routeable IPv4 address and 172.16.0.1/16
Jail uses epair4b, base has epair4a. Jail's IP is 172.16.0.5/16.
The base and jail can ping each other.
bridge0: contains vtnet0 and epair4a.

I have gateway_enable="YES"
My pf.conf is as follows:
nat pass from 172.16.0.0/16 to any -> (vtnet0)

When I try to run clamav, the connectivity stalls after a few minutes
and eventually disconnects. I ran tcpdump on the bridge and saw a lot
of HTTP seq and ack packets but no actual data. I am not using IPv6
yet.

Assistance please.
Thanks
--
Farhan Khan
PGP Fingerprint: B28D 2726 E2BC A97E 3854 5ABE 9A9F 00BC D525 16EE


More information about the freebsd-jail mailing list