W dniu 16.10.2024 o 16:19, Palle Girgensohn pisze:
Hi!
Using FreeBSD-14.1, I have a rather simple setup with jails using
netgraph (using the `/usr/share/examples/jails/jng` script and "model").
(...)
I assume I'm doing some simple mistake here, but find very little
information wrt the combo o
+ kp@ A very interesting question. I think that's because, ng_ether(4) intercepts L2 traffic before it hits the firewall. pf(4) can intercept L2 traffic, but I'm not sure that it can then filter it by L3/L4.https://reviews.freebsd.org/D31737 Maybe kp@ will clarify this issue? 31.10.2024, 18:32, "Pa
Hi Palle,
> Am 31.10.2024 um 16:32 schrieb Palle Girgensohn :
> Thanks for the reply. It seems that these MIBs are related to if_bridge, not
> ng_bridge? I didn't have them at first, men after kldload if_bridge they
> appeared. They make no difference, though, so perhaps they do not relate to
>
> 16 okt. 2024 kl. 18:17 skrev Patrick M. Hausen :
>
> Hi!
>
>> Am 16.10.2024 um 16:19 schrieb Palle Girgensohn :
>> [...]
>> but nothing happens, everything is passed directly into the jail:
>>
>> nc -l (inside the jail)
>>
>> and I can just telnet 1.2.3.4
>
> Try:
>
> sysctl
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=277849
Franco Fichtner changed:
What|Removed |Added
CC||fra...@opnsense.org
--- Comment
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=277849
--- Comment #5 from Zhenlei Huang ---
(In reply to Martin Matuska from comment #2)
> with unpopulated ifm:
> ifm->ifm_mask = 0
> ifm->ifm_media = 0
> ifm->ifm_cur = 0x0
> ifm->ifm_change = 0x0
> ifm->ifm_status = 0x0
That looks weird.
>Fr
