Profile picture
, 5 tweets, 2 min read
My Authors
Read all threads
I’m trying to do a #FreeBSD vnet jail using a different subnet than the host. Routing seems to be the issue. I think the host needs an IP address in the jails subnet to act as the gateway. Correct?

The vnet needs to be attached to **not** em0.
I thought about creating tap0, putting 192.168.0.1 on that, and attaching it to bridge0 instead of em0.
We created em1 on the host, configured as: ifconfig em1 inet 192.168.100.1/24

The host can now ping the jail, and the jail can ping the host.

The problem: we can't do NAT.

tcpdump shows no traffic on em1 leaving the jail.

Is that because bridge0 members are em0, em1, vnet0 ?
e.g. host google.com in the jail produces traffic on em0 and vnet0... we just don't know how/where to do the NAT in this case.
I think my original assertion that bridge0 be not connected to em0 is wrong. However, this is iocage, and it is somehow associating everything with bridge0.

Let's try vanilla jails.
Missing some Tweet in this thread? You can try to force a refresh.

Enjoying this thread?

Keep Current with Dan Langille

Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

Twitter may remove this content at anytime, convert it as a PDF, save and print for later use!

Try unrolling a thread yourself!

how to unroll video

1) Follow Thread Reader App on Twitter so you can easily mention us!

2) Go to a Twitter thread (series of Tweets by the same owner) and mention us with a keyword "unroll" @threadreaderapp unroll

You can practice here first or read more on our help page!

Related hashtags

#FreeBSD

Related threads

Profile picture
John Warner
@biblioracle
Got a very interesting email about this piece from a reader whose son de-selected UVA because they weren't going to accept a year (or more's) worth of AP credit, so their child wouldn't be able to graduate in 2.5 or 3 years, or double major. /thread insidehighered.com/blogs/just-vis…
It's an interesting issue because I can certainly see the parent's perspective. Getting out of school in under 4 years saves time and $'s. On the other hand, AP credits are not the same as what UVA is trying to achieve with their gen ed curriculum. This is a tough gap to bridge.
In the end, I don't think it necessarily needs to be bridged. UVA can absolutely insist that a UVA degree requires the experience of their gen ed curriculum. And a student with credentials as strong as this kid's has no trouble finding a great school to go to.
Read 4 tweets
Profile picture
Jesus M Gonzalez-Barahona
@jgbarah
Firefox is enabling DoH (DNS over HTTPS) by default for US users, and likely in other countries blog.mozilla.org/futurereleases… There are similar plans for Chrome. This is a game-changer for all of us: know the details, and judge by yourself.

Short thread ahead.
Let's start with the basics. For many years, every device connected to Internet had at least one IP address of the form 192.34.32.33 (a four-byte number). Those are IPv4 addresses en.wikipedia.org/wiki/IPv4#Addr… They were (are) used to route traffic.
About 20 years ago a new addressing schema, part of IPv6, introduced 16-byte addresses, such as 2001:db8::ff00:42:8329 en.wikipedia.org/wiki/IPv6#Addr… IPv6 has been (very) slowly substituting IPv4 even since.
Read 36 tweets
Profile picture
Eskil Steenberg
@EskilSteenberg
1/4 I'm trying to teach myself to avoid falling in to the trap of #gamedev symmetry. Not all dungeons have to end with a boss. Not all tri-force parts have to be in dungeons. Just because one unit has 3 spells doesn't mean other spell caster have to have 3.
2/4 Just because you use a d-pad to change grenade type, doesn't mean there has to be 4 types of grenades in your game. Make an Ice level if you have a great idea for one, not because you have a lava level. Don't decide in advance how many levels your game needs.
3/4 Make the ideas you are excited about, dont try to fill out your game. The more different and orthogonal the different mechanics are the more interesting the intersections will become. Don't think this game needs four classes, Think I have a great idea for this class.
Read 4 tweets
Profile picture
Ayla Ferrone
@AylaFerrone
#NXIVM update. Reading through the transcripts from Friday 5/1. No court yesterday or today, so this #THREAD will get you caught up to date. The day begins with defense attorney Marc Aginifilo bringing up an issue with one of the prosecution's future witness.
He says this witness worked at a "Planned Parenthood type of place" he's concerned with hearsay testimony. The attorneys discuss with the judge for a bit of time, Assistant U.S. Attorney Moira Penza says some of the statements will be offered for truth while others are not.
This was all essentially in a preview for the judge to have information before the issue came up formally. Now, Penza asks for a brief sidebar. This sidebar is redacted from the transcripts. The witness who was on the stand during the last transcripts remains on the stand.
Read 43 tweets
Profile picture
Michael Dexter
@michaeldexter
Calling all @FreeBSD/#FreeBSD users who have ever run "buildworld" with a build option. Behold, my 15 years-in-the-making diff to unbreak several build options: reviews.freebsd.org/D17040

Notably WITHOUT_INET* WITHOUT_CRYPT WITHOUT_OPENSSL WITHOUT_DYNAMICROOT WITHOUT_FILE #Thread
PLEASE review and test. I have noted one known shortcoming in the review and I hope all #FreeBSD make/build/buildworld subject matter experts can test and trash it as appropriate. Why? #Thread
I have wanted for a mere 15 years, since I first discovered FreeBSD #Jail, to have an easy way to choosing build(world) options for smaller-than-stock Jails come #bhyve virtual machines. THE THINGS THEY NOW CALL CONTAINERS and a dozen other catchy names.
Read 30 tweets

Trending hashtags

#Blogs #magnitude #NinjaSteel #Hoecke #Veteran #Thüringen #GOD #dead #sacrificed #not #money #ThankYou #power #SNS #God #world #FAP #LOLwut #WeThePeople #priorities #ploymère #HOWEMBARRASSING #powerful #Hass #StorageGateway
Follow Us on Twitter!

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just three indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3.00/month or $30.00/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!