This is the old XigmaNAS forum in read only mode,
it will taken offline by the end of march 2021!


I like to aks Users and Admins to rewrite/take over important post from here into the new fresh main forum!
Its not possible for us to export from here and import it to the main forum!

Internet Connectivity in Jail

Jails with XigmaNAS
Forum rules
Set-Up GuideFAQsForum Rules
Post Reply
wookl
NewUser
NewUser
Posts: 10
Joined: 31 Mar 2013 23:00
Status: Offline

Internet Connectivity in Jail

Post by wookl »

I have installed openvpn using this guide from lifehacker http://www.lifehacker.com.au/2012/12/tu ... g-machine/

I also have a jail running logitech media server, but the jail with lms can not connect to internet when openvpn is running.

I have two network interfaces igbe0 and igbe1.

Is it possible to have internetconnectivity in a jail while openvpn is running?
The jail does not need to use vpn.
11.1.0.4 - 4952 x64-full on Intel(R) Xeon(R) CPU L5640 @ 2.27GHz ASUSTeK Computer INC. P6T7 WS
Top
nicks88
Starter
Starter
Posts: 17
Joined: 16 Sep 2012 19:03
Status: Offline

Re: Internet Connectivity in Jail

Post by nicks88 »

Hi wookl,

I've been trying to do the same, but so far have been unable to and I believe this is a design on bsd/jails rather then an issue.

Sorry to not assist further.

Thanks
Top
hotalot
Starter
Starter
Posts: 15
Joined: 06 Jul 2013 13:35
Location: São Paulo - Brasil
Status: Offline

Re: Internet Connectivity in Jail

Post by hotalot »

Same here... but SOLVED!
I happens that the jail doesn't have an ethernet interface setup in the rc.conf file - in my case Finch. but I guess the same happens with the theBrig.

I logged into jail as root and sent the command: ifconfig - to know what is my interface, it is em0.

Code: Select all

plex etc/ root~# ifconfig
em0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
options=9b<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING,VLAN_HWCSUM>
ether 08:00:27:c5:af:c1
inet 192.168.112.243 netmask 0xffffffff broadcast 192.168.112.243
media: Ethernet autoselect (1000baseT <full-duplex>)
status: active
ipfw0: flags=8801<UP,SIMPLEX,MULTICAST> metric 0 mtu 65536
lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> metric 0 mtu 16384
options=600003<RXCSUM,TXCSUM,RXCSUM_IPV6,TXCSUM_IPV6>
inet 127.0.0.243 netmask 0xffffffff


Then I edited the rc.conf file with the command:

Code: Select all

plex etc/ root~# nano /etc/rc.conf
# No network interfaces in jails
network_interfaces=""

Then added em0 between the quotes, the resulting rc.conf output is:

# No network interfaces in jails
network_interfaces="em0"

# Prevent rpc
rpcbind_enable="NO"

# Prevent jails from doing their cron jobs at the same time
cron_flags=" -J 60"

# Prevent syslog from opening sockets
syslogd_enable="NO"
syslogd_flags="-ss"

# Prevent sendmail from trying to connect to localhost
sendmail_enable="NO"
sendmail_submit_enable="NO"
sendmail_outbound_enable="NO"
sendmail_msp_queue_enable="NO"

The result:

Code: Select all

plex etc/ root~# ping uol.com.br
PING uol.com.br (200.147.67.142): 56 data bytes
64 bytes from 200.147.67.142: icmp_seq=0 ttl=246 time=8.371 ms
64 bytes from 200.147.67.142: icmp_seq=1 ttl=246 time=7.956 ms
64 bytes from 200.147.67.142: icmp_seq=2 ttl=246 time=9.203 ms
64 bytes from 200.147.67.142: icmp_seq=3 ttl=246 time=7.950 ms
^C
--- uol.com.br ping statistics ---
4 packets transmitted, 4 packets received, 0.0% packet loss
round-trip min/avg/max/stddev = 7.950/8.370/9.203/0.510 ms

With google:

Code: Select all

pllex etc/ root~# ping google.com
PING google.com (173.194.118.69): 56 data bytes
64 bytes from 173.194.118.69: icmp_seq=0 ttl=55 time=8.199 ms
64 bytes from 173.194.118.69: icmp_seq=1 ttl=55 time=9.067 ms
64 bytes from 173.194.118.69: icmp_seq=2 ttl=55 time=6.267 ms
^C
--- google.com ping statistics ---
3 packets transmitted, 3 packets received, 0.0% packet loss
round-trip min/avg/max/stddev = 6.267/7.844/9.067/1.170 ms

Hope this helps
Top
hotalot
Starter
Starter
Posts: 15
Joined: 06 Jul 2013 13:35
Location: São Paulo - Brasil
Status: Offline

Re: Internet Connectivity in Jail

Post by hotalot »

Ops! ....

I added may router ip as dns server on the n4f webgui (System|General Setup), the other is google dns - 8.8.8.8
Top
fsbruva
Advanced User
Advanced User
Posts: 378
Joined: 21 Sep 2012 14:50
Status: Offline

Re: Internet Connectivity in Jail

Post by fsbruva »

So are you using Finch or TheBrig? TheBrig creates an rc.conf.local file, which properly has the above mentioned entries to allow connectivity.
Top
hotalot
Starter
Starter
Posts: 15
Joined: 06 Jul 2013 13:35
Location: São Paulo - Brasil
Status: Offline

Re: Internet Connectivity in Jail

Post by hotalot »

Yep, with TheBrig it is only needed you to set your router ip as one of dns'es on the webgui.
Top
Impulse1
Starter
Starter
Posts: 37
Joined: 06 Jul 2012 06:01
Status: Offline

Re: Internet Connectivity in Jail

Post by Impulse1 »

I'm having a similar issue while trying to install PLEX.

Router ip: 192.168.1.1
Nas4Free ip: 192.168.1.202
PLEX Jail ip: 192.168.1.210

Outside of the Jail my config:

Code: Select all

nas4free: ~ # ifconfig
re0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
	options=8389b<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING,VLAN_HWCSUM,WOL_UCAST,WOL_MCAST,WOL_MAGIC,LINKSTATE>
	ether 10:bf:48:7e:5c:10
	inet 192.168.1.202 netmask 0xffffff00 broadcast 192.168.1.255
	inet6 fe80::12bf:48ff:fe7e:5c10%re0 prefixlen 64 scopeid 0x6 
	inet 192.168.1.210 netmask 0xffffff00 broadcast 192.168.1.255
	nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
	media: Ethernet autoselect (1000baseT <full-duplex,master>)
	status: active
ipfw0: flags=8801<UP,SIMPLEX,MULTICAST> metric 0 mtu 65536
	nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> metric 0 mtu 16384
	options=600003<RXCSUM,TXCSUM,RXCSUM_IPV6,TXCSUM_IPV6>
	inet6 ::1 prefixlen 128 
	inet6 fe80::1%lo0 prefixlen 64 scopeid 0xa 
	inet 127.0.0.1 netmask 0xff000000 
	nd6 options=21<PERFORMNUD,AUTO_LINKLOCAL>
	
nas4free: ~ # ping -c 3 google.com
PING google.com (173.194.43.73): 56 data bytes
64 bytes from 173.194.43.73: icmp_seq=0 ttl=57 time=6.795 ms
64 bytes from 173.194.43.73: icmp_seq=1 ttl=57 time=7.035 ms
64 bytes from 173.194.43.73: icmp_seq=2 ttl=57 time=5.375 ms

--- google.com ping statistics ---
3 packets transmitted, 3 packets received, 0.0% packet loss
round-trip min/avg/max/stddev = 5.375/6.402/7.035/0.733 ms
Within the Jail config:

Code: Select all

root@PLEX:/ # ifconfig
re0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
	options=8389b<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING,VLAN_HWCSUM,WOL_UCAST,WOL_MCAST,WOL_MAGIC,LINKSTATE>
	ether 10:bf:48:7e:5c:10
	inet 192.168.1.210 netmask 0xffffff00 broadcast 192.168.1.255
	media: Ethernet autoselect (1000baseT <full-duplex,master>)
	status: active
ipfw0: flags=8801<UP,SIMPLEX,MULTICAST> metric 0 mtu 65536
lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> metric 0 mtu 16384
	options=600003<RXCSUM,TXCSUM,RXCSUM_IPV6,TXCSUM_IPV6>
	
root@PLEX:/ # ping -c 3 google.com
ping: cannot resolve google.com: Host name lookup failure
I tried adjusting the rc.config file mentioned above, but no change. In the GUI I have the DNS's set as google's, 8.8.8.8 and 8.8.4.4. I have tried using my router's IP there as well as my own ISP DNS's and doesn't seem to have any affect.

Any help would be greatly appreciated as I can't seem to install anything within the jails right now!

Code: Select all

root@PLEX:/ # portsnap fetch extract
Looking up portsnap.FreeBSD.org mirrors... none found.
Fetching public key from portsnap.FreeBSD.org... failed.
No mirrors remaining, giving up.
Top
isukennedy
NewUser
NewUser
Posts: 1
Joined: 04 Apr 2015 07:50
Status: Offline

Re: Internet Connectivity in Jail

Post by isukennedy »

Any update here? I'm experiencing EXACTLY the same thing.
Top
Post Reply

Return to “Jails”