Bug 210817 - vimage ALPHA6 [ipfilter errors out on start up]
Summary: vimage ALPHA6 [ipfilter errors out on start up]
Status: Closed Overcome By Events
Alias: None
Product: Base System
Classification: Unclassified
Component: kern (show other bugs)
Version: CURRENT
Hardware: Any Any
: --- Affects Only Me
Assignee: Bjoern A. Zeeb
URL:
Keywords: vimage
Depends on:
Blocks:
 
Reported: 2016-07-04 13:50 UTC by Joe Barbish
Modified: 2016-08-04 18:18 UTC (History)
1 user (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Joe Barbish 2016-07-04 13:50:39 UTC 
Host is running ipfilter firewall. When trying to start vimage jail with ipfilter option statements in rc.conf get these error messages.


Jul  4 05:36:48 kernel: nd6_dad_timer: cancel DAD on epair4a because 
of ND6_IFF_IFDISABLED.
Enabling ipfilter.
open device: No such file or directory
0:open device: No such file or directory
0:SIOCFRENB: Bad file descriptor
open device: No such file or directory
User/kernel version check failed
open device: No such file or directory
User/kernel version check failed
syntax error error at "[", line 5
Comment 1 Joe Barbish 2016-07-07 20:13:21 UTC 
Compiled the kernel with ipfilter compiled in. 

test 1.
Have the ipfilter statements in the host rc.conf commented out so host is not running any firewall at all.

Have ipfilter statements in the vnet/vimage jail's rc.conf and when jail starts get the same messages as posted before except the nd6_dad_timer message does not happen.


test 2.
Have ipfilter statements in the host rc.conf so host is running ipfilter firewall. 

Have ipfilter statements in the vnet/vimage jail's rc.conf and when jail starts get the same messages as posted before except the nd6_dad_timer message does not happen.
 

Compiling ipfilter in the kernel changed nothing.