KpuCko
Dabbler
- Joined
- Jun 20, 2019
- Messages
- 48
Hello, I'm trying to create some Jails/Plugins and VMs on my FreeNAS server which has to part of another network segment (vlan)
Brief explanation of the interfaces of the server:
I have igb0 and igb1, they are part of bond interface, which is using LACP aggregation and it is set to trunk (I'm coming from Cisco's world), with no vlan restrictions (open trunk)
I also have created two vlan interfaces, the first one is vlan30, which is used to host the FreeNAS management IP (as tagged vlan)
and another one, named vlan310, which should be the vlan which provide network connectivity for the guests (for example).
Regarding this link: https://www.truenas.com/community/threads/how-to-setup-vlans-within-freenas-11-3.81633/ and based on my previous experience I know I have to create bridge interface and combine it with the vlan interface, that is exactly what I've did. There is a bridge named bridge310, and vlan310 is part of this bridge.
Just to ensure all about network subletting is fine (only for the test) I've set IP address on this bridge and I was able to ping it from my lan network, later on I removed the IP address, because I don't needed it, and I know (regarding the link above) it shouldn't have IP address set.
So far so good, except that fact when I try to create new Jail/Plugin I end up with broken DNS resolution, some errors like pkgs.freebsd.org cannot be resolved.
I can confirm that, when I start the Jail appropriate tun interface is created and the bridge became its parent. So from my point of view, all should be fine ;> but it is not.
Let me show you few pictures of the current config, and we can discuss what to test further.
Any advises are welcomed.
So let's recap - If I set IP for this vlan network on the bridge interface (on the host level) I'm able to ping it, which means the 802.1q is working fine on the host OS, but when I try to pass this communication to VM or Jail I can't. I'm attaching a screenshot for the VM config, because I assume VM network config will be much easier to understand.
Brief explanation of the interfaces of the server:
I have igb0 and igb1, they are part of bond interface, which is using LACP aggregation and it is set to trunk (I'm coming from Cisco's world), with no vlan restrictions (open trunk)
I also have created two vlan interfaces, the first one is vlan30, which is used to host the FreeNAS management IP (as tagged vlan)
and another one, named vlan310, which should be the vlan which provide network connectivity for the guests (for example).
Regarding this link: https://www.truenas.com/community/threads/how-to-setup-vlans-within-freenas-11-3.81633/ and based on my previous experience I know I have to create bridge interface and combine it with the vlan interface, that is exactly what I've did. There is a bridge named bridge310, and vlan310 is part of this bridge.
Just to ensure all about network subletting is fine (only for the test) I've set IP address on this bridge and I was able to ping it from my lan network, later on I removed the IP address, because I don't needed it, and I know (regarding the link above) it shouldn't have IP address set.
So far so good, except that fact when I try to create new Jail/Plugin I end up with broken DNS resolution, some errors like pkgs.freebsd.org cannot be resolved.
I can confirm that, when I start the Jail appropriate tun interface is created and the bridge became its parent. So from my point of view, all should be fine ;> but it is not.
Let me show you few pictures of the current config, and we can discuss what to test further.
Any advises are welcomed.
So let's recap - If I set IP for this vlan network on the bridge interface (on the host level) I'm able to ping it, which means the 802.1q is working fine on the host OS, but when I try to pass this communication to VM or Jail I can't. I'm attaching a screenshot for the VM config, because I assume VM network config will be much easier to understand.