Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    FreeBSD vnet jails no comms

    General pfSense Questions
    freebsd vmware jail vnet
    1
    2
    792
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      tabmow
      last edited by tabmow

      Hi,

      I currently have TrueNAS and pfSense running as guest VMs on VMware ESXi.
      All vswitches have promiscuous mode enabled.
      For whatever reason, when I start a jail using vnet on my TrueNAS box it can't get access to the network. The only thing that works is pinging the TrueNAS host and vice versa. It can't even ping other directly connected devices to the same network.

      I have another TrueNAS box directly connected to the network, configured with jails and subnets in the exact same way and it is working fine. I'm at a loss on where to look. When I do a tcpdump on the truenas box I don't even get any traffic coming back from pfsense when I ping the gateway. Nor do I see any arp entries on pfsense for the jail either.

      Is there a setting or something within pfsense I am overlooking here? The only thing different is VMware in the middle but surely that shouldn't stop things from working altogether. If anyone has any ideas on where I should look I would be grateful.

      1 Reply Last reply Reply Quote 0
      • T
        tabmow
        last edited by

        As always is the case, I resolved this minutes after posting.
        It's quite an obscure setting but I needed to also enable Security --> Forged Transmits in the vSwitch.

        https://docs.vmware.com/en/VMware-vSphere/6.7/com.vmware.vsphere.security.doc/GUID-7DC6486F-5400-44DF-8A62-6273798A2F80.html

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.