FreeBSD vnet jails no comms
-
Hi,
I currently have TrueNAS and pfSense running as guest VMs on VMware ESXi.
All vswitches have promiscuous mode enabled.
For whatever reason, when I start a jail using vnet on my TrueNAS box it can't get access to the network. The only thing that works is pinging the TrueNAS host and vice versa. It can't even ping other directly connected devices to the same network.I have another TrueNAS box directly connected to the network, configured with jails and subnets in the exact same way and it is working fine. I'm at a loss on where to look. When I do a tcpdump on the truenas box I don't even get any traffic coming back from pfsense when I ping the gateway. Nor do I see any arp entries on pfsense for the jail either.
Is there a setting or something within pfsense I am overlooking here? The only thing different is VMware in the middle but surely that shouldn't stop things from working altogether. If anyone has any ideas on where I should look I would be grateful.
-
As always is the case, I resolved this minutes after posting.
It's quite an obscure setting but I needed to also enable Security --> Forged Transmits in the vSwitch.https://docs.vmware.com/en/VMware-vSphere/6.7/com.vmware.vsphere.security.doc/GUID-7DC6486F-5400-44DF-8A62-6273798A2F80.html