Instead of adding all IP addresses statically to your server via host’s /etc/rc.conf
file you may instead leave them out and specify them on per-jail basis. That way when Jail is started IP address gets assigned to specific network interface, and when it is shut down it disappears from that interface.
This comes in really handy especially when you’re managing lots of IPv6 only jails, adding all IP addresses to the interface could be tedious and your rc.conf
would be more so.
Options you need in your ezjail jail configuration file are:
export jail_JAILNAME_interface="em0"
export jail_JAILNAME_ip="em0|IP"
Now, every time jail starts IP will automatically get assigned to the em0
interface, and when it shuts down it will get removed.