From owner-freebsd-security@FreeBSD.ORG Tue Aug 5 07:46:29 2003 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6200E37B401 for ; Tue, 5 Aug 2003 07:46:29 -0700 (PDT) Received: from mail.takas.lt (mail-src.takas.lt [212.59.31.78]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1D43543F93 for ; Tue, 5 Aug 2003 07:46:28 -0700 (PDT) (envelope-from stakys@punktas.lt) Received: from ss ([81.7.109.95]) by mail.takas.lt with Microsoft SMTPSVC(5.0.2195.5329); Tue, 5 Aug 2003 17:46:26 +0300 Message-ID: <016101c35b60$56a9c320$0900a8c0@ss> From: "stakys" To: "Konstantin M Volevatch" , References: <53210.81.7.109.95.1060089623.squirrel@mail.impress.lt> <200308051631.52531.cox@rosnet.ru> Date: Tue, 5 Aug 2003 17:46:21 +0300 MIME-Version: 1.0 Content-Type: text/plain; charset="koi8-r" Content-Transfer-Encoding: 8bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2800.1106 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1106 X-OriginalArrivalTime: 05 Aug 2003 14:46:27.0062 (UTC) FILETIME=[595AD960:01C35B60] Subject: Re: Problems with JAIL in 4.8R X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Security issues [members-only posting] List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 05 Aug 2003 14:46:29 -0000 Mayby i have to add some rules to ipfw to that rl0 alias somehow? I dont know how to add rule for rl0 alias, to allow all traffic. Because if just adding rules for rl0 it do not helps. ----- Original Message ----- From: "Konstantin M Volevatch" To: ; Sent: Tuesday, August 05, 2003 3:31 PM Subject: Re: Problems with JAIL in 4.8R > Try this: > ipfw add 52 allow ip from any to me via rl0 > > В сообщении от 5 Август 2003 17:20 stakys@punktas.lt написал: > > On Tue, Aug 05, 2003 at 12:56:36PM -0000, stakys@punktas.lt wrote: > > > Hi, i've set the outside ip for the jail..It works.. When i try to ssh to > > > jail'ed system from the main system (in which is created jail) the > > > connection is successful, but when i try to connect to jailed system from > > > anywhere else i get this message: > > > ssh: connect to host IP_NUMBER port 22: Operation timed out > > > What can be wrong here? How to solve this problem? > > > > > >>Are you running some sort of firewall on the main system? You might > > >>have to add additional rules allowing SSH into the jailed one... > > >> > > >>G'luck, > > >>Peter > > > > I'm running IPFW but i put such a lines to ipfw.rules to be sure that it's > > not firewall's fault, about connecting to jail'ed system from outside. > > Here are the lines: > > ipfw add 50 allow ip from any to any via lo0 > > ipfw add 51 allow ip from any to any via rl0 > > _______________________________________________ > > freebsd-security@freebsd.org mailing list > > http://lists.freebsd.org/mailman/listinfo/freebsd-security > > To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org" > > -- > Konstantin M. Volevatch > Internet Service Division, RosNet JSC, Moscow > (095) 7813332 [local:4341] >