Date: Thu, 12 Aug 2010 16:48:51 +0000 (GMT) From: Brice ERRANDONEA <berrandonea@yahoo.fr> To: freebsd-questions@FreeBSD.ORG Subject: Re : Re : Re : How to connect a jail to the web ? Message-ID: <827393.30460.qm@web24601.mail.ird.yahoo.com> In-Reply-To: <201008121552.o7CFqOIM097376@lurza.secnetix.de> References: <201008121552.o7CFqOIM097376@lurza.secnetix.de>
next in thread | previous in thread | raw e-mail | index | archive | help
=0A=0A> Where did you get that second IP address from? Did you just=0A> ad= d it manually? Or is that the address that your gateway=0A> (DSL router, w= hatever) got assigned from your ISP?=0A=0AI added it manually in rc.conf (o= n the host) :=0A=0Ahostname=3D"FreeBSD.ici"=0Aifconfig_rl0=3D"DHCP"=0Akeyma= p=3D"fr.iso.acc" (yes, I'm french)=0Amoused_enable=3D"YES"=0Asaver=3D= "dragon"=0Ahald_enable=3D"YES"=0Adbus_enable=3D"YES"=0Adevfs_system_ruleset= =3D"localrules"=0A=0Ajail_enable=3D"NO"=0Ajail_list=3D"MaPrison"=0Ajail_int= erface=3D"rl0"=0Ajail_devfs_ruleset=3D"devfsrules_jail"=0Ajail_devfs_enable= =3D"YES"=0A=0Ajail_server_rootdir=3D"/usr/prison"=0Ajail_server_hostname=3D= "MaPrison"=0Ajail_server_ip=3D"93.0.168.242"=0A=0AI choosed it because that= 's my computer's public ip, at least according to this =0Awebsite : http://= whatismyipaddress.com/=0A=0A> I assume that IP address is not really routed= to your host,=0A> but that NAT (Network Address Translation) is used on yo= ur=0A> router. So you cannot use that address on the host.=0A> (If that's = not true, please exlain the structure of your=0A> network in more detail.)= =0A=0AMy "network" is VERY simple. I've got a modem (or "box") provided by = my phone =0Acompany. It's called a "neufbox" and acts as a gateway. The com= puter with =0AFreeBSD is connected to this "box" through an ethernet cable.= Two other =0Acomputers are connected to it via wifi.=0A=0A> So, if my assu= mptions are true, you must use the address=0A> 192.168.1.38 for your jail. = Make sure that DNS is working=0A> inside the jail ... It should be suffic= ient to copy=0A> /etc/resolv.conf from the host to /usr/prison/etc/resolv.c= onf=0A=0AOK, I'll try this.=0A=0A> If it still doesn't work: Are you using= any packet filter=0A> (ipfw, ipf, pf)? If so, please show the complete li= st of=0A> rules.=0A=0ANo, I don't. I've tried pf but you told it was not ne= cessary.=0A=0A> Otherwise, it might help to run tcpdump(1) on the host, so= =0A> you can see the actual packets that are transmitted and=0A> received.= =0A=0AAllright. I try it too.=0A=0AGood bye for the moment and thanks for y= our help.=0A=0ABrice=0A=0A=0A
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?827393.30460.qm>